Search results
230 results ordered by
New Development: EDPB provides clarification on tracking techniques covered by the ePrivacy Directive
On 14 November 2023, the European Data Protection Board (EDPB) adopted a set of new guidelines (the Guidelines) on the technical scope of Article 5(3) of the ePrivacy Directive (the ePD).
Read moreClearview AI cleared of £7.5m ICO fine for processing data outside the UK
Just how did the processing of personal data by Clearview AI (Clearview) fall outside the scope of UK GDPR?
Read moreICO publishes guidance to ensure lawful monitoring in the workplace
How can employers monitor their workers whilst maintaining their trust and complying with data protection regulation?
Read moreICO publishes its draft “Data Protection Fining Guidance” for public consultation
How will the Information Commissioner’s Office (ICO) calculate the amount of a fine under the UK GPDR and the Data Protection Act (DPA) 2018?
Read moreEU Advocate General’s opinion on data subjects’ rights to compensation for non-material damage under the GDPR
Does the theft of an individual’s sensitive personal data by a wrongdoer give rise to compensation for non-material damage under Article 82 EU General Data Protection Regulation (GDPR), if the wrongdoer has not used, or taken steps to use, the sensitive personal data for any purpose?
Read moreCyber_Bytes - Issue 59
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreFines for PDPA Breaches: How Clear is the Crystal Ball?
The Singapore Personal Data Protection Commission ("PDPC") has recently issued a number of new enforcement decisions.
Read moreCyber_Bytes - Issue 58
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreData dispatch - October 2023
Welcome to the first edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a monthly basis with an easy-to-digest summary of key developments in data protection law.
Read moreNew data bridge to allow for UK-US data transfers
How will the recently approved data bridge impact transfers of personal data from the UK to the US?
Read moreUK ICO publishes draft biometric data and technologies guidance for public consultation
What are the key considerations which the Information Commissioner’s Office (ICO) proposes organisations should be aware of when implementing biometric recognition systems?
Read moreUK ICO publishes joint statement on data scraping and the protection of privacy
What are the key privacy risks that the UK Information Commissioner’s Office (ICO) expects organisations to consider when hosting publicly accessible personal data and how can those privacy risks be mitigated?
Read moreUK ICO and CMA release joint position paper on harmful design in digital markets
What are the impacts of the ICO and CMA joint position paper on “Harmful Design in Digital Markets” and what action should companies take in light of its guidance?
Read moreNew Development: Updated ICO guidance on “likely to be accessed by children”
Following consultation, the ICO has updated its guidance “Likely to be accessed’ by children – FAQs, list of factors and case studies”.
Read moreCyber_Bytes - Issue 57
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreChanges to the One Stop Shop
In July 2023 the European Commission issued a Proposal for a Regulation of the European Parliament and of the Council laying down additional procedural rules relating to the enforcement of Regulation (EU) 2016/679 (the 'GDPR' Regulations).
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreCyber_Bytes - Issue 56
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreOfcom faces 30,000 cyber attacks a week, new data reveals
NCSC warn that UK infrastructure and businesses face heightened threat of cyber attacks
Read moreCyber_Bytes - Issue 55
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreICO publishes new guidance on privacy in the product design lifecycle
What are the key privacy considerations that the Information Commissioner’s Office (ICO) expects organisations to implement in the design and development of their new products and services?
Read moreThe new Data Act and the EU’s vision for non-personal data sharing in Europe
What does the proposed EU Data Act mean for the usage and sharing of non-personal data by businesses?
Read moreICO updates its guidance on AI and data protection
What are the key data protection principles which the Information Commissioner’s Office (ICO) expects organisations to follow when integrating AI into their product and service offerings?
Read moreICO’s new draft guidance on “likely to be accessed by children” under the Age Appropriate Design Code
When will an online service fall within the scope of the Age Appropriate Design Code?
Read moreEuropean Data Protection Board updates guidance on data breach notifications
How does the recent update to the European Data Protection Board (EDPB) guidance impact data breach notifications for businesses?
Read moreCJEU rules on right to compensation under Article 82 EU GDPR
What must a data subject demonstrate to claim compensation for non-material damage (eg emotional distress/loss of confidence) under the EU General Data Protection Regulation (GDPR)?
Read moreIrish Data Protection Commission decision muddies the water for Meta’s EU-US data transfers
What are the implications of the Irish Data Protection Commission’s (IDPC) ruling against Meta for data transfers from the EU/EEA to the US in breach of the EU GDPR?
Read moreEU Data Protection Board guidance on international data transfers
How does the recent guidance issued by the European Data Protection Board (EDPB) assist businesses in complying with the EU GDPR when carrying out international data transfers?
Read moreOpinions aplenty on the European Commission’s draft adequacy decision regarding the EU-US Data Privacy Framework
How have the EU law-making institutions reacted to the draft adequacy decision regarding the EU-US Data Privacy Framework (DPF)?
Read moreItalian Data Protection Authority issues fine for use of dark patterns
How can companies ensure that their websites, apps and other online interfaces comply with regulations restricting the use of dark patterns when collecting consent to the processing of personal data?
Read moreCyber_Bytes - Issue 54
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 53
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 52
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreICO publishes guidance on compliance of game design with the Children’s Code
What steps can game designers take to ensure their games comply with the Children’s Code?
Read moreCyber_Bytes - Issue 51
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 50
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCloud computing in business: A silver lining?
Cloud computing is a resource that businesses have rapidly adopted as a major step towards completing their digitalisation.
Read moreRPC Law x Web3: Gambling regulations – Don't Play Games of Chance with the Law
This is part of a series of RPC x Web3 articles designed to help Web3 participants and enthusiasts understand their rights in this rapidly evolving space.
Read moreCyber_Bytes - Issue 49
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreThe NIS Regulations to expand to bring outsourced IT providers and managed service providers into scope
The UK's Network and Information Systems ("NIS") Regulations came into force in May 2018 to boost the level of security of network and information systems for the provision of essential services, such as transport, energy, water, health and digital infrastructure ("operators of essential services (OES)"). These Regulations also applied to digital services, such as online marketplaces, online search engines and cloud computing services ("relevant digital service providers (RDSPs)").
Read moreCyber_Bytes - Issue 48
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreRPC Law x Web3: If There's Something Strange in the Web3 World, Who You Gonna Call?
"And the way we win is by creating a new, democratic, decentralised internet, one where the behaviour of companies like this will be impossible forever. One where it is the users, not the kings, who have sovereign control over their data." - Richard Hendricks, in the HBO TV Series "Silicon Valley", portrayed by Thomas Middleditch
Read moreCyber_Bytes - Issue 47
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreRPC Law x Web3: Considerations for NFT Founders Building Communities and Providing Utility to Holders
In the past when one purchased an NFT, the only expectation was that he, she, or they was purchasing rights in an asset (usually a digital artwork).
Read moreRecent developments in data subject litigation caselaw
Two interesting recent developments in the case law relating to data subject litigation. These further undermine the viability of low-value claims for personal data breaches for claimant law firms.
Read moreRPC Law x Web3: Ownership of Digital Assets in Web3
This is the inaugural part of a series of articles relating to legal issues around Web3. Over the course of the next few months, will hope to provide you with some thoughts and insights on the areas of Web3 where potential legal issues may arise based on current laws.
Read moreSingapore data protection update
New guidance from the Court of Appeal for parties involved in an action against another individual for loss and damage suffered as a result of a contravention of the provisions of the PDPA.
Read moreCyber Incident Reporting Obligations for Hong Kong Licensed Financial Services Companies
The number of cyber-attacks is on the rise. In particular, financial services companies have been identified as key targets for threat actors in the Q2 of 2022.
Read moreChanges to data protection legislation in Asia – 2022 update (including Mainland China)
Looking back on the last 18 months, the data privacy laws of several Asian jurisdictions have been updated to incorporate stronger protections for individuals’ personal data. This article provides an update on a handful of jurisdictions in Asia and summarises some of those main changes, including the far-reaching implications of the new data protection law in Mainland China.
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here