Latest Posts › UK

Share:

Navigating the FemTech Regulatory Landscape: Best Practice & Future Developments

The stakes are high for FemTech – as Benjamin Franklin noted: ‘it takes many good deeds to build a good reputation and only one bad one to lose it.’...more

Navigating the FemTech regulatory landscape: which rules apply and what are the enforcement priorities?

Security, scale or functionality – pick two. This computer science principle coined by the late Professor Anderson is particularly relevant to the FemTech industry. Anderson’s Rule states that for a system to provide high...more

What is FemTech and How Can It Meet the Privacy Needs of Its Users?

In part one of our series "FemTech: how this growing industry can build trust, protect privacy and redress healthcare inequity… one app at a time", we take an introductory look at the industry, and offer some...more

Bridging the Gap - UK Stands Up Data Transfers “Bridge” to the U.S.

On 12 October the UK–U.S. “data bridge” becomes operational, providing an additional, compliant route for UK-outbound transfers of personal data to U.S. organisations that are EU-U.S. Data Privacy Framework members. UK...more

Getting to Know Who: ICO Draft Guidance on Biometric Recognition

On 18 August 2023, the UK’s Information Commissioner’s Office (“ICO”) published draft guidance on biometric recognition (the “Draft Guidance”) for public consultation. The Draft Guidance explains how data protection law...more

‘Finfluencers’ beware - FCA consults on new social media financial promotions guidance

The FCA is continuing to crack down on firms and ‘finfluencers’ using social media for non-compliant and illegal financial promotions and this week has announced plans to update its existing guidance on social media and...more

Computer Says Yes? What do the UK’s Proposed Data Protection Reforms Mean for AI?

How should artificial intelligence (“AI”) be governed? This conundrum is rightly receiving considerable attention from governments, businesses and civil society. ...more

AI Regulation Tracker: UK and EU Take Divergent Approaches to AI Regulation

Artificial intelligence (“AI”), once limited to the pages of science fiction novels, is now viewed as a key strategic priority for both the UK and EU. The UK, in particular, plays a prominent role at the cutting edge of...more

Data Protection Reform - Will the UK Score its Burden-Reducing Goals?

On 8 March 2023, the newly-created Department for Science, Innovation and Technology (“DSIT”) introduced the UK government’s updated proposals for data protection reform in the shape of the Data Protection and Digital...more

EU Cookie Banners: EU Cookie Banner Task Force Report Homes in on Unlawful Practices

On 18 January 2023, the European Data Protection Board (the “EDPB”) announced the adoption of a report on the work undertaken by the Cookie Banner Task Force (the “Task Force”). The Task Force was formed in September 2021 for...more

The Evergreen privacy programme - myth or reality?

Though perhaps falling short of being a universally accept­ed one, it is a truth that any organisation processing per­sonal data needs a privacy programme. But how best should an internal compli­ance framework be structured...more

Cyber laws will be updated to boost UK’s resilience against online attacks

The UK government confirmed on 30 November 2022 that there will be changes to the UK’s cybersecurity regulations in response to a public consultation launched earlier this year. This follows recent updates relating to the...more

Watching Employers Watching their Workers: UK Data Protection Authority Issues Updated Workplace Monitoring Guidance for...

Over the past few years there has been significant growth in the use of technology for monitoring workers, especially following the onset of the COVID-19 pandemic. Global demand (based on the number of internet searches...more

Time’s up to renew your EU data transfer clauses! Here are some tips for ‘re-papering’

With the 27 December 2022 deadline for updating data transfer contracts with the EU SCCs fast approaching, this alert mines European Commission guidance, as well as the team’s experience, and offers some tips for successful...more

UK Children’s Privacy Protection Comes of Age

The Age Appropriate Design Code (“AADC”) - more commonly known as the Children’s Code - has been heralded as the world’s first code to protect children online. Compliance with the AADC became mandatory for in-scope businesses...more

Ransomware - why paying up earns no credit with the UK's Data Protection Authority and others

In a joint letter this summer, the UK’s data protection regulator (the ICO) and the UK’s National Cyber Security Centre (the NCSC) sought to convey some key messages to the legal profession relevant to advising clients...more

UK Data Reforms - Cautious First Steps Along the EU Adequacy “Tightrope”

The UK government set out its detailed proposals for data protection reform on 18 July 2022 in the form of the Data Protection and Digital Information Bill. Compared with some of the radical ideas in the 2021 public...more

Levelling up the UK’s Russian sanctions regime - the new internet sanctions

On 27 April 2022, the Russia (Sanctions) (EU Exit) (Amendment) (No 9) Regulations 2022, SI 2022/477 (the ‘Regulations’) were laid before Parliament and came into force two days later. The regime created under the statutory...more

EU-US data transfers - State of Play on "Privacy Shield 2.0"

Since the Schrems II 2020 judgment famously “cancelled” the EU/U.S. Privacy Shield program for personal data flows from the EU to the United States, it would be an understatement to say that U.S.-bound personal data flows...more

UK-Outbound Data Flows: Standard Contracts Published and Enter Final Approval Phase

On 28 January 2022 (Data Protection Day), the UK’s International Data Transfer Agreement (“IDTA”) and International Data Transfer Addendum to the European Commission’s Standard Contractual Clauses (the “EU Addendum”) were...more

UK launches consultation on international data transfers - a first glimpse of the “UK SCCs”

On 11 August, the UK Information Commissioner’s Office launched a consultation paper on “International transfers under UK GDPR”. The documents released alongside the paper include a draft International Data Transfer Agreement...more

BCLP Global Data Privacy FAQs: Can the new EU standard contractual clauses be used for transfers of personal data from the UK?

The European Commission recently adopted new standard contractual clauses (SCCs) for transfers of personal data from the EU to “third countries” (the “new SCCs”). In this post, we highlight key developments in the UK’s data...more

BCLP Global Data Privacy FAQs: UK gets its Adequacy Decision from the EU, now what does that mean in practice?

On 28 June, the European Commission adopted its Adequacy Decision for the UK, putting to an end (at least for now), the uncertainty surrounding EU to UK personal data flows. This averted a “cliff edge” in the shape of the 30...more

BCLP Global Data Privacy FAQs: What’s the current status of the UK Adequacy Decision?

The European Commission published a draft Adequacy Decision for the UK on 19 February. That document remains in draft, though it is understood to have successfully cleared the last formal approval stage required....more

Who, Sir? Me, Sir? Appointing GDPR Representatives in the UK and the EU

This article explores the topic of appointed representatives under Article 27 of the GDPR. What are they? When do you need one? How is regulatory enforcement starting to play out in the EU and in the UK on this issue?...more

41 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide