Search results
231 results ordered by
Hong Kong data protection: cross-border transfers of personal data
We take a closer look at businesses' obligations under Hong Kong law to protect personal data in a cross-border transfer and the new recommended model contractual clauses.
Read moreNew guidance on balancing data protection with the FCA's Consumer Duty and the TPR's Code of Practice
The Financial Conduct Authority (FCA), Information Commissioner's Office (ICO) and The Pensions Regulator (TPR) have published welcome guidance (Joint Statement) aimed at retail investment firms and pension providers on how to ensure their customer communications comply with the FCA's Consumer Duty (Consumer Duty) and the TPR’s Code of Practice (Code of Practice), whilst ensuring they follow the rules on direct marketing and data protection.
Read morePrivacy developments – looking back and looking forward
In this article, we give you a high-level snapshot of the key data protection and privacy developments in the UK and EU in 2024 as well as developments we anticipate for 2025.
Read moreThe EU's Cyber Resilience Act: 10 on the 10
Today the EU's Cyber Resilience Act (Regulation (EU) 2024/2847) ('CRA') enters into force. The CRA recognises that the continuously evolving world of smart products is frequently challenged by vulnerabilities which can potentially lead to cyber-security incidents. Whilst most of the Act's obligations will not be applicable until three years from now, 10 December is the day when the EU takes a big step towards it's ten-year Cybersecurity Strategy. To mark the occasion, we have outlined ten key points that entities in scope must be aware of in preparation for compliance with the CRA.
Read moreDORA Watch - November 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Developments Compilation – October 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDigital operational resilience: the UK regulatory landscape
Operational Resilience in the supply chain has become an undeniable priority for all financial service providers across the continent.
Read moreDORA Watch – August and September 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Watch – June and July 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreRansoms and Sanctions and Fines (oh my!)
Ransomware attacks are happening all the time. Just the other month, the Cl0p ransomware gang claimed responsibility for the exploitation of a zero-day vulnerability in the MOVEit Transfer tool.
Read moreEU publishes draft Code for general-purpose AI models
What measures are proposed by the EU AI Office to regulate general-purpose AI (GPAI) models?
Read moreOfcom rolls out implementation phases for compliance with the Online Safety Act
What is Ofcom’s timeframe for implementation of the Online Safety Act (OSA) and what actions will in-scope services need to take to ensure compliance?
Read moreNew Safer Phones Bill aims at “making social media less addictive” for young people
How does the Safer Phones Bill intend to protect young people online?
Read moreTwo years on from the Digital Services Act
How has the European Commission (Commission) enforced the Digital Services Act (DSA) since its inception?
Read moreUK’s Digital Regulation Co-operation Forum announces new AI and Digital Hub Pilot
What is the AI and Digital Hub and how can AI innovators use it?
Read moreEU designates Apple a gatekeeper for iPadOS but not for iMessage
Can a business avoid being designated a “gatekeeper” under the Digital Markets Act (DMA) even if it satisfies the quantitative criteria under the DMA?
Read moreOnline Safety Act: Ofcom consults on draft codes to protect children online
What must businesses do to ensure online safety for children under the latest codes of practice published by Ofcom?
Read moreWhat in the AI is going on… April to June 2024
Meta launched its newest generation of its open-source LLM (large language model), Llama 3, which is the technology that powers its AI systems. The launch of Llama 3 signals a step closer to human-like AI that can reason and bestow a memory. OpenAI also discussed plans for its next AI model, GPT-5. Like Llama 3, GPT-5 will see improvements to the model’s planning and reasoning capabilities, going beyond its current capability to deal with discrete tasks. GPT-5 is expected to be released later in the year.
Read moreEU AI Act is signed!
What are the core elements of the EU’s Artificial Intelligence Act and how does it impact the regulation of AI systems?
Read moreCMA publishes update paper on AI Foundation Models
What is the state of play for the market of AI Foundation Models (FM) and what issues in the market is the Competition and Markets Authority (CMA) most concerned about?
Read moreNew EU guidelines on mitigating risks for electoral
What are the European Commission’s new guidelines and how do they protect the integrity of electoral processes?
Read moreHong Kong Employment Law Update: Mandatory Provident Fund offsetting mechanism to be abolished after decade-long debate and campaigning
Following on from our brief update published on 9 June 2022, this article provides a detailed overview of the amendments put forward by the long-awaited Employment and Retirement Schemes Legislation (Offsetting Arrangement) (Amendment) Bill 2022 (the "Bill"), which was finally passed by the Legislative Council on 9 June 2022. The main feature of the Bill is the abolishment of the offsetting mechanism of the Mandatory Provident Fund ("MPF").
Read moreHong Kong Wage Subsidy Update – Government announces new round of Employment Support Scheme
The Government has at last finalized the details of the new round of Employment Support Scheme ("2022 ESS"). The purpose of the 2022 ESS to offer limited time financial support to small and medium-sized enterprises through providing wage subsidies to encourage enterprises to increase employment and to retain employees who would otherwise be made redundant.
Read moreIncreased penalty for employers who employ overstayers
Immigration (Amendment) Ordinance 2021 (“IAO”)
Read moreHong Kong's Legislative Council to consider Cancellation of MPF Offsetting
Under the Employment Ordinance, employers can offset long service payment or severance payment due to an employee against the employer's mandatory and voluntary contributions to the Mandatory Provident Fund (MPF), Hong Kong's pension system.
Read moreReimbursement of Maternity Leave Pay Scheme in Hong Kong
Hong Kong's statutory maternity leave has been extended from 10 weeks to 14 weeks with effect from 11 December 2020. From 1 April 2021, the Hong Kong Government has started accepting applications to reimburse employers' payment in respect of the extended period of maternity leave.
Read moreCOVID 19 Your workforce: What on earth is "furlough"?
Meaning of furlough, especially in the context of companies dealing with the impact of COVID-19.
Read moreCOVID-19 Your workforce: pay and costs - practical ideas our clients are exploring
COVID-19 Your workforce: pay and costs - practical ideas our clients are exploring. These are extraordinary times that place extraordinary pressures on all of us, including dealing with your workforce. We set out below some ideas that we are hearing about from our clients and some areas you may wish to think about in terms of your employee costs.
Read moreCOVID-19 Your workforce: supporting mental health when home working
COVID-19 Your workforce: supporting mental health when home working. Many of us are working from home during this crisis and while this can be an effective way of working for some, it is less happy for others; loneliness, caring for vulnerable dependants and challenging home environments are all being experienced. There may be members of your teams who fall into these categories.
Read moreCyber_Bytes Issue 70
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreNew Standard Contractual Clauses for data importers outside the EAA but subject to the GDPR
Are the EU’s Standard Contractual Clauses (SCCs) needed if a data importer is located outside the European Economic Area (EEA) and already directly subject to the EU General Data Protection Regulation (EU GDPR)? In other words, where third party controllers and processors are based outside the EAA but subject to the GDPR, do you still need the SCCs to enable a lawful international transfer to them?
Read moreThe UK’s new Data (Use and Access) Bill
What does the UK’s new Data (Use and Access) Bill (the Data Bill) mean for businesses?
Read moreSnapshots Winter 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreEDPB’s new publications on the ePrivacy Directive, processors and legitimate interests
What are the key takeaways for organisations processing personal data set out in the recent Guidelines and Opinions adopted by the European Data Protection Board (EDPB)?
Read moreICO Statement on Generative AI Model Training
What position does the Information Commissioner’s Office (ICO) continue to take on Generative AI Model training?
Read moreICO reprimands Sky Betting and Gaming for using non-essential cookies without users’ consent
What proactive steps should website operators take to ensure that their use of cookies complies with UK data protection law? Put another way, are you sure personal data is not being collected by your website’s advertising cookies before users have consented to their deployment?
Read moreIrish DPC fines LinkedIn €310m for behavioural analysis and targeted advertising breaches
How certain do data controllers need to be of their lawful basis for processing personal data when engaging in behavioural analysis and targeted advertising, and how clearly must this be reflected in a privacy policy?
Read moreData Dispatch - November 2024
Welcome to the eighth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreNew Data (Use and Access) Bill
What does the new Data (Use and Access) Bill (the Data Bill) mean for businesses?
Read moreCyber_Bytes Issue 69
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreNavigating a cyber breach
Cyber attacks remain a board-level concern for companies given their ability to disrupt services and unleash serious repercussions on financial, reputational, and operational fronts.
Read moreData Dispatch - October 2024
Welcome to the seventh edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreThe EU Cyber Resilience Act targets digital components made available in the EU market throughout the entire supply chain of a product
Last month, the EDPB published their "Guidelines on Examples regarding Personal Data Breach Notification" (the Guidelines). These are intended to provide "practice-oriented, case-based" guidance on when it is necessary to notify the relevant supervisory authorities (the SA) under Article 33(1) of the GDPR and/or data subjects under Article 34(1) of the GDPR following a personal data breach.
Read moreSnapshots Autumn 2024
A roundup of key legal developments for the modern commercial lawyer.
Read moreUK's new AI Cyber Security Code of Practice
What is the UK's proposed AI Cyber Security Code of Practice?
Read moreEU AI Act into force 1 August 2024
The EU AI Act came into force across all 27 EU member states on 1 August 2024. The aim of the legislation is to ensure AI systems used in the EU are safe and transparent.
Read moreNew Minister for Data Protection Sir Chris Bryant
On 8 July 2024, the Government appointed Sir Chris Bryant as the Minister of State for Data Protection and Telecoms (as well as Minister of State for Creative Industries, Arts and Tourism).
Read moreSocial media and video sharing platforms targeted by ICO over children's privacy practices
What must social technology platforms be aware of to ensure they are following the ICO's codes of practice for children's online safety?
Read moreUber hit with €290m fine for transferring European driver data to its US HQ
What does the Uber fine signal for international data transfers and the consequences of failing to comply with the EU General Data Protection Regulation (EU GDPR)?
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here