General Data Protection Regulation

The European Union's AI Act yesterday came into force – the first steps in establishing a regulatory and legal framework for the use of AI systems within Europe.

ICO received more than 15,300 complaints last year over organisations’ failure to comply with data subject access requests (DSARs).

Reports of employee data breaches increased by 41% in 2023, reaching a five-year high, according to the ICO.

Information Commissioner publishes guidance for employers on sharing workers’ personal details in a mental health emergency.

ICO orders Serco to stop biometric attendance monitoring, including facial and fingerprint recognition, when workers clock in and out.

Amazon has been fined €32m (£27m) for 'excessively monitoring' employees in its warehouses in France.

Police Service Northern Ireland published details of thousands of employees after a Freedom of Information request.

Employers should only use worker monitoring tech, such as activity trackers, following consultation with staff, according to a group of MPs.

Capita has told some of its employees that their personal data was stolen in a cyberattack earlier this year.

HR must get to grips with data if it is to strike the correct balance between productivity and privacy, while ensuring decisions are as transparent as possible.

The rise of AI tools such as ChatGPT means HR and data teams need to ensure they are still compliant.

The most common HR questions in May 2023 concerned post-Brexit laws and annual leave entitlements.

Employees at the BBC, British Airways and Boots may have had their data stolen by hackers.

Dozens of organisations have reported breaches of personal information held by Capita, which suffered a cyber attack earlier this year.

Guidance for employers on responding to subject access requests has been published by the Information Commissioner's Office.