Search results
1662 results ordered by
AI and Privacy – 10 Questions to Ask
We set out in this section 10 key questions to ask yourself at the outset when developing or deploying AI solutions in your business.
Read moreGenerative AI – Addressing Copyright
When it comes to the interaction of AI and IP rights, bar a flurry of activity surrounding the inevitable outcome by the courts in the Thaler, Dabus case (see here) and the Court of Appeal's ruling on the potential for exclusion from patentability of artificial neural networks in the Emotional Perception case, most attention has been focused on copyright issues. There are three main potentially thorny issues and all have been extensively covered by the mainstream media.
Read morePart 6 – Practical Considerations
AI focussed actors and providers have been focussing on their forthcoming AI obligations and on governance for some time, but it is now prudent for the majority of organisations to assess how their use of AI will come within the scope of regulation in key territories and become familiar with each regime (and devise a means to keep up with the anticipated fast moving changes). Planning for the costs of compliance and for AI governance including systems and procedures for data retention and record keeping should also be part of current business strategy together with building expertise on AI internally and identifying trusted advisors from the "noise" of what is being offered externally.
Read morePart 5 – AI Regulation Globally
On 30 October 2023 the G7 published its international guiding principles on AI, in addition to a voluntary code of conduct for AI developers. The G7 principles are a non-exhaustive list of guiding principles aimed at promoting safe, secure and trustworthy AI and are intended to build on the OECD's AI Principles, adopted back in May 2019.
Read morePart 3 - AI regulation in the US
Back in October 2022, the White House published federal guidance – a Blueprint for an AI Bill of Rights identifying five principles aiming to guide the design, use, and deployment of automated systems. It was designed to operate as a roadmap to protect the public from AI harms and was followed in October 2023 by the US President's Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence. The Executive Order sets out eight "guiding principles and priorities", detailing how those principles and priorities should be put into effect, and reporting requirements
Read morePart 2 - AI regulation in the EU
The EU AI Act, the main elements of which are covered in our previous article, entered into force on 1 August 2024. Most provisions apply from August 2026 but some apply earlier, or later.
Read morePart 1 - UK AI regulation
There has been consistent messaging from the UK Conservative-led government that the UK has decided to adopt a light touch approach to regulating AI. This was evident in the AI white paper published in March 2023 which outlined a principles based framework (see ['The Ethics of AI – the Digital Dilemma'] for more information about the principles themselves and see here for additional coverage of the AI white paper). The UK government held a consultation on the AI white paper in 2023 and published a response on 6 February 2024 that adds slightly more flesh to the bones of the UK framework.
Read moreDORA Watch – August and September 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreRegulation of AI - raising the trillion dollar bAIby - introduction
As with any new technology, existing data protection and privacy, intellectual property, competition, product liability, data security and consumer laws apply to its application in each jurisdiction. This has thrown up a number of important and newsworthy issues and considerations for AI developers and providers, legislators, consumers and rights holders. There are also several sets of high profile legal proceedings both decided and ongoing in several jurisdictions. These issues and legal proceedings are discussed in other sections of this AI Guide.
Read moreData Dispatch - September 2024
Welcome to the sixth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreCyber_Bytes Issue 67
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreICO Processor fine – the ICO's approach to assessing technical standards and its impact
The ICO recently confirmed its provisional decision to fine Advanced Computer Software Group £6.09 million following a data breach that it suffered in 2022.
Read moreCyber_Bytes Issue 66
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read morePart 4 – AI Regulation in Asia
This is Part 4 of 'Regulation of AI – raising the trillion dollar bAIby'
Read more“Consent or pay” models under scrutiny in UK and EU
Are “consent or pay” business models compliant with data protection law?
Read moreICO forces Serco Leisure to stop using facial recognition technology for employees
In what circumstances can facial recognition technology (FRT) be acceptable to monitor employees in the workplace?
Read moreOfcom and ICO to collaborate on Online Safety and Data Protection
How are the data protection and broadcasting regulators collaborating to regulate online services from a safety and privacy perspective, and what does this mean for businesses and services regulated by both bodies?
Read moreICO publishes guidance on content moderation
What steps should businesses operating content moderation systems in the UK be taking to comply with new guidance published by the UK’s Information Commissioner (ICO)?
Read moreThe ICO’s strategic approach to regulating AI
How can the ICO’s recently published AI strategy paper help businesses navigate the evolving AI regulatory landscape, particularly in respect of data protection principles?
Read moreNew development: DPDI Bill fails to become law
The Data Protection and Digital Information Bill (DPDIB), the proposal for post-Brexit data protection laws in the UK, did not pass through Parliament before its dissolution on 24 May 2024 ahead of the general election on 4 July 2024. This means that the DPDIB has failed to become law and any proposals for data reform in the UK will largely need to start afresh in the new Parliament.
Read moreDORA Watch – June and July 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreCyber_Bytes Issue 65
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreData dispatch - July 2024
Welcome to the fifth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreHow will the "Genny lec" impact the world of cyber and tech?
On 22 May 2024, Prime Minister Rishi Sunak stood in the pouring rain to announce a General Election, thus commencing a summer of political and meteorological uncertainty for those in the UK.
Read more2024 Amendments to the Cybersecurity Act 2018
The Cybersecurity Act 2018 (the "Act") first came into force more than 6 years ago to establish a legal framework for the oversight and maintenance of national cyber security in Singapore.
Read moreProviding the identity of third-party recipients of personal data to a data subject – helpful guidance from the High Court
The High Court has handed down a helpful judgment for data controllers responding to data subject access requests which analyses the circumstances in which it may be appropriate for a data controller to withhold the identities of third parties who have been provided with a data subject's personal data.
Read moreCyber_Bytes Issue 64
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreThe Ethics of AI - The Digital Dilemma
This is Part 6 of 'Regulation of AI – raising the trillion dollar bAIby'
Read moreWhat is AI and why is it topical?
Whilst there is no universal definition of what constitutes artificial intelligence, at its core, AI refers to the simulation of human intelligence in machines that are programmed to think and learn like humans. This encompasses the ability to reason, learn from experience, understand complex concepts, interact with their environment and look to solve problems.
Read moreCyber_Bytes Issue 63
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreData dispatch - April 2024
Welcome to the fourth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreDepartment for Science, Innovation and Technology consults on proposed data infrastructure statutory framework
What statutory obligations could the Department for Science, Innovation and Technology’s (DSIT) proposed statutory framework impose on UK data centre providers?
Read moreICO publishes updates to its guidance on Transfer Risk Assessments
How will recent updates to the Information Commissioner’s Office’s (ICO) guidance on Transfer Risk Assessments (TRAs) affect how UK organisations conduct their TRAs?
Read moreNew ICO guidance on content moderation and data compliance
How can organisations using content moderation technologies and processes best comply with data protection laws?
Read moreICO launches consultation series on generative AI and data protection
What is the Information Commissioner’s Office’s (ICO) intended approach to developing guidance on how data protection law should be applied to the development and use of generative AI?
Read moreCJEU rules on what constitutes “automated decision-making” under the GDPR
Does the production of a credit score constitute “automated decision-making” for the purposes of Article 22 of the EU General Data Protection Regulation (GDPR)? What wider impact will this have for AI technologies?
Read moreEDPB adopts opinion on “main establishment” of a controller in the EU
What is meant by “main establishment” under article 4(16)(a) of the GDPR for the purposes of determining the application of the one-stop-shop mechanism?
Read moreICO warns UK’s most visited websites to improve cookie choices
What steps is the ICO taking to ensure that website cookie banners are compliant with law?
Read moreNew Development: EU Data Act published in Official Journal
The EU Data Act (the Act) came into force on 11 January 2024. The Act sets out rules regarding the fair access to and use of data, aiming to enhance the data economy for individuals and businesses by overcoming barriers to data sharing and establishing frameworks around data access and use.
Read moreICO fines HelloFresh £140,000 after 7-month spam marketing campaign
Where did HelloFresh go wrong with their email and text marketing campaign and what lessons can be learned from the ICO’s investigation and subsequent fine?
Read moreCyber_Bytes - Issue 62
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreRPCCyber_ app provides 24/7 cyber breach support
International law firm RPC has launched RPCCyber_ an app that provides vital breach response information and guidance and specialist lawyers around the clock, at the touch of a button.
Read moreCyber_Bytes Issue 61
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_bytes - Issue 60
Welcome to Cyber_bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreData dispatch - January 2024
Welcome to the third edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a monthly basis with an easy-to-digest summary of key developments in data protection law.
Read moreData dispatch - December 2023
Welcome to the second edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a monthly basis with an easy-to-digest summary of key developments in data protection law.
Read moreICO issues preliminary enforcement notice against Snap for its “My AI” Chatbot
How can organisations who wish to join to the world of generative AI ensure that they adequately assess the risks from the perspective of the Information Commissioner’s Office (ICO)?
Read moreNew Development: EDPB provides clarification on tracking techniques covered by the ePrivacy Directive
On 14 November 2023, the European Data Protection Board (EDPB) adopted a set of new guidelines (the Guidelines) on the technical scope of Article 5(3) of the ePrivacy Directive (the ePD).
Read moreClearview AI cleared of £7.5m ICO fine for processing data outside the UK
Just how did the processing of personal data by Clearview AI (Clearview) fall outside the scope of UK GDPR?
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here