Filter:
Data protection: international transfers, mental health guidance (Mar24)
Firms relying on the old EU standard contractual clauses issued by the European Commission under the Data Protection Directive for...
Read Article
Data protection (Nov23)
A government fact sheet on the ‘UK-US data bridge’ for international transfers is here. Our November 2018 and May 2019...
Read Article
Data protection – and email cyber security (Jul23)
The UK and US governments have announced a commitment in principle to a ‘data bridge’ to facilitate international transfers between...
Read Article
Data Protection (Mar23)
The Data Protection and Digital Information (No. 2) Bill was published on 8 March 2023 and aims to reform the...
Read Article
Data protection and information security (Nov22)
The Information Commissioner’s Office has fined Interserve £4.4m following a data breach. Of interest to law firms, the breaches included...
Read Article
Who owns the file? (Sep22)
We are often asked to advise on entitlement to withhold papers from clients. The Law Society updated its practice note...
Read Article
Data protection, information security and cyber crime (Jul22)
The SRA’s latest Risk Outlook published on 1 June 2022 identified the key risks as follows – Phishing and email...
Read Article
Data protection (Mar22)
The new standard form International Data Transfer Agreement (ITDA) and Addendum to the new EU Standard Contractual Clauses (SCC Addendum)...
Read Article
Information security and data protection (Jan22)
A number of developments show that this is an area which does not stand still. An article by Yotam Katz,...
Read Article
Data Protection, Information Security and Cyber Insurance (Nov21)
In Rolfe & Others [2021] EWHC 2809 (QB) summary judgment was entered for the defendant solicitors on a claim under...
Read Article
Data Protection and information security (Sep21)
The latest IBM Cost of a Data Breach Report 2021 reports that business email compromise was responsible for only 4%...
Read Article
Cyber (Jul 21)
Attacks on all sectors, including lawyers, continue. Training is an important step and is available free from the National Cyber...
Read Article
Data protection (Jul 21)
There are important developments in relation to international transfers of data. Most importantly, the European Commission has adopted adequacy decisions...
Read Article
Cyber security (May21)
As we have noted in previous issues, law firms are a target for cyber attacks. Larger firms may for example...
Read Article
Data protection (May21)
The Information Commissioner’s Office (ICO) will be consulting in the summer on UK Standard Contractual Clauses (SCCs) for international data...
Read Article
Data Protection (Mar21)
Perhaps the most important point for many readers will be the publication by the European Commission of a draft adequacy...
Read Article
Cyber (Mar21)
Cyber risks are a major concern. Widescale attacks such as the SolarWinds attack which affected Microsoft and many others, and...
Read Article
Data Protection (Jan 21)
The new UK GDPR now applies. The UK has, on a transitional basis, deemed the EU and EEA EFTA States...
Read Article
Data protection and information security (Nov20)
Revised guidance from the Information Commissioner’s Office (ICO) on Right of Access and Subject Access Requests provides additional guidance on...
Read Article
Data protection and information security (Sep20)
The decision of the Court of Justice of the European Union in in Case C-311/18, Data Protection Commissioner v Facebook...
Read Article
Data Protection (Jul 2020)
The European Data Protection Board’s annual report 2019 advises that in 2020, the EDPB will aim to provide guidance on...
Read Article
Data protection and information security (May 2020)
The Information Commissioner’s Office (ICO) has issued guidance on a number of issues arising from staff working from home. These...
Read Article
Data protection (Risk Update March 2020)
There have been several developments since our January Risk Update. The Society for Trusts and Estates Practitioners (STEP) published a...
Read Article
Data Protection (Jan20)
The £500,000 fine imposed by the Information Commissioner’s Office on retailer DSG has attracted much publicity as it represented the...
Read Article
General Data Protection Regulation (GDPR) (Jan18)
Firms should be well advanced with their risk assessments for GDPR compliance as the 25 May 2018 implementation date is...
Read Article
General Data Protection Regulation (GDPR) (Mar18)
Implementation on 25 May 2018 is now imminent. We have advised major US and UK firms on risk assessment and...
Read Article
General Data Protection Regulation (GDPR) (May18)
GDPR is now fully in force as of 25 May 2018, but with deference to Sir Winston Churchill, now this...
Read Article
General Data Protection Regulation (GDPR) (Jul18)
There have been three reported decisions under the Directive 95/46/EC which are of relevance to GDPR. Secretary of State for...
Read Article
Data Protection (Sep18)
The General Data Protection Regulation (GDPR) came fully into force on 25 May 2018, but did not apply directly in...
Read Article
Cyber Crime and GDPR: the need for training (Dec18)
Many data losses result from cyber crime. We have developed a sequel to our popular online training course, Phishing for...
Read Article
Common problems (Dec18)
A number of common issues with GDPR aspects continue to engage minds – Mergers and acquisitions involving businesses with a...
Read Article
Data breaches (Dec18)
The ICO has received over 8,000 breach reports since GDPR came into force, making reporting mandatory in some high risk...
Read Article
Cross-border data transfers (Dec18)
Transfers of data from an EEA country to a ‘third country’ must satisfy the requirements of Chapter 5 of GDPR. ...
Read Article
Consent (Dec18)
GDPR is not all about consent. Consent must be explicit, and it is revocable. So although it has its uses...
Read Article
Controller or processor? (Dec18)
We have advised many firms have on the issue of Outside Counsel Guidelines which purport to decree that the firm...
Read Article
Extra-territorial scope (Dec18)
Article 3 seeks to extend the scope beyond the EEA where firms offer services to, or monitor the behaviour of,...
Read Article
Who owns the files? (Jan 19)
The Law Society has published a Practice Note, replacing previous guidance on file ownership. This also covers GDPR aspects. However...
Read Article
Data Protection (Jan 19)
Brexit necessitates a review of data mapping and cross-border transfers. In the event of a no deal Brexit, the government...
Read Article
Data protection
The Information Commissioner’s Office (ICO) published GDPR: One year on. Regulatory priorities going forwards include a number which may impact...
Read Article
Data Protection
Inevitably, we anticipate that some law firms will be subject to fines under the General Data Protection Regulation (GDPR). Where...
Read Article
SRA Standards and Regulations
These new provisions, replacing the SRA Handbook 2011, come into force on 25 November 2019. The two new Codes of...
Read Article
Back To Top
