Eoin Campbell
Crossing Borders: International Data Transfers
The European Court of Justice’s July 16th 2020 Schrems II judgment had major implications for the use of US cloud services. Since that case, every US cloud service provider has been obliged to verify the data protection laws of the … Read more
Planning for a data breach
Cybersecurity is an evolving disciple which faces new threats daily. Despite the best efforts to secure information systems, absolute protection remains an unattainable goal. For any organization, the possibility of a data breach is not a question of if but … Read more
Back to basics: The importance of staff training in data protection
It is not glamorous, but the simple truth is that perhaps the most important aspect of a Data Protection Officer’s (DPO) mission is to ensure that effective staff training for the safeguarding of sensitive information and maintaining robust security practices … Read more
The inside threat: Mitigation of the risks of deliberate data violations and corporate sabotage
It is well known most data breaches come from employee error, some 88% according to Stanford University Professor Jeff Hancock in fact. As difficult as a costly mistake may be for a business to accept, there might be some consolation … Read more
Hidden sensitivities: Broadening employee awareness of data security
An often overlooked aspect of data security is the potential for sensitive personal information to be concealed in seemingly mundane data. Companies and organizations need to raise employee awareness to ensure comprehensive protection of all personal information, no matter how … Read more
Data Security: Business advantage rather than regulatory burden
What comes to mind first when the words ‘Data security’ are mentioned to most workers? Chances are, it is thoughts of things like; frequent password changes, oversensitive spam folders, the inability to make personal calls on the ‘work phone’, the … Read more
Deadman’s Data: Personal data relating to the deceased under GDPR
In effect since May 25th, 2018 the General Data Protection Regulation (GDPR), is a landmark piece of legislation in data protection. GDPR has revolutionized how personal data is managed across the European Union (EU). The central purpose of the legislation … Read more
Legal Issues Around Paying Ransomware
Ransomware attacks are one of the most serious cybersecurity threats facing businesses 2024. This kind of attack involves a malicious actor encrypting a victim’s data and then making a demand for a ransom payment in exchange for the decryption key. … Read more
Legal Basis for Monitoring Healthcare Employees
The monitoring of employees has become an indispensable practice for organizations to guarantee security, productivity, and compliance with regulations. Sensitive patient data is handled in the healthcare sector every day, making the stakes even higher. The protection of patient information, … Read more
Liability for Cyber Incidents
The rapid digitisation of every aspect of our lives has led to an ever-increasing risk of cyber incidents for all types of business. Significant financial losses, disruptions to operations, damage to reputation, and legal consequences can all result from such … Read more
The Increasing Complexity of Privacy Laws in the USA
As far back as 2017, it was estimated that the world was producing some 2.5 quintillion bytes of data each day. Fueled by the explosion of internet use and the digitisation of all aspects of modern life (think mobile phones, … Read more
Class Action Suits for Cybersecurity Breaches
What is a class action? Since the 1820 case of West v. Randall, the class action lawsuit has been firmlyestablished as a powerful tool in the federal judicial system of the USA. A class actionenables a large group of individuals, … Read more