The Information Commissioner’s Office (ICO) has recently released guidance on the unprecedented challenges being faced by organisations during the Coronavirus (COVID-19) pandemic (available at The ICO has confirmed that it will not take regulatory action against organisations that need to prioritise areas other than data protection, or where organisations need to adapt their usual approach during the COVID-19 pandemic. However, organisations must still be mindful of their data protection obligations as the ICO’s more lenient approach will only extend to those organisations and circumstances that are legitimately affected by the COVID-19 pandemic.

Practical steps you can take now:

If you would like to discuss further or enquire about advice on any aspect of data protection law, please contact the Data Protection team.