Skip to main content
Sign-up to Emails
Request a demo
General Data Protection Regulation (GDPR)
UK: Government Publishes Data Protection Notice and Guidance in No-Deal Scenario
13th Dec 2018 | Written by:
On December 13, 2018, the UK government published a guidance notice clarifying what will be expected from UK organisations in the context of amendments to be brought about in the data protection...
GDPR: Tracking the Implementation at Country Level
13th Dec 2018 | Written by:
The General Data Protection Regulation (Regulation 2016/679), also known as the GDPR, significantly increases the responsibilities and obligations for payments businesses in how they collect and...
Spain: Law on Data Protection Comes into Force
7th Dec 2018 | Written by:
On December 6, 2018, Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights, was published in the official gazette. The law, which was approved by the...
Money Laundering-Data Protection Clash Leaves Polish Firms In Limbo
6th Dec 2018 | Written by:
Financial institutions in Poland are caught between European data protection laws and national on-boarding requirements, forcing some into onerous work-arounds to avoid the risk.
FCA Pours Cold Water On Norway-Style 'Plan B' Brexit
4th Dec 2018 | Written by:
Uncertainty is mounting over Prime Minister Theresa May’s ability to secure parliamentary support for her Brexit plan, but the UK’s top financial regulator has warned that a rumoured “Plan B”...
UK Data Watchdog Reassures Financial Firms On PSD2, GDPR Overlap
29th Nov 2018 | Written by:
The UK’s data protection regulator has reassured financial institutions that it will work with them to navigate potential clashes between separate EU legislation on payment services and data privacy.
UK: Information Commissioner Publishes Guidance on Encryption and Passwords in Online Services
2nd Nov 2018 | Written by:
On November 1, 2018, the Information Commissioner’s Office (ICO) released guidelines in relation to the technical and organisational measures that organisations must implement to be compliant with...
UK: Information Commissioner’s Office Issues Enforcement Notice to Data Controller for GDPR Failings
1st Nov 2018 | Written by:
On October 30, 2018, the Information Commissioner’s Office (ICO) released an enforcement notice addressed to AggregateIQ Data Services Ltd (AIQ), in its capacity as a data controller under both the...
Industry Wary Over PSD2 Data Protection Issues, Report Finds
17th Oct 2018 | Written by:
European regulators still have work to do to help businesses navigate conflicting requirements between this year’s payments overhaul and shifts in anti-money laundering and data protection reforms,...
Data Protection Complaints Soar As GDPR Takes Hold
3rd Oct 2018 | Written by:
Irish data protection authorities have seen a “significant” increase in both complaints and breach notifications since EU-wide reforms took effect in May, PaymentsCompliance can reveal.
Tesco Bank Fine Could Mean Double Trouble For Breached Companies
2nd Oct 2018 | Written by:
The UK’s financial regulator has handed down a £16.4m fine to Tesco Bank for its failings in relation to a cyberattack in 2016, bringing to the fore questions of regulatory jurisdiction in a post...
UK: ICO Takes Action Against Organisations Failing to Pay New Data Protection Fee
27th Sep 2018 | Written by:
On September 26, 2018, the Information Commissioner’s Office (ICO) announced that it had formally commenced enforcement proceedings against 34 organisations, including various financial...
France: Data Protection Authority Publishes Study on Blockchain and GDPR
25th Sep 2018 | Written by:
On September 24, 2018, France’s data protection authority, the National Commission on Informatics and Liberty (Commission Nationale de l’Informatique et des Libertés - CNIL), published a study...
CVV Numbers Scraped In British Airways Cyberattack
10th Sep 2018 | Written by:
British Airways has confirmed that cardholders’ CVV numbers were accessed during a recent high-profile data breach, but said the highly sensitive information was not being stored internally.
PSD2: Dutch Parliamentarians Call For 'Consent Dashboard'
7th Sep 2018 | Written by:
Lawmakers in the Netherlands have touted the idea of a consent dashboard to be implemented by banks to help consumers manage access permissions given to third-party providers.
Practical Guide: Obtaining Valid Consent under the GDPR
23rd Aug 2018 | Written by:
This practical guide provides an overview of the notion of “consent” under the General Data Protection Regulation (GDPR), based on the explanations given by the former Article 29 Working Party.
Meet the team
Sign-up to Emails
Terms and Conditions
St Clare House, 30 Minories
+44(0)207 921 9980
United States Of America
1725 I Street NW, Suite 300
+1 202 261 3567