The Court of Appeal recently upheld the High Court's decision that Morrisons is vicariously liable for a data breach carried out by one of its employees over 4 years ago. The decision is a reminder that an employer may be held liable for the malicious actions of a rogue employee, besides highlighting the increasing threat of group actions for cyber and data breaches.
Are you ready for this? Originally 261 pages, the GDPR has over 20,000 more words than Shakespeare's Hamlet and has probably resulted in more primers and updates in your inbox than your IT department's imposed storage limits will tolerate. Headlines like: "Companies who've not started GDPR readiness will not be ready on time" and "GDPR fines up to 4% of worldwide turnover" intended to scare, actually scare you. Getting "GDPR ready" may seem a daunting task – but with careful planning, project management and prioritisation, it is an achievable one.