Search results
491 results ordered by
Privacy developments – looking back and looking forward
In this article, we give you a high-level snapshot of the key data protection and privacy developments in the UK and EU in 2024 as well as developments we anticipate for 2025.
Read moreDigital operational resilience: the UK regulatory landscape
Operational Resilience in the supply chain has become an undeniable priority for all financial service providers across the continent.
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreHow will the "Genny lec" impact the world of cyber and tech?
On 22 May 2024, Prime Minister Rishi Sunak stood in the pouring rain to announce a General Election, thus commencing a summer of political and meteorological uncertainty for those in the UK.
Read moreSnapshots Autumn 2025
Our Autumn 2025 roundup of key legal developments for the modern commercial lawyer.
Read moreCJEU clarifies when pseudonymised data counts as personal data in third‑party transfers
When does pseudonymised data qualify as personal data in the context of transfers to third parties under the GDPR?
Read moreICO launches consultation on DUAA’s new recognised legitimate interest
Why does the Information Commissioner’s Office (ICO) consultation on recognised legitimate interest (RLI) draft guidance matter, and what should organisations be doing now?
Read moreEU’s Digital Omnibus initiative aims to simplify rules on data, cyber-security and AI
How will the European Commission’s Digital Omnibus initiative simplify legislation on data, cybersecurity, and artificial intelligence for businesses?
Read moreThe EU Data Act is live: how will SaaS, PaaS and IaaS providers be affected by new early termination and switching provisions?
What are the implications of the EU Data Act’s provisions on SaaS, PaaS and IaaS?
Read moreUK ICO’s risk-based approach to online advertising and cookie consent
How is the ICO proposing to adopt a more risk-based, proportionate approach to online advertising regulation - particularly around cookies - while maintaining privacy safeguards?
Read moreUK Data (Use and Access) Act comes into force
What are the key elements of the UK’s new Data (Use and Access) Act (DUAA)?
Read moreICO publishes new guidance on anonymisation and pseudonymisation
What are the ICO's latest key recommendations for effective anonymisation and pseudonymisation of personal data?
Read moreEncryption under scrutiny: what the ICO’s new guidance means for your business
What is the ICO's current thinking around encryption practices where organisations are subject to the UK GDPR?
Read more€530m TikTok fine highlights the importance of effective international data transfer mechanisms
What were the missing compliance elements in TikTok's international data transfers to China and why did these result in such a significant fine?
Read moreSnapshots Summer 2025
A roundup of key legal developments for the modern commercial lawyer.
Read moreHigh Court rules against Sky Betting’s targeted marketing
What constitutes valid consent under UK data protection law, particularly in the context of targeted marketing to vulnerable individuals?
Read moreStatus update on the UK’s new Data (Use and Access) Bill
The UK’s new Data (Use and Access) Bill (DUA Bill) is on its way, but where is it in the legislative process? And what are proving the sticking points?
Read moreDeveloping responsible GenAI – the UK and EU regulatory view
What is the UK and EU data protection authorities’ view on ensuring responsible generative AI (GenAI) development and deployment?
Read moreEuropean Data Protection Board adopts statement on age assurance technologies
How is the European Data Protection Board (EDPB) proposing to address the benefits and risks of age assurance technologies?
Read moreNew ICO guidance for “consent or pay” online ads
What is the view of the UK Information Commissioner’s Office (ICO) on whether “consent or pay” online advertising models are compliant with UK data protection law?
Read moreSnapshots Spring 2025
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Winter 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Autumn 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Summer 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Spring 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Winter 2023
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Autumn 2023
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Summer 2023
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Spring 2023
A roundup of key legal developments for the modern commercial lawyer.
Read moreSnapshots Winter 2022
A roundup of key legal developments for the modern commercial lawyer.
Read moreRegulatory Radar: quick takes May 2025
Welcome to the latest edition of our bi-monthly Regulatory Radar: quick takes update, which collates the latest developments from across the UK’s regulators.
Read moreRICS disciplinary process: an overview for surveyors
Download our complete guide to the procedure involved in a disciplinary investigation against a chartered surveyor.
Read moreThe EU’s Work Programme 2025 – ePrivacy Reg and AI Liability Directive dropped!
What are the main takeaways for the tech industry from the European Commission’s Work Programme 2025?
Read moreEU Guidance on the AI Act
How is the European Commission helping businesses interpret the EU’s Artificial Intelligence Act (AI Act)?
Read moreThe Online Safety Act: Illegal Harms Codes officially in force, focus now on children
What are service providers’ new obligations under Ofcom’s new Codes of Practice on Illegal Harms and its Age Assurance and Children’s Access Guidance?
Read moreThe UK Government’s consultation on Copyright and AI
How is the UK Government considering striking the balance between the protection of copyright in materials and the training of AI?
Read moreUK’s new AI Cyber Security Code of Practice
How is the UK Government seeking to protect AI systems from growing cyber security threats, in particular in respect of deployable AI systems using GenAI?
Read moreUK’s “AI Opportunities Action Plan”
How will the UK Government’s new AI Opportunities Action Plan (Plan) impact businesses?
Read moreNew guidance on balancing data protection with the FCA's Consumer Duty and the TPR's Code of Practice
The Financial Conduct Authority (FCA), Information Commissioner's Office (ICO) and The Pensions Regulator (TPR) have published welcome guidance (Joint Statement) aimed at retail investment firms and pension providers on how to ensure their customer communications comply with the FCA's Consumer Duty (Consumer Duty) and the TPR’s Code of Practice (Code of Practice), whilst ensuring they follow the rules on direct marketing and data protection.
Read moreThe EU's Cyber Resilience Act: 10 on the 10
Today the EU's Cyber Resilience Act (Regulation (EU) 2024/2847) ('CRA') enters into force. The CRA recognises that the continuously evolving world of smart products is frequently challenged by vulnerabilities which can potentially lead to cyber-security incidents. Whilst most of the Act's obligations will not be applicable until three years from now, 10 December is the day when the EU takes a big step towards it's ten-year Cybersecurity Strategy. To mark the occasion, we have outlined ten key points that entities in scope must be aware of in preparation for compliance with the CRA.
Read moreDORA Watch - November 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Developments Compilation – October 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Watch – August and September 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Watch – June and July 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreIt's a wrap! Highlights from the ICO DPPC 2025
The ICO held its annual Data Protection Practitioners' Conference (DPPC) on 14 October. With a packed agenda, eminent speakers and over 7,000 data protection professionals in attendance, it was one of the highlights of the privacy lawyer's year. Here we set out the key messages we took away from the conference.
Read moreCyber_Bytes - Issue 77
Welcome to Issue 77 of Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 76
Welcome to Issue 76 of Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreOfcom publishes children's online safety codes and risk assessment guidance
What measures must in-scope service providers undertake following the introduction of Ofcom's Protection of Children Codes and Guidance (the Codes)?
Read moreNew UK Software Security Code of Practice
What impact will the new voluntary Software Security Code of Practice have on UK organisations?
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here