GDPR Enforcement Lessons and New ICO Guidance on COVID-19

The huge increase in remote work has heightened the risk of data-protection and cybersecurity-compliance issues at the same time that the pandemic has thrown a wrench into enforcement, leaving companies to wonder what lies ahead. E.U. data protection authorities have levied more than 230 fines under the GDPR since its May 2018 implementation, according to a recent presentation from data privacy and cybersecurity firm Spirion, LLC, that examined several recent breaches and the lessons they hold. We discuss those insights, as well as the U.K. Information Commissioner’s Office’s recent guidance that explains how it has adapted its approach to enforcement with input from Alexander van der Wolk, a partner at Morrison & Foerster. See “Companywide Work From Home: Six Cybersecurity Considerations” (Apr. 1, 2020).

To read the full article

Continue reading your article with an ACR subscription.