In early 2016, a European Court of Human Rights (ECHR) case (Barbulescu v. Romania) attracted much publicity because it appeared to give employers the green light to read employees’ private emails (read our original commentary here). The decision in the original case has now been overturned by the Grand Chamber of the ECHR.

Background

The case concerned a Romanian national, Bogdan Mihai Bărbulescu. Mr Bărbulescu had been dismissed after his employer monitored his work-related Yahoo Messenger account and discovered that Mr Bărbulescu had used it for private communications, including messages to his brother and fiancée, which was in breach of the employer’s internal policies.

After unsuccessfully bringing employment claims in the Romanian courts, Mr Bărbulescu brought his case before the ECHR, claiming that Romania had failed to protect his Article 8 right under the European Convention on Human Rights in relation to respect for his private and family life, his home, and correspondence.

The Fourth Section of the ECHR dismissed Mr Bărbulescu’s claim, who then appealed to the Grand Chamber of the ECHR.
Continue Reading EU Case Confirms That Employers Do Not Have Carte Blanche For Workplace Monitoring

The UK Employment Appeal Tribunal (the “EAT”), in the case of Atkinson v Community Gateway Association UKEAT/0457/12/BA, dismissed the employee’s claim that his right to privacy had been infringed, and confirmed, more generally, that an employer will be entitled to monitor its employees’ workplace emails and Internet use where a clear policy

Many companies across a number of industry sectors have experienced some form of cyber attack – attacks which can destroy a company’s financial standing, reputation and potentially its competitive advantage, through the loss of commercially sensitive data. In response, and with the need to access and share information related to cyber attacks more widely amongst

“You wait for ages for one and then two turn up at the same time!” The European Court of Justice issued two significant rulings this past November.

The first addressed the manner in which Spain enacted the Data Protection Directive. In Asociación Nacional de Establecimientos Financieros de Crédito (ASNEF) v Administración del Estado (C-468/10) and