Data Protection Act

2017 - DCMS Derogations under the GDPR

Andrew Cormack
Tuesday, May 9, 2017 - 10:36
Data Protection Regulation
Data Protection Act
research
This is Jisc's response to the DMCS call for views on Derogations under the General Data Protection Regulation (GDPR)
Read more
19 April 2017 at 9:41am

Consent for Learning Analytics: Practical Guidelines

Andrew Cormack
Learning Analytics
Data Protection Act
Data Protection Regulation
GDPRtopics
Recently I've been doing some work with Niall Sclater on how education organisations might inform students about the use of learning analytics, and when they might seek students' consent. The resulting blog post is at https://analytics.jiscinvolve.org/wp/2017/02/16/consent-for-learning-analytics-some-practical-guidance-for-institutions/
Read more
19 April 2017 at 9:44am

Learning Analytics - an updated model

Andrew Cormack
Learning Analytics
Data Protection Act
Privacy
GDPRtopics
At Jisc's Learning Analytics Network meeting last month I presented an updated version of my suggested legal model for Learning Analytics.
Read more
29 July 2016 at 4:02pm

Data exports: update in 2017

Andrew Cormack
Data Protection Act
Safe Harbor
Privacy Shield
The latest announcement from the Article 29 Working Party on the US-EU Privacy Shield also suggests that there shouldn't be any short-term surprises for those using the other justifications for exporting personal data to the USA.
Read more
4 May 2016 at 3:15pm

Wifi location data

Andrew Cormack
Privacy
ePrivacy Directive
Data Protection Act
wifi
location
More than a decade ago the e-Privacy Directive mentioned "location data" in the context of telecommunications services. At the time that was almost entirely about mobile phone locations - data processed by just a handful of network providers - but nowadays many more organisations are able to gather location data about wifi-enabled devices in range of their access points.
Read more
29 February 2016 at 2:40pm

Safe Harbor/Privacy Shield

Andrew Cormack
Data Protection Act
Data Protection Regulation
Safe Harbor
The European Commission has now published draft texts that could be used to implement an EU/US Privacy Shield to replace the previous Safe Harbor agreement. It appears that the new scheme would only cover "commercial exchanges" of personal data between the EU and US so it is unlikely to be appropriate for export of personal data to US universities or non-profit organisations.
Read more
Subscribe to Data Protection Act