Search results
226 results ordered by
Hong Kong data protection: cross-border transfers of personal data
We take a closer look at businesses' obligations under Hong Kong law to protect personal data in a cross-border transfer and the new recommended model contractual clauses.
Read moreEDPB guidelines on personal data breach notifications
Last month, the EDPB published their "Guidelines on Examples regarding Personal Data Breach Notification" (the Guidelines). These are intended to provide "practice-oriented, case-based" guidance on when it is necessary to notify the relevant supervisory authorities (the SA) under Article 33(1) of the GDPR and/or data subjects under Article 34(1) of the GDPR following a personal data breach.
Read moreThe Supreme Court hands down judgment in Lloyd v Google
In a keenly anticipated judgment that has significant ramifications for UK data protection, the Supreme Court has today overturned the Court of Appeal's decision in Lloyd v Google and restored the original order made by the High Court, refusing the claimant's application for permission to serve proceedings on Google outside the jurisdiction.
Read moreCase comment: striking out of privacy and confidence actions in the Dixons data breach case
The number of claims issued in the High Court (Media and Communications List) with a data protection element continues to increase. The rise in claim numbers can be attributed to a number of factors including: (i) individuals becoming more aware of their rights under data protection legislation, (ii) uncertainty as to whether individuals may recover damages for a loss of control of their personal data without proving material damage or distress; (iii) the abundance of specialist law firms who are prepared to act for individuals on a "no-win-no-fee" basis and (iv) the availability of After the Event ("ATE") insurance to protect a would-be claimant against adverse costs orders.
Read moreUpcoming changes to data protection legislation in Asia
The data privacy landscape in Asia is varied, complex and evolving. We are already seeing the wheels of change in motion as the data privacy laws of several Asian jurisdictions are being updated to reflect more closely the European data protection regime. This article summarises some of those changes.
Read moreSchrems II – Groundhog Day for Data Transfers
On Thursday 16 July, the Court of Justice of the European Union (“CJEU”) delivered its judgment in one of the most highly anticipated court cases in data protection, Case C-311/18 Data Protection Commissioner v Facebook Ireland Limited, Maximillian Schrems (widely referred to as “Schrems II”). This decision came almost 8 months after Advocate General Saugmandsgaard Øe published his Opinion, which albeit not binding, provided a strong indication for the CJEU's judgment.
Read moreRestarting your business and implementing Government guidance to support NHS Test and Trace
In its latest guidance on keeping workers and customers safe during COVID-19 in restaurants, pubs, bars and takeaway services (23 June 2020), the Government has recommended that businesses operating in these sectors keep a temporary record of customers and visitors for 21 days. This will assist NHS Test and Trace with requests for that data if needed.
Read moreCybersecurity and COVID-19: Opportunities for change in the face of challenge
COVID-19 is not the first and will not be the last pandemic, but it is the first one that has brought the importance of cyber resilience and adaptability in the era of global trade to the forefront of many businesses' minds.
Read moreAre you compliant with the new rules in Singapore? Asia? Beyond?
With the implementation of the GDPR in Europe (2018) and the rise of serious cyber-attacks in Asia, many APAC countries are making major changes to their data privacy laws. Navigating the various regulatory regimes can be complex particularly for companies doing business across the region and beyond.
Read moreNo Deal Brexit – implications for data and privacy law compliance
The Brexit rollercoaster ride continues. At the time of writing, the UK and EU have just announced the agreement of a new withdrawal deal but there are serious doubts about whether it will be backed by Parliament. Despite the requirements of the Benn Act, the risk of the UK leaving the EU without a deal continues to be a concern.
Read moreBrexit does not spell the end of the GDPR
The General Data Protection Regulation (the GDPR) is due to become law on 25 May 2018. As this will be before “Brexit” (Britain’s exit from the EU) takes effect, the GDPR will apply in the UK from that date.
Read moreApps: regulators globally push for data transparency
“Not in front of the telly: Warning over ‘listening’ TV”.
Read moreEU publishes draft Code for general-purpose AI models
What measures are proposed by the EU AI Office to regulate general-purpose AI (GPAI) models?
Read moreOfcom rolls out implementation phases for compliance with the Online Safety Act
What is Ofcom’s timeframe for implementation of the Online Safety Act (OSA) and what actions will in-scope services need to take to ensure compliance?
Read moreNew Safer Phones Bill aims at “making social media less addictive” for young people
How does the Safer Phones Bill intend to protect young people online?
Read moreTwo years on from the Digital Services Act
How has the European Commission (Commission) enforced the Digital Services Act (DSA) since its inception?
Read moreUK’s Digital Regulation Co-operation Forum announces new AI and Digital Hub Pilot
What is the AI and Digital Hub and how can AI innovators use it?
Read moreEU designates Apple a gatekeeper for iPadOS but not for iMessage
Can a business avoid being designated a “gatekeeper” under the Digital Markets Act (DMA) even if it satisfies the quantitative criteria under the DMA?
Read moreOnline Safety Act: Ofcom consults on draft codes to protect children online
What must businesses do to ensure online safety for children under the latest codes of practice published by Ofcom?
Read moreWhat in the AI is going on… April to June 2024
Meta launched its newest generation of its open-source LLM (large language model), Llama 3, which is the technology that powers its AI systems. The launch of Llama 3 signals a step closer to human-like AI that can reason and bestow a memory. OpenAI also discussed plans for its next AI model, GPT-5. Like Llama 3, GPT-5 will see improvements to the model’s planning and reasoning capabilities, going beyond its current capability to deal with discrete tasks. GPT-5 is expected to be released later in the year.
Read moreEU AI Act is signed!
What are the core elements of the EU’s Artificial Intelligence Act and how does it impact the regulation of AI systems?
Read moreCMA publishes update paper on AI Foundation Models
What is the state of play for the market of AI Foundation Models (FM) and what issues in the market is the Competition and Markets Authority (CMA) most concerned about?
Read moreNew EU guidelines on mitigating risks for electoral
What are the European Commission’s new guidelines and how do they protect the integrity of electoral processes?
Read moreAutomatic numberplate recognition: is it legal?
A report in the Guardian last week reminds readers of the strong likelihood that local police forces have tracked their movements with the use of automatic numberplate recognition (ANPR).
Read moreAre privacy injunctions too restrictive?
Has privacy law gone too far? It’s not just the editor of the Daily Mail who thinks so.
Read moreBlanket reporting restriction set aside by Court of Appeal
The Court of Appeal has discharged an order the effect of which would have been to postpone the reporting of an important criminal case for several months.
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here