This site would like to set some non-essential temporary cookies. Some cookies we use are essential to make our site work.
Others such as Google Analytics help us to improve the site or provide additional but non-essential features to you.
No behavioural or tracking cookies are used.
To change your consent settings, read about the cookies we set and your privacy, please see our Privacy Policy

Data Protection Leader

Volume: 5 Issue: 1
(January 2008)


A UK High Court judgment, which has clarified the lengths to which organisations must go when complying with subject access requests (SARs), has significantly altered the scope of the obligations placed on organisations when fulfilling such requests. / read more

The UK House of Commons Justice Committee has recommended that new data protection legislation should give wider powers to Richard Thomas, the Information Commissioner. / read more

On 21 December, Spain enacted a Royal Decree that approves new Regulation developing certain aspects of Law 15/1999, the Spanish Data Protection Act. The new Regulation, among other matters, revises security measures that need to be implemented for all files, both automatic and manual. / read more


Current privacy and data protection laws are having a limited success at achieving their aim of granting individuals control of their personal information. Worse than that, there is a serious danger that in the long term they will fail entirely and, if so, we will be powerless at deciding how our information is used and by whom. This is at least the grave point made by one of the most influential think tanks around, Demos, in a report published at the end of 2007, and they are likely to be right. / read more

The UK Government has asked Dr. Mark Walport and Richard Thomas, the Information Commissioner, to conduct a review into the use and sharing of personal information in the public and private sectors. In this article Walport, director of medical research charity the Wellcome Trust, outlines areas the review will examine and highlights how shared personal information can be used positively by both public and private organisations. / read more

Data security looks set to be a hot topic for 2008, following the series of high-profile developments in 2007, culminating in the data loss at HM Revenue & Customs. In the first of a series of articles, Stewart Room, a partner at Field Fisher Waterhouse LLP, reflects on these developments, particularly the HMRC issue, and opines on what we have learned from the incident, considering what issues led to the breach, the effectiveness of UK laws and the UK's national regulator. / read more

In part one of this two part opinion piece, Christopher Millard looked at the current status of the data protection model that has been evolving since the 1970s, especially in Europe, and concluded that it is seriously flawed. He noted that the European Commission's recent announcement that it has no plans to revise the EU Data Protection Directive provoked a critical response from the UK Information Commissioner. This month he assesses the appetite for change amongst other privacy regulators and in the global business community, before considering what Privacy 2.0 might look like and when it might arrive. / read more

The recent decision of the High Court in Ezsias v The Welsh Ministers clarifies the scope of subject access rights and will be welcomed by data controllers, according to Robert Steadman, a managing associate with Addleshaw Goddard LLP. In this article, Steadman sets out the decision, its legal implications and the practical consequences for organisations. / read more

As 2007 drew to a close, we asked members of Data Protection Law & Policy's editorial board what they felt would be the key data protection issues during 2008. In this article, they set out their responses. / read more

About Data Protection Leader:

The monthly law publication which covers all aspects of data protection and data privacy. Topics covered include data transfers and outsourcing, data localisation and retention, the EU General Data Protection Regulation (GDPR), the e-Privacy Directive, data security, marketing and behavioural advertising, consent, employee monitoring, privacy compliance, risk management, DPO responsibilities, accountability, Privacy by Design, acquisition and mergers, the Internet of Things, cloud computing and Big Data / read more

Search Publication Archives

Our publication archives contain all of our articles, dating back to 2004.
Canít find what you are looking for?
Try an Advanced Search

Log in to data protection leader
Subscribe to data protection leader
Register for a Free Trial to data protection leader
data protection leader Pricing

Social Media

Follow data protection leader on TwitterView data protection leader LinkedIn Profiledata protection leader RSS Feed