On March 21, 2024, the United Nations (UN) adopted a draft resolution on AI, entitled "Seizing the opportunities of safe, secure and trustworthy artificial intelligence systems for sustainable development" (the "March...more
11/26/2025
/ Artificial Intelligence ,
Best Practices ,
Data Privacy ,
Data Protection ,
Emerging Technologies ,
Ethics ,
Governance Standards ,
Human Rights ,
International Standards ,
New Regulations ,
Personal Data ,
Popular ,
Regulatory Oversight ,
Regulatory Requirements ,
Risk Management ,
Sustainability ,
United Nations
On 12 November 2025, the Department for Science, Innovation and Technology introduced the UK Cyber Security and Resilience (Network and Information Systems) Bill (the "Bill") to Parliament.
Purpose of the Bill -
A key...more
11/21/2025
/ Cloud Computing ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cyber Threats ,
Cybersecurity ,
Data Centers ,
Information Technology ,
Managed Service Providers (MSPs) ,
Network and Information Security Directive ,
Network Security ,
New Legislation ,
Proposed Legislation ,
Regulatory Reform ,
Regulatory Requirements ,
Reporting Requirements ,
Risk Management ,
UK
Member States were required to implement the NIS 2 Directive ("NIS 2") into national law by 17 October 2024. One year on, many EU Member States have failed to meet the transposition deadline, creating confusion and increasing...more
10/21/2025
/ Cyber Incident Reporting ,
Cybersecurity ,
Digital Service Providers ,
EU ,
EU Directive ,
Incident Response Plans ,
Information Security ,
Member State ,
New Legislation ,
Penalties ,
Regulatory Oversight ,
Regulatory Requirements ,
Reporting Requirements
The Cyber Resilience Act (the "CRA") entered into force on 10 December 2024 and applies in full from 11 December 2027. Manufacturers of in-scope products should start the compliance journey as soon as possible to avoid...more
As major cyber-attacks continue to cause widespread organisational and economic disruption, and botnets are being discovered which have the capability of comprising entire organisations, many businesses are re-evaluating...more
8/18/2025
/ Business Continuity Plans ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Protection ,
Data Security ,
EU ,
General Data Protection Regulation (GDPR) ,
Incident Response Plans ,
Regulatory Requirements ,
Risk Management ,
UK ,
UK GDPR
On 14 January 2025, the Home Office opened a public consultation (the "Consultation") on proposals seeking to address the growing threat and impact of ransomware in the UK.
The UK Government details three specific proposals...more
2/5/2025
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Legislative Agendas ,
Popular ,
Ransomware ,
Risk Management ,
UK
The Cybersecurity Administration of China (the "CAC") has published guidelines concerning outbound data transfers of personal information and "important data" from China to other jurisdictions. Businesses must comply with...more
The Supreme Court of the United Kingdom has delivered its long-awaited decision in the case of Lloyd [2021] UKSC 50, rejecting an attempt to bring a representative claim for compensation for "loss of control" over personal...more
11/11/2021
/ Appeals ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Personal Data ,
Rules of Civil Procedure ,
UK ,
UK Data Protection Act ,
UK GDPR ,
UK Supreme Court