Search results
188 results ordered by
Privacy developments – looking back and looking forward
In this article, we give you a high-level snapshot of the key data protection and privacy developments in the UK and EU in 2024 as well as developments we anticipate for 2025.
Read moreDigital operational resilience: the UK regulatory landscape
Operational Resilience in the supply chain has become an undeniable priority for all financial service providers across the continent.
Read moreHow will the "Genny lec" impact the world of cyber and tech?
On 22 May 2024, Prime Minister Rishi Sunak stood in the pouring rain to announce a General Election, thus commencing a summer of political and meteorological uncertainty for those in the UK.
Read moreNew developments in AI may put law firms at greater risk of phishing fraud
As the computing power of Artificial Intelligence continues to grow exponentially, we consider how generative technology may expand the reach of traditional phishing frauds aimed at law firms.
Read moreNew guidance on balancing data protection with the FCA's Consumer Duty and the TPR's Code of Practice
The Financial Conduct Authority (FCA), Information Commissioner's Office (ICO) and The Pensions Regulator (TPR) have published welcome guidance (Joint Statement) aimed at retail investment firms and pension providers on how to ensure their customer communications comply with the FCA's Consumer Duty (Consumer Duty) and the TPR’s Code of Practice (Code of Practice), whilst ensuring they follow the rules on direct marketing and data protection.
Read moreDORA Watch - November 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreNavigating a cyber breach
Cyber attacks remain a board-level concern for companies given their ability to disrupt services and unleash serious repercussions on financial, reputational, and operational fronts.
Read moreDORA Developments Compilation – October 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Watch – August and September 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreDORA Watch – June and July 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read morePushing back on APP scams
An Authorised Push Payment (APP) is where a payer instructs their payment service provider, such as their bank, to send money from their account to another. These payments are usually made through the Faster Payment Service or CHAPS.
Read moreThe November 2023 AI safety summit and the UK's direction of travel
The government has confirmed that the UK AI safety summit will be held at Bletchley Park on 1 and 2 November 2023.
Read moreTelecoms supply agreement excludes "loss of profit" claim under "anticipated profits" liability exclusion (EE v Virgin Mobile)
In line with a number of recent cases, in EE Limited v Virgin Mobile Telecoms Limited [2023] EWHC 1989 (TCC) the courts have shown that parties generally cannot avoid clear wording contained in exclusion clauses in order to recover losses that have been expressly excluded (in this case, loss of profits).
Read moreRolls-Royce entitled to hit the brakes in dispute over termination of a software services agreement (Topalsson v Rolls-Royce)
In Topalsson GmbH v Rolls-Royce Motor Cars Limited [2023] EWHC 1765 (TCC), the High Court has provided useful guidance on how to determine whether a software implementation timeline agreed by the parties is binding, when implementation is considered complete and in what circumstances failing to complete implementation by the contractual deadlines entitles the customer to terminate the contract.
Read moreA narrow escape – software services provider entitled to rely on single aggregate liability cap (Drax v Wipro)
When it comes to bespoke software development projects, a lot can go wrong. There's risk for the customer such as project delays, software defects, functionality issues and a lack of meeting of minds in terms of project requirements.
Read moreCyber_Bytes Issue 70
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreEU publishes draft Code for general-purpose AI models
What measures are proposed by the EU AI Office to regulate general-purpose AI (GPAI) models?
Read moreOfcom rolls out implementation phases for compliance with the Online Safety Act
What is Ofcom’s timeframe for implementation of the Online Safety Act (OSA) and what actions will in-scope services need to take to ensure compliance?
Read moreNew Safer Phones Bill aims at “making social media less addictive” for young people
How does the Safer Phones Bill intend to protect young people online?
Read moreTwo years on from the Digital Services Act
How has the European Commission (Commission) enforced the Digital Services Act (DSA) since its inception?
Read moreThe EU's Cyber Resilience Act: 10 on the 10
Today the EU's Cyber Resilience Act (Regulation (EU) 2024/2847) ('CRA') enters into force. The CRA recognises that the continuously evolving world of smart products is frequently challenged by vulnerabilities which can potentially lead to cyber-security incidents. Whilst most of the Act's obligations will not be applicable until three years from now, 10 December is the day when the EU takes a big step towards it's ten-year Cybersecurity Strategy. To mark the occasion, we have outlined ten key points that entities in scope must be aware of in preparation for compliance with the CRA.
Read moreData Dispatch - November 2024
Welcome to the eighth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreNew Data (Use and Access) Bill
What does the new Data (Use and Access) Bill (the Data Bill) mean for businesses?
Read moreCyber_Bytes Issue 69
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreData Dispatch - October 2024
Welcome to the seventh edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreThe EU Cyber Resilience Act targets digital components made available in the EU market throughout the entire supply chain of a product
Last month, the EDPB published their "Guidelines on Examples regarding Personal Data Breach Notification" (the Guidelines). These are intended to provide "practice-oriented, case-based" guidance on when it is necessary to notify the relevant supervisory authorities (the SA) under Article 33(1) of the GDPR and/or data subjects under Article 34(1) of the GDPR following a personal data breach.
Read moreCyber_Bytes Issue 68
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreAI-as-a-Service – Key Issues
Artificial Intelligence-as-a-Service (AIaaS), in the same vein as Software-as-a-Service and Infrastructure-as-a-Service, refers to cloud-based tools that allow businesses to gain access to an AI model hosted by a third party provider.
Read moreProcuring AI – Commercial Considerations Checklist
Many companies will no doubt be considering using AI within their business to take advantage of the massive opportunities for increased productivity and cost efficiencies promised.
Read moreAI and Privacy – 10 Questions to Ask
We set out in this section 10 key questions to ask yourself at the outset when developing or deploying AI solutions in your business.
Read moreGenerative AI – Addressing Copyright
When it comes to the interaction of AI and IP rights, bar a flurry of activity surrounding the inevitable outcome by the courts in the Thaler, Dabus case (see here) and the Court of Appeal's ruling on the potential for exclusion from patentability of artificial neural networks in the Emotional Perception case, most attention has been focused on copyright issues. There are three main potentially thorny issues and all have been extensively covered by the mainstream media.
Read morePart 6 – Practical Considerations
AI focussed actors and providers have been focussing on their forthcoming AI obligations and on governance for some time, but it is now prudent for the majority of organisations to assess how their use of AI will come within the scope of regulation in key territories and become familiar with each regime (and devise a means to keep up with the anticipated fast moving changes). Planning for the costs of compliance and for AI governance including systems and procedures for data retention and record keeping should also be part of current business strategy together with building expertise on AI internally and identifying trusted advisors from the "noise" of what is being offered externally.
Read morePart 5 – AI Regulation Globally
On 30 October 2023 the G7 published its international guiding principles on AI, in addition to a voluntary code of conduct for AI developers. The G7 principles are a non-exhaustive list of guiding principles aimed at promoting safe, secure and trustworthy AI and are intended to build on the OECD's AI Principles, adopted back in May 2019.
Read morePart 3 - AI regulation in the US
Back in October 2022, the White House published federal guidance – a Blueprint for an AI Bill of Rights identifying five principles aiming to guide the design, use, and deployment of automated systems. It was designed to operate as a roadmap to protect the public from AI harms and was followed in October 2023 by the US President's Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence. The Executive Order sets out eight "guiding principles and priorities", detailing how those principles and priorities should be put into effect, and reporting requirements
Read morePart 2 - AI regulation in the EU
The EU AI Act, the main elements of which are covered in our previous article, entered into force on 1 August 2024. Most provisions apply from August 2026 but some apply earlier, or later.
Read morePart 1 - UK AI regulation
There has been consistent messaging from the UK Conservative-led government that the UK has decided to adopt a light touch approach to regulating AI. This was evident in the AI white paper published in March 2023 which outlined a principles based framework (see ['The Ethics of AI – the Digital Dilemma'] for more information about the principles themselves and see here for additional coverage of the AI white paper). The UK government held a consultation on the AI white paper in 2023 and published a response on 6 February 2024 that adds slightly more flesh to the bones of the UK framework.
Read moreRegulation of AI - raising the trillion dollar bAIby - introduction
As with any new technology, existing data protection and privacy, intellectual property, competition, product liability, data security and consumer laws apply to its application in each jurisdiction. This has thrown up a number of important and newsworthy issues and considerations for AI developers and providers, legislators, consumers and rights holders. There are also several sets of high profile legal proceedings both decided and ongoing in several jurisdictions. These issues and legal proceedings are discussed in other sections of this AI Guide.
Read moreData Dispatch - September 2024
Welcome to the sixth edition of Data Dispatch from the Data Advisory team at RPC. Our aim is to provide you on a regular basis with an easy-to-digest summary of key developments in data protection law.
Read moreCyber_Bytes Issue 67
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreICO Processor fine – the ICO's approach to assessing technical standards and its impact
The ICO recently confirmed its provisional decision to fine Advanced Computer Software Group £6.09 million following a data breach that it suffered in 2022.
Read moreCyber_Bytes Issue 66
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read morePart 4 – AI Regulation in Asia
This is Part 4 of 'Regulation of AI – raising the trillion dollar bAIby'
Read moreUK’s Digital Regulation Co-operation Forum announces new AI and Digital Hub Pilot
What is the AI and Digital Hub and how can AI innovators use it?
Read moreEU designates Apple a gatekeeper for iPadOS but not for iMessage
Can a business avoid being designated a “gatekeeper” under the Digital Markets Act (DMA) even if it satisfies the quantitative criteria under the DMA?
Read moreOnline Safety Act: Ofcom consults on draft codes to protect children online
What must businesses do to ensure online safety for children under the latest codes of practice published by Ofcom?
Read moreWhat in the AI is going on… April to June 2024
Meta launched its newest generation of its open-source LLM (large language model), Llama 3, which is the technology that powers its AI systems. The launch of Llama 3 signals a step closer to human-like AI that can reason and bestow a memory. OpenAI also discussed plans for its next AI model, GPT-5. Like Llama 3, GPT-5 will see improvements to the model’s planning and reasoning capabilities, going beyond its current capability to deal with discrete tasks. GPT-5 is expected to be released later in the year.
Read moreEU AI Act is signed!
What are the core elements of the EU’s Artificial Intelligence Act and how does it impact the regulation of AI systems?
Read moreCMA publishes update paper on AI Foundation Models
What is the state of play for the market of AI Foundation Models (FM) and what issues in the market is the Competition and Markets Authority (CMA) most concerned about?
Read moreNew EU guidelines on mitigating risks for electoral
What are the European Commission’s new guidelines and how do they protect the integrity of electoral processes?
Read moreCyber_Bytes Issue 65
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here