The ICO's Subject Access Code
The Subject Access Code, issued under section 51 of the Data Protection Act 1998 as part of the Information Commissioner’s Office’s (ICO’s) statutory duty to promote good practice, does not have the force of law and enforcement action will not be taken against organisations that do not apply the code. However, compliance with the code should ensure that organisations satisfy their obligation to deal with subject access requests — the mechanism under the act by which individuals have the right to access any of their personal data held by third parties, upon payment of a fee.
There is much more to the code than just the ‘10 steps’ with plenty of examples and, in particular, a useful explanation of how the various exemptions may apply. The code deals with issues such as children’s rights of access and subject access requests submitted via social media and contains a reminder that the purpose behind the submission of the request is not a relevant consideration. However, the 10 steps will probably be the first page that data protection compliance officers will turn to…
If you are registered and logged in to the site, click on the link below to read the rest of the Walker Morris briefing. If not, please register or sign in with your details below.
News from Walker Morris
News from The Lawyer
Briefings from Walker Morris
Intellectual property disputes involving retailers and fashion are all too common; another one to have troubled the courts in recent months is Thomas Pink v Victoria’s Secret UK.
In Biscuits Poult SAS v OHIM, the applicant for invalidity challenged the registration on the basis that the design in question was not new and lacked individual character.
Analysis from The Lawyer
Which firms are cutting it in this era of slimline rosters, and who are the GC new brooms making clean sweeps? The Lawyer can reveal all
The law school war shows no signs of ending. But we have, perhaps, reached the end of the beginning.