When the General Data Protection Regulation (“GDPR”) passed into English law on 25 May 2018, one of the headlines that heralded the new legislation was the Information Commissioner Office’s (“ICO”) new power to impose fines of up to €20million, or 4% of global turnover (whichever is the higher) on organisations that breach the GDPR.  Given … Continue Reading