In our latest blog post on preparing for the EU’s Digital Operational Resilience Act (DORA), entering into force on January 17, 2025, we take a look at second-level requirements under DORA covering the classification and...more
Beginning January 17, 2025, financial entities based in the European Union must have in place processes and policies, and mandatory contract provisions with their third-party technology vendors, that comply with the EU...more
The European Central Bank (ECB) has published data showing that banks are increasingly using third-party providers to support their critical functions. However, more than 10% of outsourcing contracts covering critical...more
Financial regulators in the United Kingdom, European Union, and United States are proposing new rules to regulate how financial products are promoted on social media platforms. There is a particular focus on financial...more
Welcome to the conclusion of our two-part Spotlight post with Lee Harding in which we discuss key employment/labor and employment law issues in relation to UK and EU outsourcing transactions. In Part 1, we talked about key...more
In this two-part edition of our Spotlight series, we welcome Lee Harding to discuss key labor and employment law issues in relation to outsourcing transactions, predominantly in the United Kingdom and European Union....more
The European Commission confirmed on April 23, 2022, that the European Parliament and Council have reached political agreement the Digital Services Act (DSA) first published in December 2020. Morgan Lewis previously reported...more
On June 4, 2021, the European Commission adopted its long-anticipated updated Standard Contractual Clauses (New SCCs) for use by organizations transferring personal data outside of the European Economic Area (EEA) to third...more
7/15/2021
/ Cybersecurity ,
Data Protection ,
EU ,
European Commission ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
UK
The European Commission (Commission) published the first draft of the Digital Services Act (DSA) and the Digital Markets Act (DMA) on December 15 2020. Morgan Lewis previously reported on the anticipated DSA....more
The UK government published a Green Paper on December 15 that includes proposals to shape the future of public procurement in the United Kingdom by speeding up and simplifying public sector procurement processes....more
Traders selling goods, services, and/or digital content online to consumers in the United Kingdom and the European Union need to comply with laws requiring the provision of certain information as part of the sales process....more
12/16/2020
/ Data Collection ,
E-Commerce ,
EU ,
Goods or Services ,
Modern Slavery Act ,
Online Platforms ,
Privacy Notice Rule ,
Regulatory Requirements ,
Supply Chain ,
UK ,
Websites
This month the European Commission (Commission) is expected to publish the Digital Services Act (DSA), a package of EU legislation intended to modernize the legal framework for digital services in the European Union. ...more
The European Commission (Commission) published draft Article 28 standard contractual clauses (Article 28 Clauses) last month for use between controllers and processors when processing personal data in the European Union. ...more
The UK government has indicated that the UK’s approach to public procurement will fundamentally change post-Brexit. While it remains to be seen whether such a fundamental change will be possible in practice, the UK...more