The Case of the Rogue Employee
Life with GDPR17 Mar 2022

The Case of the Rogue Employee

Jonathan Armstrong and Tom Fox return for another episode of Life with GDPR. In the 2020 Morrisons case the UK Supreme Court ruled that an employer can be legally responsible for data breaches caused by their employees, although in the particular situation in that case the court ruled that Morrisons (the employer) was not liable for the actions of their rogue employee. In this episode, Tom and Jonathan look at the more recent case of Isma Ali v. Luton Borough Council where the High Court ruled that in committing the data security breach actions the rogue employee undertook, she had solely pursued her own interests and so the employer was not liable for her conduct. Some of the issues we consider include: 1. What were the underlying facts of the case? 2. What was the court’s ruling? 3. Key Takeaways for the data privacy, data protection practitioner, including: · Take a close look at security measures and ensuring that access rights are policed. Data loss prevention and monitoring systems should also be in place to check for large data files leaving the organization - depending on the circumstances, a rogue employee might be after a lot of data; · Put in place appropriate policies and procedures to make sure that data protection principles like data security and data minimization are properly understood; · Perform a Data Protection Impact Assessment for new processes; · Make sure that employees in trusted roles are reliable and that their access rights are reviewed. · Put in place and rehearse a data breach notification procedure, including detection and response capabilities; · Training staff on all of the above; and, · Check existing insurance or taking out new insurance to cover the range of potential risks from "innocent" errors to the actions of a rogue employee. Resources Check out the Cordery Compliance, client alert on this topic, click here. For more information on Cordery Compliance, go their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here. Learn more about your ad choices. Visit megaphone.fm/adchoices

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(108)

A Compliance Roadmap for ADS/ADMT - Part 2: Understanding Opt-In and Opt-Out Requirements

A Compliance Roadmap for ADS/ADMT - Part 2: Understanding Opt-In and Opt-Out Requirements

Welcome to a special series on Life with GDPR. Over the next five episodes, Tom Fox and Alyssa DeSimone, a legal/compliance & risk management expert, with an extensive background in HR,  will discuss ...

14 Okt 202518min

A Compliance Roadmap for ADS/ADMT - Part 1: Introduction & Jurisdiction

A Compliance Roadmap for ADS/ADMT - Part 1: Introduction & Jurisdiction

Welcome to a special series on Life with GDPR. Over the next five episodes, Tom Fox and Alyssa DeSimone, a legal/compliance & risk management expert with an extensive background in HR, will discuss th...

13 Okt 202517min

Endpoint Security and Data Protection: Uncovering the Hidden Compliance Risks in Printer Security with Jim LaRoe

Endpoint Security and Data Protection: Uncovering the Hidden Compliance Risks in Printer Security with Jim LaRoe

Jonathan Armstrong remains on assignment. Today, Tom Fox visits with fellow Texan Jim LaRoe, CEO of Symphion, to discuss data privacy, data protection, and compliance related to printer security in on...

9 Okt 202524min

From IT to Total Compliance Tracking with Adam Goslin

From IT to Total Compliance Tracking with Adam Goslin

Jonathan Armstrong remains on assignment. Today, Tom visits with Adam Goslin, founder of Total Compliance Tracking, to discuss his journey from IT development and management to becoming a leader in th...

2 Okt 202521min

 Navigating GDPR in Global Outsourcing with Inge Zwick

Navigating GDPR in Global Outsourcing with Inge Zwick

Tom Fox takes a solo turn as Jonathan Armstrong is on assignment. Today, Tom visits with Inge Zwick, Executive Director, Head of Europe, and ESG Lead at Emapta Global, a global outsourcing company. T...

24 Jul 202523min

AI in Recruitment: Navigating GDPR Compliance and Challenges

AI in Recruitment: Navigating GDPR Compliance and Challenges

Tom Fox and Jonathan Armstrong, renowned cybersecurity experts, co-host the award-winning Life with GDPR. This episode explores the complex intersection of AI and recruitment, focusing on compliance c...

10 Apr 202516min

Cookie Compliance

Cookie Compliance

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss Cookie Compliance Under GDPR. Their discussion highlights th...

27 Mar 202517min

Navigating CCO and CISO Liability Trends

Navigating CCO and CISO Liability Trends

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. This episode discusses the complex topic of liability for the Chief Compliance Officer (CC...

6 Feb 202524min

Populært innen Business og økonomi

stopp-verden
lydartikler-fra-aftenposten
dine-penger-pengeradet
rss-penger-polser-og-politikk
e24-podden
rss-borsmorgen-okonominyhetene
rss-skravla-gar
aftenbladet-intervjuer
pengepodden-2
rss-pa-konto
finansredaksjonen
livet-pa-veien-med-jan-erik-larssen
tid-er-penger-en-podcast-med-peter-warren
morgenkaffen-med-finansavisen
utbytte
okonomiamatorene
liberal-halvtime
lederpodden
pengesnakk
rss-politisk-preik