Skip to content

cearta.ie

the Irish for rights

Menu
  • About
  • Privacy Policy
  • Disclaimer
  • Contact
  • Research

Category: Cyberlaw

Closing off the Warren of Negligence Claims for Data Breaches

1 February, 20248 February, 2024
| No Comments
| Cyberlaw, Cyberlaw, Data Protection, Digital Rights, Privacy, Privacy, Tort

Data and Private Law bookcoverI have just published “Closing off the Warren of Negligence Claims for Data Breaches” in Damian Clifford, Kwan Ho Lau & Jeannie Marie Paterson (editors) Data and Private Law (Hart Studies in Private Law, Bloomsbury, 2023) chapter 10; pp161-174 (available via SSRN). Here is the abstract:

Large databases of personal data are increasingly vulnerable to hacks. Arising out of the biggest data breach in the United Kingdom’s history, the claimant in Warren v DSG Retail Ltd [2021] EWHC 2168 (QB) (30 July 2021) sought damages for distress for breach of data protection legislation, misuse of private information, and breach of a duty of care in negligence. Saini J dismissed the negligence claim because there is neither need nor warrant to impose such a duty of care where there exists a bespoke statutory regime. But this is an incoherent policy, inconsistently applied. Moreover, it ought not to operate at all in cases where the defendant has voluntarily assumed responsibility towards the claimant. Nevertheless, after Warren, the tort of negligence provides no incentive for the controllers of large databases to protect them.

The cover of the book is above, right. It is very elegant. And this is one time where you really can judge the book by its cover.…

Read More »

The Irish Government’s proposed Online Safety and Media Regulation Bill has a surprising omission

11 January, 202013 January, 2020
| 4 Comments
| Cyberlaw

Internet (element)Last October and November, I sketched the evolution of the government’s proposals for a digital safety commissioner. Following a consultation process last Spring, and missing the deadline of the end of the year by a few weeks, they have published their proposals for the general scheme of the Online Safety and Media Regulation Bill. In its current form, important elements are dangerously vague, and there is an unpardonable oversight in the drafting – like the famous mint, there is a hole in the middle of the Bill; unlike the mint, the hole isn’t meant to be there; and I will return to this point in the last paragraph below.

The Irish proposal is the newest in a long line of recent initiatives, at state and international level, that seek to regulate online content in various ways. For example, the EU has revised the Audiovisual Media Services Directive (AVMS II) to regulate the audiovisual sector, it is promoting a code of conduct on countering illegal hate speech online, and it has controversially expanded the reach of copyright online. The UK has proposed widespread regulation of online harms, the new government has promised to develop legislation to improve internet safety for all, and a draft Online Harm Reduction Bill is to be introduced as a Private Members Bill in the House of Lords.…

Read More »

The Government’s plans for a digital safety commissioner proceed apace

21 November, 2019
| 1 Comment
| Cyberlaw, Cyberlaw

www safety first; via Pixabay (element)In my earlier post (republished here) on the demise of the UK’s current age-verification plans for online porn – and what that might mean for Ireland’s proposed Digital Safety Commissioner, I noted that long-standing Irish Government policy is to establish such a Commissioner, and that the current timetable is that it is intended to bring forward the necessary legislation before the end of the year. Meanwhile, two Private Members Bills, the Digital Safety Commissioner Bill 2017 and the Children’s Digital Protection Bill 2018, are currently before the Oireachtas.

It seems that Government policy in this regard proceeds apace. In his evidence to the International Grand Committee on Disinformation and ‘Fake News’ (hosted in the Seanad Chamber by the Joint Oireachtas Committee on Communications, Climate Action and Environment) on Thursday, 7 November 2019, last, the Minister for Communications, Climate Action and Environment, Richard Bruton TD, said:

The regulation of harmful online content … is being pursued by my Department. … The approach we are taking to online safety, for which I am directly responsible, is not dissimilar to that being taken in Australia. We propose to define harmful content, require companies to have a code of practice and put an online safety commissioner in place to oversee the delivery of those codes of practice.

…

Read More »

The demise of the UK’s current age-verification plans for online porn – and what that might mean for Ireland’s proposed Digital Safety Commissioner — updated

18 October, 201921 November, 2019
| 2 Comments
| Cyberlaw

Age Verification Station; via DanielVoyager on FlickrEarlier this week, in a written statement to the House of Commons, the UK’s Secretary of State for Digital, Culture, Media and Sport, the Rt Hon Nicky Morgan MP, announced the end of the UK’s controversial age-verification plans for online porn.

Part 3 of the Digital Economy Act 2017 ((hereafter: DEA), as given further effect by the Online Pornography (Commercial Basis) Regulations 2019 (SI No 23 of 2019)) seeks to regulate online pornography. Section 14 DEA imposes a requirement on pornography websites to prevent access to by persons under 18; section 16 DEA permits the designation of an age-verification regulator (AVR); and, pursuant to the procedure in section 17 DEA, the Secretary of State for Digital, Culture, Media & Sport announced in the House of Commons on 20 February 2018 that the British Board of Film Classification (BBFC) was designated as the AVR.

Pursuant to section 25 DEA, the AVR published Guidance on Age-verification Arrangements (pdf) in October 2018, and this was approved by the House of Commons on 17 December 2018. At this point, the EU Commission should have been notified, pursuant to Articles 4 and 5 of Directive (EU) 2015/1535, which lays down a procedure for the provision of information to the Commission to ensure as much transparency as possible as regards national initiatives for the establishment of technical regulations and of rules on Information Society services.…

Read More »

Reality and Illusion in EU Data Transfer Regulation post-Schrems

29 September, 2016
| 1 Comment
| Conferences, Lectures, Papers and Workshops, Cyberlaw, Digital Rights, Privacy

Crhis KunerOn the first anniversary of the judgment of the Court of Justice of the European Union in Case C-362/14 Schrems, Professor Christopher Kuner (pictured left), Professor of Law at the Vrije Universiteit Brussels, will give a public lecture on

Reality and Illusion in EU Data Transfer Regulation post-Schrems

The lecture will be held in the Neill Theatre, Trinity Long Room Hub, Trinity College Dublin, on Thursday 6 October 2016, at 1:00pm.

In Case C-362/14 Schrems v Data Protection Commissioner [2015] ECR I-nyr (Grand Chamber, 6 October 2015), the Court of Justice of the European Union invalidated the EU-US Safe Harbour arrangement allowing personal data to be transferred to the US. The judgment is a landmark in the Court’s data protection case law, and illustrates the tension between the high level of legal protection for data transfers in EU law and the illusion of protection in practice. The judgment has undermined the logical consistency of the other legal bases for data transfer besides the Safe Harbour, and reactions to it have largely been based on formalism or data localization measures that are unlikely to provide real protection. Schrems also illustrates how many legal disagreements concerning data transfers are essentially political arguments in disguise.…

Read More »

Some forthcoming legislation on the administration of justice, cybercrime, education, intellectual property, and privacy

28 September, 201629 September, 2016
| 4 Comments
| Blasphemy, Copyright, Cyberlaw, Digital Rights, ECJ, Intellectual property, Judicial Appointments, Legal Education, Privacy, Universities

Government Chief Whip Regina Doherty has announced the Government’s Legislation Programme for the Autumn Session 2016 (pdf). It is a considerable update of the programme published last June (pdf) when the government came into office.

The June programme had the feel of a holding document, published to get a new government to the Summer Recess. This programme has a far more substantial feel about, published to demonstrate the government’s confidence in its capacity to promote and enact legislation.

After the publication of the June programme, I examined proposed legislation from the Department of Education and Skills (here; and see also here), the Department of Jobs, Enterprise and Innovation (here; and see also here and here), and the Department of Justice and Equality (here and here). Under those headings, very little has changed. But there are some notable additions, not least of which is the Interception of Postal Packets and Telecommunications Messages (Regulation) (Amendment) Bill. All we are told is that work is underway on a Bill to “amend various pieces of legislation in respect of electronic communications”. There is no further explanation. This is probably the Bill to provide for further covert surveillance of electronic communications promised by the Minister earlier this Summer.…

Read More »

Harmful Communications and Digital Safety

27 September, 201627 September, 2016
| 2 Comments
| Cyberlaw

Online SafetyThe Law Reform Commission has today published its long-awaited (pdf) a Report on Harmful Communications and Digital Safety (pdf). It contains 32 recommendations for reform, and includes a draft Harmful Communications and Digital Safety Bill to implement them. In my view, the most important recommendation is the proposal to establish a statutory Digital Safety Commissioner, modelled on comparable offices in Australia and New Zealand. The Commissioner’s function would be to promote digital safety, including an important educational role to promote positive digital citizenship among children and young people. The Commissioner’s role would also include publication of a statutory Code of Practice on Digital Safety, to set out nationally agreed standards on the details of an efficient take-down procedure. As the Law Reform Commission explains:

Under the proposed statutory system, individuals would initially apply directly to a social media site to have harmful material removed in accordance with agreed time-lines: this is similar to the statutory system in place in Australia. If a social media site did not comply with the standards in the Code of Practice, the individual could then appeal to the Digital Safety Commissioner, who could direct a social media site to comply with the standards in the Code.

…

Read More »

Internet defamation and the liability of intermediaries (Muwema v Facebook part 1)

26 September, 201618 February, 2017
| 6 Comments
| Cyberlaw, Defamation

Uganda Facebook Ireland1. Introduction
The liability of internet intermediaries for defamatory posts on their platforms was central to the decision of Binchy J in Muwema v Facebook Ireland Ltd [2016] IEHC 519 (23 August 2016). A Ugandan lawyer objected to allegedly defamatory posts on a pseudonymous Facebook account, and Binchy J gave an order requiring Facebook to identify the account-holder. However, he declined to grant injunctions requiring Facebook either to remove the posts or to prevent the material in them from being re-posted, on the grounds that Facebook could rely on the defence of innocent publication in section 27 of the Defamation Act 2009 (also here).

On the other hand, in the earlier Petroceltic International plc v Aut O’Mattic A8C Ireland Ltd (High Court, unreported, 20 August 2015, amended 8 September 2015; noted here (pdf) and here (pdf)) (see Irish Independent | Irish Times) Baker J not only gave an order requiring the defendant to identify an account-holder but also granted an injunction requiring the defendant to remove allegedly defamatory posts from a blog hosted on its site. Baker J simply made the relevant orders, whereas Binchy J handed down a full judgment explaining that section 27 was the reason why he refused to award the injunctions against the defamatory posts.…

Read More »

Posts pagination

1 2 … 5 Next

Welcome

Me in a hat

Hi there! Thanks for dropping by. I’m Eoin O’Dell, and this is my blog: Cearta.ie – the Irish for rights.


“Cearta” really is the Irish word for rights, so the title provides a good sense of the scope of this blog.

In general, I write here about private law, free speech, and cyber law; and, in particular, I write about Irish law and education policy.


Academic links
Academia.edu
ORCID
SSRN
TARA

Subscribe

  • RSS Feed
  • Twitter
  • LinkedIn

Recent posts

  • A trillion here, a quadrillion there …
  • A New Look at vouchers in liquidations
  • Defamation reform – one step backward, one step forward, and a mis-step
  • As I was saying before I was so rudely interrupted … the Defamation (Amendment) Bill, 2024 has been restored to the Order Paper
  • Defamation in the Programme for Government – Updates
  • Properly distributing the burden of a debt, and the actual and presumed intentions of the parties: non-theories, theories and meta-theories of subrogation
  • Open Justice and the GDPR: GDPRubbish, the Courts Service, and the Defence Forces

Archives by month

Categories by topic

Licence

Creative Commons License

This blog is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License. I am happy for you to reuse and adapt my content, provided that you attribute it to me, and do not use it commercially. Thanks. Eoin

Credit where it’s due

Some of those whose technical advice and help have proven invaluable in keeping this show on the road include Dermot Frost, Karlin Lillington, Daithí Mac Síthigh, and
Antoin Ó Lachtnáin. I’m grateful to them; please don’t blame them :)

Thanks to Blacknight for hosting.

Feeds and Admin

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

© cearta.ie 2025. Powered by WordPress