privacy impact assessments

The Hong Kong Commissioner has published guidance (‘Guidance’) to assist data users in complying with Hong Kong’s privacy laws when processing biometric data, and takes a broader approach than previous guidance dealing with when and how biometric data may be handled by an organisation.

Although no distinction is drawn between personal data and sensitive personal data in Hong Kong’s data protection legislation, biometric data appears worthy of greater protection because of its sensitive nature. As a result, the Guidance outlines stricter standards expected of organisations when they handle both physiological and behavioural biometric data.Continue Reading Hong Kong Commissioner upgrades rules for processing biometric data

In February, the UK Information Commission’s Office (ICO) issued an updated code of practice on conducting Privacy Impact Assessments (PIA), with a six-point process for organisations to follow (the Code).

A PIA is intended to focus the attention of an organisation on the way that data is held and used in any project, and reduce

This post was also written Nick Tyler.

Now that the UK Coalition Government has published its Protection of Freedoms Bill (the Bill) the big question is whether the proposed changes will achieve their objective “to restore the rights of individuals in the face of encroaching state power, in keeping with Britain’s tradition of freedom and fairness”.

Key aspects of the Bill will impact data protection and freedom of information:Continue Reading ‘Protection of Freedoms Bill’ published – will ‘common sense’ prevail?

This post was also written by Nick Tyler.

Last week the UK Government announced a package of measures focused on extending the scope of the Freedom of Information Act (FOIA) and strengthening the independence of the UK’s data protection and freedom of information regulator, the Information Commissioner’s Office (ICO).

The anticipated Freedom Bill (to