Cyber and Data Risk By Hans Allnutt This collection addresses the full spectrum of cyber security and data risk the Cybzeitger Riskt of Awaourd 2017age.
Smith v TalkTalk Judgment Affirms Warren v DSG By Hans Allnutt In the recent decision of Smith v TalkTalk Telecom Group Plc [2022] EWHC 1311 (QB), the High Court struck out the Claimants’ Misuse of Private Information (“ MPI ”) claim and refused permission to amend the pleadings. Saini J’s judgment is in line…
Zoom - Class actions go international By Eleanor Ludlam Just when Zoom thought that the media spotlight had dimmed on its data privacy scandal which hit the headlines last summer, on 31 May 2022, a Class Action [1] was filed against Zoom Video Communications Inc. in the same US District Court for the…
A problem shared – Attribution and the challenges it poses for cyber war exclusions By Julian Miller In the context of cyber war exclusion clauses, attribution means apportioning responsibility for a cyber operation to a state or to a non-state actor. In practice, this can be far less straightforward than it might at first appear. Attribution…
ESG and Cyber – US SEC’s ESG disclosure requirements By Sarah Crowther A recent vote by the U.S. Securities and Exchange Commission (“ SEC ”) concerns rule changes regarding environmental, social and governance (“ ESG ”) funds. ESG has been catapulted into the limelight and ESG narrative is now an essential focus of…
Spanish DPA issues its highest fine to date confirming the upward trend in fines imposed: Google LLC is the latest fined €10 million By Eleanor Ludlam May 2022 saw a tale of two firsts for the Spanish Data Protection Agency (“ AEPD ”) with its highest fine issued to date together with it being the first fine to be issued to a data controller outside the EU. As previously highlighted, the AEPD…
Data And Cyber Bulletin - June 2022 By Hans Allnutt Welcome to the June edition of our D ata A nd C yber B ulletin, in which we share insight on the US class action against Zoom Video Communications, the recent High Court decision in Smith v TalkTalk, and the Spanish DPA’s EUR10m fine against…
UK data protection compliance: The journey in a new direction begins By Jade Kowalski On Friday 17 th June 2022, the UK Government published its eagerly awaited response to the “Data: a new direction” consultation. As a reminder, the consultation (which ran from September – November 2021) sought views on a number of proposals to…
European Commission publishes a Q&A on Standard Contractual Clauses By Johanna Lipponen The European Commission published a Questions and Answers (“ Q&A ”) document on the Standard Contractual Clauses (“ SCCs ”) on 25 May 2022, coinciding with the fourth anniversary of the General Data Protection Regulation (“ GDPR ”) coming into…
Data And Cyber Bulletin - MAY 2022 By Hans Allnutt Welcome to the May edition of our Data And Cyber Bulletin.
Schrems II releated enforcement actions continue to rise: Google’s “risk-based approach” for data transfers violates GDPR By Pavan Trivedi On 22 April 2022, the Austrian Data Protection Authority (the “ DSB ”) issued its second decision regarding the legality of Google Analytics following a complaint from noyb, a non-profit organisation which pursues strategic and effective enforcement…