Data And Cyber Bulletin - July 2022
DAC Beachcroft
Show/Hide Tags

Data And Cyber Bulletin - July 2022's Tags

Tags related to this article

Download PDF Print page

Data And Cyber Bulletin - July 2022

Published 22 July 2022

Welcome to the July edition of our Data And Cyber Bulletin, with fascinating content covering the Irish DPC’s draft decision proposing to prevent Meta from transferring personal data from the EU to the US, the Lloyds report on physical cyber risks, and the link between Dunkin Donuts and credential stuffing.  We provide insight into the third attack on Marriott Group and welcome guest content from our Legalign Global partner firm, Wilson Elser, in respect of data breach class actions in the US.  We also consider the European Commission’s recent warning against strict interpretation of the GDPR by Data Protection Authorities, the ICO and NCSC joint letter to the Law Society and Bar Council in respect of ransom payments, and the proposed amendment to the PSTI Bill in respect of ethical hacking.

Draft DPC Decision Proposes Banning Meta Data Transfers from EU to US

We consider the implications of the DPC’s draft decision, banning Meta from transferring personal data from the EU to the US.

Read more

Physical risk in cyber-attacks: Lloyds outlines potential impact to businesses in a new report

We highlight the key points arising out of the Lloyds report on the importance of effective risk management and the role of insurers in helping customers build resilience to cyber-attacks that could cause damage to physical environments.

Read more

Stuffing Dunkin Donuts and Uber Attacks - New Guidance Released on “Credential Stuffing” Incidents

We discuss the recently issued guidance by the Global Privacy Assembly’s International Enforcement Cooperation Working Group on the increasing threat of credential stuffing and highlight recent examples of the same with the Dunkin Donuts and Uber attacks.

Read more

Marriott Group Struck by Third Data Breach

We explain the latest attack on Marriott Group and consider the resulting exposure for the beset hotel chain.

Read more

Plaintiffs’ Attorneys Racing to Courthouses in the United States to File Data Breach Class Actions

We welcome guest contribution from David Ross at Wilson Elser, looking at the uptick in data breach class actions in the US.

Read more

European Commission issues a warning against “strict” interpretation of the GDPR by Data Protection Authorities

We provide insight into the Commission’s recent confirmation that commercial considerations can satisfy the “legitimate interests” lawful basis, and explain the concern raised by the Commission  in respect of the Dutch DPA.

Read more

Ransoms - to pay or not to pay, that is the question …

We set out the key takeaways from the ICO and NCSC’s recently published joint letter to the Law Society and Bar Council in respect of paying ransom demands.

Read more

Proposed Amendment to the PSTI Bill Set To Provide Defence to Ethical Hacking Under the CMA

We share insight into the UK proposal to provide a defence to ethical hacking, providing a welcome update to UK cyber laws, specifically the Computer Misuse Act 1990.

Read more

Failed Delivery Attempt

We summarise key takeaways from the recent up-tick in cyber-incidents impacting delivery companies, with a focus on the recent attack on Yodel.

Read more

We hope you enjoy this month’s edition and invite you to contact the authors of the articles should you wish to discuss them further.

Authors

Hans Allnutt

Hans Allnutt

London - Walbrook

+44 (0) 20 7894 6925

Patrick Hill

Patrick Hill

London - Walbrook

+44 (0)20 7894 6930

Next Article

< Back to articles

Related articles

Data, Privacy & Cyber Bulletin – August 2023

By Hans Allnutt, Patrick Hill, Jade Kowalski

Website design: ICO and CMA call for an end to harmful architecture

By Christopher Air, Stuart Hunt

Cyber Criminals Continue Phishing for Trouble

By Patrick Hill, Sonali Malhotra

ICO consults on draft biometric data guidance

By Jade Kowalski, Amanda Mackenzie

Meta move to consent not fast enough for Norwegian data protection authority

By Jade Kowalski, Stuart Hunt

The proposed ban on cold calling: what will it mean for regulated firms?

By Jade Kowalski, Mathew Rutter, Zoë Carpenter

First GDPR Appeal to reach Upper Tribunal dismissed: Civil standard of proof applies to ICO monetary penalty notices

By Hans Allnutt, Astrid Hardy

AI investigations and claims gather pace in the United States

By Hans Allnutt, Astrid Hardy

Amazon: One of the first tests of NYC's Biometric Statute voluntarily dismissed

By Patrick Hill, Camilla Elliot

The EU Commission’s adequacy decision on the EU-US Data Privacy Framework: six key questions answered

By Jade Kowalski, Alexander Dimitrov

On the increase: Non-Material Loss in Ireland

By Rowena McCormack, Aidan Healy, Charlotte Burke

Agreement reached by EU on new European Data Act

By Rowena McCormack, Aidan Healy, Charlotte Burke

The UK's Online Safety Bill: Royal Assent is on the horizon!

By Jade Kowalski, Astrid Hardy, Kelsey Farish

ICO guides companies on the use of privacy enhancing technologies

By Christopher Air, Omar Kamal

Cross-border GDPR enforcement: European Commission proposes to enhance cooperation

By Igor Pinedo Garcia, Aidan Healy, Stuart Hunt

Financial services: The FCA's emerging regulatory approach to Big Tech and AI

By Jade Kowalski, Stuart Hunt

Data, Privacy & Cyber Bulletin – July 2023

By Patrick Hill, Hans Allnutt, Jade Kowalski

ChatGPT: European regulators take chatbots to task

By Christopher Air, Stuart Hunt

Proposals to extend the "ban" on cold calls – unintended consequences for financial services providers?

By Jade Kowalski, Omar Kamal

EU GDPR fines and a new methodology to ensure consistency

By Jade Kowalski, Stuart Hunt

This website uses cookies so that we can improve your experience. By continuing to use the site you are agreeing to our use of cookies. For more details please view our Cookies Policy.
DAC Beachcroft