NIS2 Directive comes into force to create a common level of cybersecurity
The NIS 2 Directive came into force on 16 January 2023, repealing the NIS Directive, and creating a common level of cybersecurity
30 January 2023
GDPR: breach notification
As part of our series of briefings on the General Data Protection Regulation (GDPR), we set out an overview of the new data breach notification requirements.
22 December 2016
The ICO explains encryption and the options available
The ICO has written a short blog post on how encryption of personal data works and some of the available encryption options.
26 September 2013
UK government publishes position paper on data protection following Brexit
Following Brexit, the UK government seeks to play a leading role in setting data protection standards, working alongside the EU to create arrangements to allow the continued flow of personal data.
14 September 2017
UK government strikes back: National Cyber Security Strategy launched
The UK government has launched its new National Cyber Security Strategy 2016 - 2021 intended to ensure "the UK is secure and resilient to cyber threats, prosperous and confident in the digital world".
10 November 2016
Buckle up: Age Appropriate Design Code – the 12 month countdown
On 2 September, the Age Appropriate Design Code (the ‘Code’) came into effect, allowing for a 12 month transition period for companies to comply with the Code
14 September 2020
New data protection Code of Conduct for cloud infrastructure providers
Over 30 cloud providers have declared compliance with a data protection Code of Conduct designed to facilitate customer trust. We explain the Code Requirements and what it means for businesses.
02 March 2017
Data protection in the UK after a "no-deal" Brexit
The UK government has published guidance on how the UK’s data protection laws will interact with the EU if there is no Brexit deal.
14 September 2018
Data transfers under GDPR in the event of a no-deal Brexit
No-deal Brexit data transfers to the UK from the EEA - Guidance from the European Data Protection Board
20 February 2019
European Commission publishes its post-Brexit stance on data protection
The European Commission's position paper on data protection and information flows suggests that Britain needs to abide by EU data protection laws or destroy personal data gathered prior to Brexit.
27 September 2017
ICO’s Corporate Plan launched for 2016 – 2019
The ICO has launched its Corporate Plan for 2016 – 2019 (the “Plan”), detailing how it intends to achieve its objectives within the next three years.
01 March 2016
High Court confirms the position of liquidators under the Data Protection Act 1998
The High Court confirms that liquidators are not 'data controllers' under the Data Protection Act 1998 when appointed by a company following the commencement of liquidation.
17 October 2013