On 1 April 2025, the UK Department for Science, Innovation and Technology issued a policy statement setting out its key proposals for the new Cyber Security and Resilience Bill. The Bill is intended to respond to an...more
4/28/2025
/ Cybersecurity ,
National Security ,
New Legislation ,
Popular ,
Proposed Legislation ,
Regulatory Oversight ,
Regulatory Reform ,
Regulatory Requirements ,
Reporting Requirements ,
Supply Chain ,
UK
On 17 July 2024, the King’s Speech and associated background briefing notes were presented and published. These contain a summary of the new government’s plans, including two proposed bills that relate to changes to the UK’s...more
In December 2023, political agreement was reached by EU policy makers on all substantive aspects of the EU Artificial Intelligence Act. Since then, the close-to-final text of this transformational piece of European...more
On 8 December 2023, after marathon “trilogue” negotiations, the Council of the EU, the European Parliament and European Commission reached a groundbreaking agreement on the forthcoming AI Act. Although the final text is still...more
This week’s UK AI Safety Summit is once again bringing the topic of AI regulation to the forefront of public debate. Amongst the hype and steady stream of news stories, something very important is happening. The AI Safety...more
AI technology is surging ahead of regulation and this gap has left companies in quandary. Privacy professionals are asked how can we plan for the lawful use of AI when the legal landscape for its adoption is unsettled....more
On 29 March 2023, the UK government published its long-awaited white paper on its intended approach to regulating AI. The proposal seeks to strike a balance between the primary policy objective of creating a ‘pro-innovation’...more
On 8 March 2023, the UK Department for Science, Information and Technology (DSIT) published the Data Protection and Digital Information (No.2) Bill (DPDI 2) which provides an update to the Government's reforms to the UK data...more
The US National Institute of Standards and Technology (NIST) has officially released the initial version of its Artificial Intelligence Risk Management Framework (AI RMF). The AI RMF is one of the first international...more
The European Commission recently proposed the EU Cyber Resilience Act, a regulation on cybersecurity requirements for products with digital elements. The proposal introduces wide-ranging technical and governance measures that...more
On 18 July 2022, the UK government introduced the Data Protection and Digital Information Bill to Parliament for its first reading. Following the UK leaving the European Union in 2020, the Bill sets out the proposed reforms...more
On 17 June 2022, the UK government published its refined plans for reforming UK data protection law, following a detailed consultation exercise undertaken last year. The proposals form part of wider changes to the UK...more
6/28/2022
/ Corporate Counsel ,
Cybersecurity ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Legislative Agendas ,
Personal Data ,
Popular ,
Regulatory Agenda ,
UK ,
UK GDPR
At our recent Health Care AI Law and Policy Summit, Hogan Lovells attorneys Dan Whitehead, Bonella Ramsay, Louise Crawford, and Imogen Ireland convened with industry leaders virtually at the Health Care AI Law and Policy...more
On 22 September, the UK government’s Department for Digital, Culture, Media & Sport (DCMS) announced its long-awaited National AI Strategy. The strategy paper sets out the government’s intended 10-year agenda for making the...more
On 10 September 2021, the UK Government’s Department for Digital, Culture, Media and Sport (DCMS) published its long-awaited proposals for reform of the country’s data protection laws. The consultation paper includes a...more
On 6 August, Hogan Lovells submitted its response to the European Commission’s public consultation on its proposed AI Regulation (Draft Regulation). Our view is that the Draft Regulation is an ambitious and comprehensive...more
On 18 June 2021, the European Data Protection Board (EDPB) and European Data Protection Supervisor (EDPS) issued a joint opinion on the European Union’s proposed AI Regulation, which was announced earlier this year....more
7/15/2021
/ Artificial Intelligence ,
Biometric Information ,
Cybersecurity ,
Data Protection ,
Data Protection Authority ,
EDPS ,
EU ,
European Commission ,
European Data Protection Board (EDPB) ,
Personal Data ,
Public Consultations
On 13 January 2021, the Advocate General (AG) of the Court of Justice of the European Union (CJEU) issued an important opinion in the case of Facebook Belgium v Gegevensbeschermingsautoriteit (C-645/19) which considers the...more
1/18/2021
/ Court of Justice of the European Union (CJEU) ,
Cross-Border ,
Cybersecurity ,
Data Protection ,
e-Privacy Directive ,
EU ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Lead Supervisory Authority ,
Personal Data ,
Popular
On 16 December 2020, the EU released its proposed revisions to the existing Directive 2016/1148 on the security of network and information systems (NIS2)....more
On 16 October the UK Information Commissioner (ICO) confirmed that it had imposed a fine of £20m on British Airways (BA) for infringing the GDPR by failing to protect the personal data of approximately 400,000 of its...more
10/29/2020
/ British Airways ,
Corporate Counsel ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Protection ,
Enforcement Actions ,
General Data Protection Regulation (GDPR) ,
Popular ,
UK ,
UK ICO