The Information Commissioner’s Office, the U.K.’s data protection authority, has published guidance for data controllers on their data protection compliance obligations during the COVID-19 pandemic. The take-away point is that the ICO will take into account “the compelling public interest in the current health emergency” and will take a “reasonable and pragmatic” approach to enforcing data protection obligations. In light of this Guidance, the question of what particular steps are proportionate, in terms of General Data Protection Regulation compliance, will be of increasing importance while organizations and individuals navigate the pandemic.
Cybersecurity, Privacy, & AI
Trending Now
NIST’s Cyber Center Moves Forward With ‘Cyber AI Profile,’ Agentic AI Projects • How the Defense Intelligence Agency Is Fast-Tracking Data and AI Modernization • Supreme Court Delivers ‘Major Win’ for Tech Privacy in Chatrie Ruling • CISA Issues Zero Trust Guide Supporting TIC 3.0 Adoption • FedRAMP 2026 Is Not a Compliance Update — It’s a New Operating Model
Reasonable and Pragmatic Approach by UK’s ICO to GDPR Compliance during the COVID-19 Pandemic
SB_photos | Shutterstock
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.
