The following Dispute Resolution Q&A provides comprehensive and up to date legal information covering:
The company, as controller of the customer’s personal data, must comply with its obligations under the Data Protection Act 1998 (DPA 1998) (prior to 25 May 2018) and the General Data Protection Regulation, Regulation (EU) 2016/679 (the GDPR) (from the 25 May 2018). The definitions of personal data under both DPA 1998 and the GDPR are wide and may include information such as the customer’s email address.
Where a data controller has failed to comply with its data protection obligations, it can give rise to a claim for compensation under DPA 1998, s 10 or Article 82 of the GDPR/Clause 166 of the Data Protection Bill (which is currently before Parliament). In this case, relevant obligations with which the controller must comply include:
the seventh data protection principle under DPA 1998, which requires that controllers take appropriate technical and organisational measures against unauthorised or unlawful processing of, and accidental loss of or damage to personal data (DPA 1998, Sch 1, para 7)
the integrity and confidentiality principle under the GDPR, which requires that personal data to be processed in a manner that ensures appr
**Trials are provided to all LexisPSL and LexisLibrary content, excluding Practice Compliance, Practice Management and Risk and Compliance, subscription packages are tailored to your specific needs. To discuss trialling these LexisPSL services please email customer service via our online form. Free trials are only available to individuals based in the UK. We may terminate this trial at any time or decide not to give a trial, for any reason. Trial includes one question to LexisAsk during the length of the trial.
To view the latest version of this document and thousands of others like it, sign-in to LexisPSL or register for a free trial.
Existing user? Sign-in
Take a free trial
The principle of transferred maliceIf a person has a malicious intent towards X and, in carrying out that intent, injures Y, he is guilty of an offence. So, if D shoots at A with intent to kill him but kills B by mistake it is murder; the mistake as to the identity of the victim is irrelevant as D
LiabilityFalse imprisonment consists of the complete deprivation of liberty without a lawful basis. Claims will in practice be made against a public body that exercises detention powers, usually a local police force, the Secretary of State for the Home Department or the Secretary of State for
This Practice Note discusses the common law doctrine of privity of contract; the equitable and statutory exceptions to it; how the doctrine affects enforcing a contract against a third party and what happens when, notwithstanding the lack of privity, a contract has an indirect effect on a third
What is a third party debt order (TPDO)?Third party debt orders were previously known as 'garnishee' orders and operated under the regime provided for in CCR Ord 30 and RSC Ord 49 (now revoked). Although the rules in CPR 72 are new, many of the principles with which they are concerned are well
0330 161 1234
To view our latest legal guidance content,sign-in to Lexis®PSL or register for a free trial.