Information Law

FOI and communication

The Upper Tribunal recently considered the meaning of ‘reasonably practicable’ in s11 of the Freedom of Information Act. Jonathan Dixey analyses the ruling.

July 03, 2025

FOI and communication

News

Court of Appeal allows appeal against BBC in open justice case

July 04, 2025

School ordered to provide information on legal costs of harassment claim brought by headteacher against two parents

June 25, 2025

ICO launches AI and biometrics strategy

Jun 09, 2025

Sacking of teacher for accessing information on trans child not unfair dismissal, Employment Tribunal rules

May 28, 2025

Council reprimanded for leaving personal information of more than 6,500 people – including looked after children and employees – exposed through FOI response

May 21, 2025

Cyber-attack on Legal Aid Agency “much more extensive than originally understood”

May 19, 2025

Council hides public comments from planning portal over GDPR concerns

May 16, 2025

Mandatory ban on councils making ransomware payments would be “powerful deterrent”: Local Government Association

Apr 17, 2025

Borough to have first static facial recognition cameras in London

Mar 27, 2025

Judge criticises arm’s length children’s social care company over FOI failures

Mar 19, 2025

ICO announces new statutory code to regulate AI in public and private sector

Mar 18, 2025

ICO raps two Scottish councils for “repeated” failures to respond to subject access requests within legal timeframe

Feb 28, 2025

Information Rights Tribunal dismisses appeal over council decision to withhold confidential report prepared by independent monitoring officer on governance deficiencies

Jan 28, 2025

Supreme Court to hear key case this week on aggregation of public interest factor when applying freedom of information exemptions

Jan 27, 2025

Councils, NHS and schools to be banned from making ransomware payments

Jan 14, 2025

Judge rejects latest bid by Information Commissioner to have appeal by council over FOI enforcement notice struck out

Dec 20, 2024

ICO takes regulatory action against four public authorities over handling of FOI requests

Dec 11, 2024

Information Commissioner to continue with revised public sector approach despite mixed responses to trial

Dec 09, 2024

Information Commissioner gives advice to local authorities in financial strife

Dec 02, 2024

Judges allow appeal by information rights campaigner over right to see submissions made in case he was not party to

Nov 28, 2024

Incidents of anti-social behaviour taking longer to tackle due to “inconsistent and insufficient” information sharing between agencies, survey finds

Nov 22, 2024

FOI requests made by blogger to council not vexatious, Tribunal rules

Oct 30, 2024

Local government needs to "do better" on data breaches, Information Commissioner says

Oct 28, 2024

Council refused permission for appeal of tribunal order requiring it to publish redacted report

Oct 28, 2024

Government announces new data laws intended to improve public services

Oct 24, 2024

Legal rights charity wins tribunal case demanding Government transparency on determination of adult social care funding

Oct 23, 2024

Experienced data protection consultant joins Act Now Training as associate

Oct 21, 2024

Council issued with reprimand following leak of personal details of employees

Oct 18, 2024

Information Commissioner criticises water company over failure to respond to EIR requests properly

Oct 16, 2024

Information watchdog launches data protection audit framework to help organisations improve compliance

Oct 09, 2024

Police force issued with £750k fine for “serious” data breach involving staff data

Oct 03, 2024

Tribunal orders council to release pay rise documents in “public interest”

Sep 25, 2024

London borough to appeal Tribunal judgment requiring disclosure of redacted report prepared as part of peer review

Sep 18, 2024

Information Commissioner accuses police force of “lack of seriousness about their obligations” after issuing FOI enforcement notice

Sep 13, 2024

Information Rights Tribunal orders council to disclose information on noise dispute

Sep 05, 2024

Council appeals enforcement notice issued by information watchdog over handling of FOI requests

Aug 28, 2024

Tribunal tells council to disclose document prepared for peer review process

Aug 22, 2024

National Data Guardian stresses need to be “straight with people” on data processing after seeing attempts to bypass safeguards

Aug 16, 2024

ICO reprimands elections watchdog after cyber attack compromised servers

Jul 30, 2024

ICO hits NHS Trust and police force with enforcement notices over hundreds of unanswered FOI requests

Jul 29, 2024

School reprimanded for using facial recognition technology without carrying out data protection impact assessment

Jul 23, 2024

Information Commissioner and London borough at loggerheads after council reprimanded for failing to implement measures that could have prevented cyber-attack

Jul 17, 2024

Must read

Families refusing access to support

Is home a suitable option for residence and care for a vulnerable adult if their family refuses access to support? Sophie Holmes analyses a recent ruling.

Families refusing access to support

Features

The scope and purpose of s166 DPA: a procedural and not a merits route of challenge

The Upper Tribunal has provided important clarification on s166 of the Data Protection Act and orders requiring the Information Commissioner to progress complaints, writes Francesca Whitelaw KC.

June 25, 2025

The scope and purpose of s166 DPA: a procedural and not a merits route of challenge

AI solutions: the contractual issues

What are the key contractual issues that public sector organisations should prepare for when implementing an AI solution? Justin Harrington explains.

June 25, 2025

AI solutions: the contractual issues

Generative AI and data protection

Justin Harrington sets out what UK public sector organisations need to know when it comes to generative AI and data protection.

Jun 20, 2025

Generative AI and data protection

AI in the UK public sector

In the first in a series of articles on the adoption of AI by the public sector, Justin Harrington sets out some use cases and provides a regulatory overview.

Jun 12, 2025

AI in the UK public sector

Information governance and AI

What is the role of IG professionals in AI governance? Ibrahim Hasan explains.

May 29, 2025

Information governance and AI

Webinars

Data Protection Essentials

The Hugh James team provide a guide of need-to-know information about the field of Data Protection law.

Freedom of Information Essentials

Collection and use of personal data: a guide for social landlords

Data Protection: Current awareness issues for businesses

Personal data in a post Brexit UK

More features

Practical tips for DSARs

Vicky Bowles looks at how local authorities can reduce the burden of handling data subject access requests.

Data protection prosecutions and employer liability

Ibrahim Hasan considers the prosecution of employees for data protection offences and the potential liability of their employers.

The public sector and compliance with GDPR

The Information Commissioner’s Office has announced a review of its enforcement approach when it comes to the public sector’s compliance with GDPR. Ibrahim Hasan sets out the background to the announcement.

Facial recognition in schools

The Information Commissioner’s Office recently reprimanded a school for using facial recognition technology without carrying out a data protection impact assessment. Ibrahim Hasan looks at the ICO’s decision.

The King’s Speech: What now for AI regulation and Data Protection reform?

Ibrahim Hasan assesses the Labour Government’s proposed reforms in the AI and data protection fields.

Disclosure of information and immunity from suit

A High Court judge recently allowed an appeal against the striking out of a claim against a police force and the CPS which had claimed immunity from suit. Jon Baines explains why.

Processing biometric data: key considerations for your organisation

Laura Cook and Melanie Carter consider the Information Commissioner's Office’s (ICO’s) recent enforcement notice, issued against Serco Leisure, and its newly published guidance on the use of biometric data.

AI Regulation and the EU AI Act

2024 is going to be the year of AI regulation. As the impact of AI increases in our daily lives, governments and regulatory bodies globally are grappling with the need to establish clear guidelines and standards for its responsible use. Ibrahim Hasan looks at the latest developments.

Body worn camera footage

Ibrahim Hasan looks at the issues raised police misuse of body worn camera footage.

Delo: clarity on ICO complaints

In October last year, the Court of Appeal handed down a ruling providing some helpful clarity on the Information Commissioner’s responsibilities vis-á-vis the handling of complaints lodged by data subjects, writes Lucy Jones.

ICO guidance on monitoring workers: what do employers need to know?

The Information Commissioner’s Office (ICO) has published new guidance for employers on monitoring workers. This includes some useful commentary on lawful monitoring in the context of recent developments to working practices, including the rise in homeworking and the increased use of more advanced monitoring technology in the workplace, write Rachel Barnet and Hannah Pettit.

FOIA and aggregation of exemptions

“Exemption means Exemption” doesn’t cut it for the Court of Appeal: aggregation of exemptions is permitted under the Freedom of Information Act (FOIA). Ben Mitchell analyses a significant ruling.

The Information Commissioner's discretion to determine complaints

Philip Coppel KC sets out the key findings from a Court of Appeal ruling on the UK Information Commissioner's responsibilities when a data subject lodges a complaint that a data controller has infringed data protection law.

FOI backlogs at the forefront

FOI enforcement is a priority for the Information Commissioners Office. Ben Pumphrey and Alastair Turnbull examine the core duties of public bodies and the exemptions that exist.

Another day, another police data breach

Ibrahim Hasan looks at the lessons to be learned from the latest data breach involving a police force.

Beware misusing personal data

A claimant recently won a High Court damages claim against a London borough for misuse of personal data, with the council ordered to pay £6,000 in damages. Ibrahim Hasan explains why.

Operating CCTV lawfully

A county court judge has ruled that Islington Council’s operated its CCTV system lawfully. Sam Fowles explains why.

International data transfers

An international transfers breach has resulted in a record GDPR fine for Meta. Ibrahim Hasan explains why.

GDPR compensation claims: no threshold of seriousness

Robin Hopkins looks at an Austrian case that considered whether there was a threshold of seriousness for entitlement to compensation for data protection infringements.

Experian’s GDPR appeal: lawfulness, fairness, and transparency

Ibrahim Hasan looks at the lessons to be learned from Experian’s successful appeal against an enforcement notice issued by the Information Commissioner’s Office.

The new DP Reform Bill: what’s changed?

Ibraham Hasan looks at the Government’s latest version of proposed legislation in relation to data protection.

Rogue employees and personal data

Ibrahim Hasan looks at the Information Commissioner’s Office (ICO) approach to individuals who seek to access/steal data from their employers for personal gain, and the implications for those employers.

GDPR and AI: The Rise of the Machines

Ibrahim Hasan looks at the practical steps public sector organisations can take to ensure they are using AI lawfully from a data protection perspective.

ICO reprimand for misuse of children’s data: a proportionate response or a let off?

Last week, the Department for Education received a formal reprimand from the Information Commissioner’s Office (ICO) over a “serious breach” of the GDPR involving the unauthorised sharing of up to 28 million children’s personal data. But the Department has avoided a fine, despite a finding of “woeful” data protection practices. Ibrahim Hasan reports.

FOI and communication

News

Must read

Families refusing access to support

Features

The scope and purpose of s166 DPA: a procedural and not a merits route of challenge

AI solutions: the contractual issues

Generative AI and data protection

AI in the UK public sector

Information governance and AI

Webinars

More features

Poll

Events