Data Privacy & Cybersecurity

ICO Decision: Council correct to withhold legal advice under EIR

The UK Information Commissioner's Office (ICO) issued a decision finding that Wychavon District Council was correct to withhold legal advice under Regulation 12(5)(b) of the Environmental Information Regulations (EIR). The decision upholds the council's action and requires no further steps.

ICO Upholds FOI Complaint Against Epping Forest Council

The ICO has upheld a Freedom of Information (FOI) complaint against Epping Forest Council for failing to respond to a request within the statutory 20-working-day limit. The Council has been ordered to provide a response to the complainant within 30 calendar days.

ICO Decision Notice: DFE FOI and Data Protection

The ICO issued a decision notice regarding the Department for Education's (DFE) handling of an FOI request. The ICO upheld the DFE's decision to refuse to confirm or deny the existence of information, citing data protection principles.

ICO Decision Notice: Mid Sussex District Council - EIR Request

The ICO found that Mid Sussex District Council correctly applied exemptions to an EIR request regarding a poisoning allegation investigation. However, the council breached the 20-working-day response time. No further steps are required from the council.

ICO upholds FCDO's refusal to confirm Guantanamo Bay information

The UK's Information Commissioner's Office (ICO) has upheld the Foreign, Commonwealth and Development Office's (FCDO) refusal to confirm or deny the existence of information related to Guantanamo Bay. The decision allows the FCDO to rely on specific exemptions under the Freedom of Information Act.

ICO Decision: Khalsa Academies Trust breached FOIA

The UK's Information Commissioner's Office (ICO) has issued a decision notice finding that Khalsa Academies Trust breached the Freedom of Information Act (FOIA) by failing to respond to a request within the statutory 20-working-day limit and by issuing an invalid refusal. The Trust is required to comply with FOIA.

ICO Decision: Council entitled to withhold homelessness report

The ICO has issued a decision notice regarding Newport City Council's withholding of a homelessness report. The council was found entitled to withhold information under section 41 of the Freedom of Information Act (FOIA) concerning information provided in confidence. No further action is required by the council.

GDPR Resolution on Data Protection Rights Procedure

The Spanish Data Protection Agency (AEPD) has issued a resolution regarding a data protection rights procedure. The case involves a complaint against INVERSIONES COLECTIVAS EN RED, S.L. (ICIRED) for failing to adequately address a consumer's rights of access and deletion after their data was included in a default file. The resolution details the complaint and the agency's procedural steps.

Dell Secure Connect Gateway Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory for Dell Secure Connect Gateway, identifying a vulnerability that allows remote code execution. The advisory affects versions prior to 5.34.00.00 on Windows systems. Users are advised to apply available mitigations.

GNU InetUtils Multiple Vulnerabilities (CVSS 9.8)

CERT-Bund has issued a security advisory (WID-SEC-2026-0734) regarding critical vulnerabilities in GNU InetUtils versions up to 2.7. These vulnerabilities, rated CVSS 9.8, allow for remote code execution and information disclosure on Linux and UNIX systems. Users are advised to update their systems.