Internet, telecoms, and tech law decoded

1 This week saw what is, I believe, the first English judgment dealing with the territorial scope of the GDPR. This blogpost is a reminder of the rules on "territorial scope", and weaves in the High Read more

1 The pandemic is getting worse, democracy in the USA seems to have collapsed, and if you have to say "you're still on mute" one more time, you'll explode. And it's only the 11th of January. Here are Read more

I know it's Christmas. And I know I'm supposed to be on holiday. But I also know that some of you have been planning for, or even just worrying about, what you need to do to prepare for the end of Read more

1 Occasionally I get asked "should I have a privacy policy or a privacy notice?". And the answer is usually "both". If you're not sure what the difference is, or whether you've got the right things Read more

1 The European Data Protection Board has published draft guidelines, for feedback, on targeting of social media users. If you use targeting features offered by social media platforms, it's worth Read more

1 I've written before about the key steps you need to take to get your business in order from a GDPR point of view. One of those steps — the record of processing activty — is a key starting Read more

1 The Information Commissioner's Office has issued a statement about its Age Appropriate Design Code. The statement says: The Age Appropriate Design Code has completed the Parliamentary process and Read more

1 You may have spotted in the news that the government has said that it has not done a data protection impact assessment — a DPIA — for part of it coronavirus contact tracing system, even though Read more