Data And Cyber Bulletin - March 2022
DAC Beachcroft
Show/Hide Tags

Data And Cyber Bulletin - March 2022's Tags

Tags related to this article

Download PDF Print page

Data And Cyber Bulletin - March 2022

Published 24 March 2022

Welcome to the March edition of our Data And Cyber Bulletin.

We are delighted to share this month’s bumper edition of our Data And Cyber Bulletin with content covering the topical issue of making ransom payments in light of ever-evolving international sanctions, the ICO’s recently published guidance on ransomware and data protection compliance, and a useful summary of the challenges of navigating aviation cyber risk.

We highlight key points arising out two recent regulatory decisions, being the ICO’s first ransomware related monetary penalty notice against Tuckers Solicitors LLP and the Polish DPA fine against Santander Bank. We explain the significance of the recent Supreme Court decision in Bloomberg LG v ZXC and provide insight from our Dublin office on the recent DPC fine against Meta for EUR17m.

Finally, we offer our thoughts on the EDPB’s Amicable Settlement Guidelines which aim to provide consistency in European data breach claims.

The Challenges of Ransom Payments and the International Sanctions Regime

We consider the impact of the international community’s implementation of sanctions on Russia and the payment of ransoms to threat actor groups.

Read more

New ICO Guidance on Ransomware and Data Protection Compliance

We highlight the key points arising out of the ICO’s recently published guidance on ransomware and data protection compliance, which provides a useful reminder of steps which can be taken to mitigate the risk of such attacks.

Read more

Navigating Aviation Cyber Risk

We discuss the importance of aviation cyber insurance and explain the legislative and regulatory environment within which the industry operates.

Read more

Tucking into ransomware; the ICO turns to the legal profession

We consider the importance of the ICO’s recent first ransomware related monetary penalty notice against Tuckers Solicitors LLP, and highlighted a concerning trend in increased attacks against law firms.

Read more

Santander Bank Polska Ordered to Issue Data Subject Notifications and Subjected to EUR 120,000 Fine

We explain the basis for the Polish DPA’s fine against Santander Bank and the justification for ordering the bank to notify impacted data subjects.

Read more

DPC Fines Facebook parent Company Meta €17 million for Breaches of GDPR

Our Dublin office explains the basis and significance of the DPC fine of EUR17m against Facebook parent company, Meta.

Read more

‘Amicable Settlement Guidelines’ to provide consistency in European data breach claims

We explain the key elements of the EDPB Amicable Settlements Guidance and its anticipated impact in respect of harmonising the European approach to resolving data breach complaints.

Read more

Bloomberg LP (Appellant) v ZXC (Respondent) [2022] UKSC 5

We consider the Supreme Court decision in the case of Bloomberg LP v ZXC and the implications for misuse of private information and breach of confidence causes of action.

Read more

We hope you enjoy this month’s newsletter. Please do contact the authors of this month’s newsletter content if you have any questions.

DAC Beachcroft’s Cyber Team

Authors

Patrick Hill

Patrick Hill

London - Walbrook

+44 (0)20 7894 6930

Hans Allnutt

Hans Allnutt

London - Walbrook

+44 (0) 20 7894 6925

Next Article

< Back to articles

Related articles

War exclusions in cyber policies: an overview

By Julian Miller, Tom Evans

Cybercriminals vs law enforcement. Who is winning?

By Hans Allnutt, Camilla Elliot

The UK’s Online Safety Bill: What’s next?

By Jade Kowalski, Astrid Hardy

Look smart: Preventing cyber security risks in a clean energy future

By Hans Allnutt, Stuart Hunt

Replika, a ‘virtual friendship’ AI chatbot, receives GDPR ban and threatened fine from Italian regulator over child safety concerns

By Astrid Hardy, Hans Allnutt

Data Protection: Scottish Courts consider interpretation of Schedule 2 of the DPA 2018

By Louise Gallagher, Katie Anderson

Cyber Newsletter - March 2023

By Patrick Hill, Hans Allnutt

Software next on the agenda for UK cyber resilience

By Hans Allnutt, Stuart Hunt

Singapore: Court of Appeal rules on ‘emotional distress’ as loss or damage

By Andrew Robinson, Summer Montague, Hermanto Moeljo

Indonesia passes new legislation on Personal Data Protection

By Andrew Robinson, Summer Montague, Hermanto Moeljo

US Supreme Court ruling leaves uncertainty around legal privilege for forensic reports

By Patrick Hill, Brett Randles, Jonathan Meer

The ethics of AI: The Cyber Risks posed by Chat GPT

By Christopher Air, Shanaka Wijetunge, Alexander Dimitrov

Cyber-attacks, insurance cover, and the French Insurance Code: a new reporting requirement

By Vladimir Rostan d’ Ancezune, Jonathan Hopkins

Cyber Newsletter - February 2023

By Hans Allnutt, Patrick Hill

LMA publishes updated war and cyber operation exclusions

By Julian Miller

Cyber cat bond represents an important addition to insurer’s armoury against systemic risk

By Julian Miller

“Probably the most significant [GDPR] enforcement decision to date” – summary of Ireland’s recent Facebook and Instagram rulings

By Aidan Healy, Alexander Dimitrov

NIS 2 Directive published as European Union strengthens cybersecurity frameworks

By Patrick Hill, Stuart Hunt

2023: The Cyber & Data Risk Horizon

By Hans Allnutt, Stuart Hunt

County Court grapples with low value data breach claims

By Hans Allnutt, Astrid Hardy

This website uses cookies so that we can improve your experience. By continuing to use the site you are agreeing to our use of cookies. For more details please view our Cookies Policy.
DAC Beachcroft