Cyber and Data Risk By Hans Allnutt This collection addresses the full spectrum of cyber security and data risk management – the zeitgeist of our age.
Five years of GDPR – standing the test of time? By Hans Allnutt On May 25 th 2018, the General Data Protection Regulation, widely known as GDPR, fundamentally amended data protection regimes across Europe and influenced legislation worldwide. On its fifth anniversary and amid an ever-changing data protection…
Data transfers and enforcement: Irish Data Protection Commission issues Meta with suspension and cessation orders along with largest ever GDPR fine By Jade Kowalski On 22 nd May 2023, the Irish Data Protection Commission (" DPC ") published its long awaited decision in the Meta data transfers case, providing the next instalment in the privacy world's longest running battle. The decision has major…
AI Friends or Foes? The Privacy Risks for Children with Open AI, ChatGPT and Replika By Astrid Hardy In recent years, artificial intelligence (AI) chatbots being advertised as “virtual friends” have become increasingly popular among children. While these “virtual friends” such as, Replika AI, and Snapchat’s ‘My AI’ (governed by Open AI), may seem…
Merck prevails on war clause appeal By Julian Miller On 1 May 2023, the Appellate Division in New Jersey published its decision in the long-running dispute between Merck and insurers regarding its property insurance programme.
Data breach claims and fixed recoverable costs reforms By Hans Allnutt As any insurer or organisation that deals with data breach claims will know, legal costs typically exceed the quantum of the claim and are a major feature of claims resolution. The recent publication of the draft rules extending the fixed…
The European Commission concludes consultation on regulating metaverses By Alexander Dimitrov The start of May saw the conclusion of the European Commission’s Call for Evidence on its initiative for regulating metaverses (or, as the Commission calls them, “virtual worlds”). The proposed intervention in the metaverse space is borne out…
International data transfers: one step forwards, two steps back? By Jade Kowalski UK applies to join the Global Cross-Border Rules Privacy Forum The UK has recently applied to join the Global Cross-Border Rules Privacy Forum as an associate. The UK will be the first jurisdiction to participate in the Global CBPR after it was…
Data Protection and Digital Information (No.2) Bill passes second reading stage but concerns remain By Jade Kowalski Initial parliamentary discussions on the Data Protection and Digital Information (No 2) Bill (“the Bill”) have highlighted those issues likely to be the most contentious elements of the Bill during the legislative process.
Connected products: Publication of draft PSTI regulations raise questions around future European standards By Hans Allnutt The Government has published draft regulations which will bring the UK’s consumer connectable product security regime into effect on 29 April 2024. Their publication, offering clarity for manufacturers, importers and distributors, also raises…
Data, Privacy & Cyber Bulletin – May 2023 By Jade Kowalski We are delighted to welcome you to the first edition of our new Data, Privacy & Cyber Bulletin. Our expanded monthly newsletter will now include contributions from our market-leading teams on the ever-evolving issues of data, privacy and the…