InfoGov

Government introduces mandatory data breach reporting protocol

The Cabinet Office has published a Model Action Plan setting out a single cross-government framework that all departments and arms-length bodies must follow when responding to significant personal data breaches, introducing mandatory central reporting of such incidents for the first time.
July 15, 2026
Government introduces mandatory data breach reporting protocol

News

Scattered Spider pair jailed over TfL hack

July 16, 2026
Two members of the Scattered Spider hacking collective have each been jailed for five and a half years at Woolwich Crown Court on 16 July over a 2024 cyber attack on Transport for London that compromised the personal data of millions of customers and cost the transport authority £39 million.

Must Read

Slide background

Why AI must power
the next wave
of Social Housing
delivery

 

 

 

 

For years, national housing policy has wrestled with the tension between
aspiration and delivery. Targets have been set and missed; waiting lists
have grown longer,and the most vulnerable people in our society have
been left with fewer safe,affordable places to call home. Technology has a
key role to play to address this situation writes Andrew Lloyd
of Search Acumen.

Why AI must power
the next wave
of Social Housing
delivery

For years, national housing policy has wrestled with the
tension between aspiration and delivery. Targets have been
set and missed; waiting lists have grown longer, and the
most vulnerable people in our society have been left with fewer
safe, affordable places to call home. Technology has a
key role to play to address this situation writes Andrew Lloyd
of Search Acumen.

Analysis

Artificial Intelligence AI Futuristic Technology 3D Style Voxel Art Text Design Gray Monochrome Icon with Shadow Effect in Isometric Perspective View

Shadow AI in the workplace: the risks for public sector employers

The use of AI tools by staff and contractors without formal organisational approval is a growing risk with serious consequences for the public sector write Declan Goodwin and Frederick Lambert.
Shadow AI in the workplace: the risks for public sector employers
Complaint button shutterstock 1499251934

The New Data Protection Complaints Regime

From Friday, 19 June 2026, organisations can no longer rely on complaints going straight to the ICO. The Data (Use and Access) Act 2025 introduces a new regime requiring them to receive, investigate and resolve data protection complaints themselves. Maggie Burns and Charlotte Smith explain what you need to know.
The New Data Protection Complaints Regime

Case Management doesn’t stop at the case

Why collaboration, communication and visibility are becoming increasingly important across legal and public sector services.
Case Management doesn’t stop at the case
Businesses use digital systems to manage candidate profiles and resumes for recruitment. HR technology and automation for the hiring process.

Key Data Protection Issues for Automated Recruitment in the Public Sector

The need to recruit faster in a competitive market, the need to minimise costs in the recruitment process, and the need to secure the best candidate quickly, makes the use of AI an appealing option for any employer including public bodies. But there are pitfalls for the unwary write David Leach and Charlotte Smith.
Key Data Protection Issues for Automated Recruitment in the Public Sector
2020 calendar page marked with an important date in red pin. timeline, time, concept, idea, management, background

Getting the timing right

The date for assessing whether a request is vexatious or manifestly unreasonable, in the context of freedom of information and environmental information refusal decisions, is an issue with a surprisingly long tail - particularly given its practical importance to public bodies when faced with information rights requests.
Getting the timing right
Contracts and AI shutterstock 2077138657

Procuring trust: managing AI risks in public sector contracts

Alexi Markham and Jocelyn S Paulley consider what public sector and in‑house teams typically need most at procurement stage, the key AI risks that show up in public sector contracts and the practical steps that help manage them.
Procuring trust: managing AI risks in public sector contracts
Image of ai text and data over biracial female student in hijab with tablet. Global artificial intelligence, connections, computing and data processing concept digitally generated image.

AI in Education: Why Data Protection Must Come First

Artificial Intelligence promises a lot. It can undoubtedly do amazing things. But secretly (or maybe not so secretly), it also makes us slightly nervous. Adam Halsey looks at what this means for schools, and why data protection needs to sit at the centre of any decision to use AI.
AI in Education: Why Data Protection Must Come First
Complaints shutterstock 269047922

Preparing for the new complaints regime

From 19 June 2026, all organisations acting as data controllers are required to have in place an effective process to enable individuals to raise complaints about how their personal data is handled. Ashleigh Dibb looks at what this will mean in practice.
Preparing for the new complaints regime
Data theft shutterstock 183269990

When data protection doesn’t protect you

Recently, the Information Commissioner’s Office published the outcome of a criminal prosecution. The title? Just two names: Christopher Munro and William Chipoma. No explanation. No softening. No anonymity. And that, in itself, is a powerful lesson in how data protection law really works.
When data protection doesn’t protect you
AI and law shutterstock 2580143903

New Regulations for the Use of AI in Court Documents?

Fred Groves and Christopher Watkins provide insight into growing judicial concern about accuracy, professional responsibility and the efficient administration of justice in the face of Artificial Intelligence.
New Regulations for the Use of AI in Court Documents?
AI and Law

Public F(AI)rness

Does the rollout of AI in public sector policy making and delivery comply with public law principles? There are numerous pitfalls for public bodies writes Nicola Cain.
Public F(AI)rness

FOI and information held on computer systems

Do public authorities ‘hold’ all information on their computer systems? Conor Monighan analyses a recent Upper Tribunal ruling.
FOI and information held on computer systems

Care leavers and redaction of records

Is redaction of records necessary for privacy, or a cause of harm and frustration? Peter Garsden of the Access to Care Records Campaign Group explores the issues.
Care leavers and redaction of records

Webinar

The Data Use and Access Act 2025 introduces a new right to complain, which will come into effect on 19 June 2026. This right elevates data protection complaints from an internal process issue to a matter of legal compliance, with all organisations requiring a consistent, robust, and well-documented complaints framework in place.

Ward Hadaway partner Phil Tompkins and solicitor Lucy Baxter discuss the main points of this new right to complain in our on-demand video.

Sponsored articles

Password Reset

Please enter the email address for your account. A verification code will be sent to you. Once you have received the verification code, you will be able to choose a new password for your account.

InfoGov Masthead Newsletter 800