• Home
  • Latest
  • International Data Protection Day and GDPR: a measured assessment

International Data Protection Day and GDPR: a measured assessment

Posted on 28 January 2019

International Data Protection Day and GDPR: a measured assessment

On the first International Data Protection Day after the GDPR came into effect, Mishcon de Reya's Jon Baines reflects on the current data protection issues.

The General Data Protection Regulation (GDPR) became directly applicable on 25 May 2018, accompanied by much media clamour and business disquiet. Some commentators warned of enormous administrative fines, whilst others forecast "SARmageddon" (a huge influx of access requests (SARs) from data subjects) and a flood of compensation claims for the most minor of breaches. We took the view, based on our years of experience and our expertise (as well as reading and listening to what the Information Commissioner's Office was saying) that a pragmatic, measured approach was best, and we advised clients accordingly.

Eight months on, it does seem that that measured approach was the optimum one. No GDPR monetary penalties have yet been levied by the Information Commissioner's Office (although Google was recently served one of €50m by the French data protection authority, for lack of transparency, inadequate information and lack of valid consent regarding the personalisation of advertising), and the courts are as yet relatively untroubled by compensation claims.

There are reports that the ICO is having to weather a storm of complaints and enquiries. It surely won't be long before we see the first significant monetary penalty in the UK and across Europe, the spectre (or prospect, depending upon your perspective) of major group GDPR litigation hangs.

Brexit is unavoidable, and Associate Anne Rose has written great pieces on our website, to keep you abreast – as far as possible – of what it means for data protection.

What is very clear is that on International Data Protection Day 2019, the subject of data protection has never been more pressing or more prominent. Anyone who processes personal data should make sure they know what they're doing and where their risks lie.

How can we help you?

How can we help you?

Subscribe: I'd like to keep in touch

If your enquiry is urgent please call +44 20 3321 7000

Crisis Hotline

Emergency number:

I'm a client

Please enter your first name
Please enter your last name
Please enter your enquiry
Please enter a value

I'm looking for advice

Please enter your first name
Please enter your last name
Please enter your enquiry
Please select a department
Please select a contact method

Something else

Please enter your first name
Please enter your last name
Please enter your enquiry
Please select your contact method of choice