Data And Cyber Bulletin - March 2022
DAC Beachcroft
Show/Hide Tags

Data And Cyber Bulletin - March 2022's Tags

Tags related to this article

Download PDF Print page

Data And Cyber Bulletin - March 2022

Published 24 March 2022

Welcome to the March edition of our Data And Cyber Bulletin.

We are delighted to share this month’s bumper edition of our Data And Cyber Bulletin with content covering the topical issue of making ransom payments in light of ever-evolving international sanctions, the ICO’s recently published guidance on ransomware and data protection compliance, and a useful summary of the challenges of navigating aviation cyber risk.

We highlight key points arising out two recent regulatory decisions, being the ICO’s first ransomware related monetary penalty notice against Tuckers Solicitors LLP and the Polish DPA fine against Santander Bank. We explain the significance of the recent Supreme Court decision in Bloomberg LG v ZXC and provide insight from our Dublin office on the recent DPC fine against Meta for EUR17m.

Finally, we offer our thoughts on the EDPB’s Amicable Settlement Guidelines which aim to provide consistency in European data breach claims.

The Challenges of Ransom Payments and the International Sanctions Regime

We consider the impact of the international community’s implementation of sanctions on Russia and the payment of ransoms to threat actor groups.

Read more

New ICO Guidance on Ransomware and Data Protection Compliance

We highlight the key points arising out of the ICO’s recently published guidance on ransomware and data protection compliance, which provides a useful reminder of steps which can be taken to mitigate the risk of such attacks.

Read more

Navigating Aviation Cyber Risk

We discuss the importance of aviation cyber insurance and explain the legislative and regulatory environment within which the industry operates.

Read more

Tucking into ransomware; the ICO turns to the legal profession

We consider the importance of the ICO’s recent first ransomware related monetary penalty notice against Tuckers Solicitors LLP, and highlighted a concerning trend in increased attacks against law firms.

Read more

Santander Bank Polska Ordered to Issue Data Subject Notifications and Subjected to EUR 120,000 Fine

We explain the basis for the Polish DPA’s fine against Santander Bank and the justification for ordering the bank to notify impacted data subjects.

Read more

DPC Fines Facebook parent Company Meta €17 million for Breaches of GDPR

Our Dublin office explains the basis and significance of the DPC fine of EUR17m against Facebook parent company, Meta.

Read more

‘Amicable Settlement Guidelines’ to provide consistency in European data breach claims

We explain the key elements of the EDPB Amicable Settlements Guidance and its anticipated impact in respect of harmonising the European approach to resolving data breach complaints.

Read more

Bloomberg LP (Appellant) v ZXC (Respondent) [2022] UKSC 5

We consider the Supreme Court decision in the case of Bloomberg LP v ZXC and the implications for misuse of private information and breach of confidence causes of action.

Read more

We hope you enjoy this month’s newsletter. Please do contact the authors of this month’s newsletter content if you have any questions.

DAC Beachcroft’s Cyber Team

Authors

Patrick Hill

Patrick Hill

London - Walbrook

+44 (0)20 7894 6930

Hans Allnutt

Hans Allnutt

London - Walbrook

+44 (0) 20 7894 6925

Eleanor Ludlam

Eleanor Ludlam

London - Walbrook

+44 (0)20 7894 6098

Next Article

< Back to articles

Collection articles

Draft DPC Decision Proposes Banning Meta Data Transfers from EU to US

By Aidan Healy, Charlotte Burke

Physical risk in cyber-attacks: Lloyds outlines potential impact to businesses in a new report

By Eleanor Ludlam, Alexander Dimitrov

Stuffing Dunkin Donuts and Uber Attacks - New Guidance Released on “Credential Stuffing” Incidents

By Eleanor Ludlam, Pavan Trivedi

Marriott Group Struck by Third Data Breach

By Eleanor Ludlam, Sonali Malhotra

Plaintiffs’ Attorneys Racing to Courthouses in the United States to File Data Breach Class Actions

European Commission issues a warning against “strict” interpretation of the GDPR by Data Protection Authorities

By Christopher Air, Alexander Dimitrov

Proposed Amendment to the PSTI Bill Set To Provide Defence to Ethical Hacking Under the CMA

By Patrick Hill

Data And Cyber Bulletin - July 2022

By Hans Allnutt, Patrick Hill, Eleanor Ludlam

Failed Delivery Attempt. Please Click Here to Reschedule

By Hans Allnutt, Amanda Fosu

Top themes and takeaways from the 2022 ICO Conference

By Jade Kowalski, Charlotte Halford, Christopher Air, Eleanor Ludlam, Hans Allnutt, Rebecca Morgan, Christopher Little, Astrid Hardy, Zoë Carpenter

Ransoms - to pay or not to pay, that is the question …

By Patrick Hill, Eleanor Ludlam, Hans Allnutt

Spanish DPA issues its highest fine to date confirming the upward trend in fines imposed: Google LLC is the latest fined €10 million

By Eleanor Ludlam, Astrid Hardy

ESG and Cyber – US SEC’s ESG disclosure requirements

By Sarah Crowther, Ornela Markaj, Erin Burns

A problem shared – Attribution and the challenges it poses for cyber war exclusions

By Julian Miller, Tom Evans

Zoom - Class actions go international

By Eleanor Ludlam, Camilla Elliot

Smith v TalkTalk Judgment Affirms Warren v DSG

By Hans Allnutt, Astrid Hardy

Latest on what lies ahead for data in health and social care

By Darryn Hale, David Hill, Sophie Devlin

UK data protection compliance: The journey in a new direction begins

By Jade Kowalski, Charlotte Halford

European Commission publishes a Q&A on Standard Contractual Clauses

By Johanna Lipponen, Rebecca Morgan

Data And Cyber Bulletin - MAY 2022

By Hans Allnutt, Patrick Hill, Eleanor Ludlam

This website uses cookies so that we can improve your experience. By continuing to use the site you are agreeing to our use of cookies. For more details please view our Cookies Policy.
DAC Beachcroft