Search results
553 results ordered by
ICO launches consultation series on generative AI and data protection
What is the Information Commissioner’s Office’s (ICO) intended approach to developing guidance on how data protection law should be applied to the development and use of generative AI?
Read moreCJEU rules on what constitutes “automated decision-making” under the GDPR
Does the production of a credit score constitute “automated decision-making” for the purposes of Article 22 of the EU General Data Protection Regulation (GDPR)? What wider impact will this have for AI technologies?
Read moreICO warns UK’s most visited websites to improve cookie choices
What steps is the ICO taking to ensure that website cookie banners are compliant with law?
Read moreICO fines HelloFresh £140,000 after 7-month spam marketing campaign
Where did HelloFresh go wrong with their email and text marketing campaign and what lessons can be learned from the ICO’s investigation and subsequent fine?
Read moreNew ICO guidance on content moderation and data compliance
How can organisations using content moderation technologies and processes best comply with data protection laws?
Read moreEDPB adopts opinion on “main establishment” of a controller in the EU
What is meant by “main establishment” under article 4(16)(a) of the GDPR for the purposes of determining the application of the one-stop-shop mechanism?
Read moreNew Development: EU Data Act published in Official Journal
The EU Data Act (the Act) came into force on 11 January 2024. The Act sets out rules regarding the fair access to and use of data, aiming to enhance the data economy for individuals and businesses by overcoming barriers to data sharing and establishing frameworks around data access and use.
Read moreICO issues preliminary enforcement notice against Snap for its “My AI” Chatbot
How can organisations who wish to join to the world of generative AI ensure that they adequately assess the risks from the perspective of the Information Commissioner’s Office (ICO)?
Read moreNew Development: EDPB provides clarification on tracking techniques covered by the ePrivacy Directive
On 14 November 2023, the European Data Protection Board (EDPB) adopted a set of new guidelines (the Guidelines) on the technical scope of Article 5(3) of the ePrivacy Directive (the ePD).
Read moreICO publishes guidance to ensure lawful monitoring in the workplace
How can employers monitor their workers whilst maintaining their trust and complying with data protection regulation?
Read moreClearview AI cleared of £7.5m ICO fine for processing data outside the UK
Just how did the processing of personal data by Clearview AI (Clearview) fall outside the scope of UK GDPR?
Read moreICO publishes its draft “Data Protection Fining Guidance” for public consultation
How will the Information Commissioner’s Office (ICO) calculate the amount of a fine under the UK GPDR and the Data Protection Act (DPA) 2018?
Read moreEU Advocate General’s opinion on data subjects’ rights to compensation for non-material damage under the GDPR
Does the theft of an individual’s sensitive personal data by a wrongdoer give rise to compensation for non-material damage under Article 82 EU General Data Protection Regulation (GDPR), if the wrongdoer has not used, or taken steps to use, the sensitive personal data for any purpose?
Read moreICO updates its guidance on AI and data protection
What are the key data protection principles which the Information Commissioner’s Office (ICO) expects organisations to follow when integrating AI into their product and service offerings?
Read moreTelecoms supply agreement excludes "loss of profit" claim under "anticipated profits" liability exclusion (EE v Virgin Mobile)
In line with a number of recent cases, in EE Limited v Virgin Mobile Telecoms Limited [2023] EWHC 1989 (TCC) the courts have shown that parties generally cannot avoid clear wording contained in exclusion clauses in order to recover losses that have been expressly excluded (in this case, loss of profits).
Read moreRolls-Royce entitled to hit the brakes in dispute over termination of a software services agreement (Topalsson v Rolls-Royce)
In Topalsson GmbH v Rolls-Royce Motor Cars Limited [2023] EWHC 1765 (TCC), the High Court has provided useful guidance on how to determine whether a software implementation timeline agreed by the parties is binding, when implementation is considered complete and in what circumstances failing to complete implementation by the contractual deadlines entitles the customer to terminate the contract.
Read moreA narrow escape – software services provider entitled to rely on single aggregate liability cap (Drax v Wipro)
When it comes to bespoke software development projects, a lot can go wrong. There's risk for the customer such as project delays, software defects, functionality issues and a lack of meeting of minds in terms of project requirements.
Read moreWhat in the AI is going on… April to June 2024
Meta launched its newest generation of its open-source LLM (large language model), Llama 3, which is the technology that powers its AI systems. The launch of Llama 3 signals a step closer to human-like AI that can reason and bestow a memory. OpenAI also discussed plans for its next AI model, GPT-5. Like Llama 3, GPT-5 will see improvements to the model’s planning and reasoning capabilities, going beyond its current capability to deal with discrete tasks. GPT-5 is expected to be released later in the year.
Read moreCMA publishes update paper on AI Foundation Models
What is the state of play for the market of AI Foundation Models (FM) and what issues in the market is the Competition and Markets Authority (CMA) most concerned about?
Read moreEU AI Act is signed!
What are the core elements of the EU’s Artificial Intelligence Act and how does it impact the regulation of AI systems?
Read moreOnline Safety Act: Ofcom consults on draft codes to protect children online
What must businesses do to ensure online safety for children under the latest codes of practice published by Ofcom?
Read moreUK’s Digital Regulation Co-operation Forum announces new AI and Digital Hub Pilot
What is the AI and Digital Hub and how can AI innovators use it?
Read moreEU designates Apple a gatekeeper for iPadOS but not for iMessage
Can a business avoid being designated a “gatekeeper” under the Digital Markets Act (DMA) even if it satisfies the quantitative criteria under the DMA?
Read moreNew EU guidelines on mitigating risks for electoral
What are the European Commission’s new guidelines and how do they protect the integrity of electoral processes?
Read moreHong Kong data protection: cross-border transfers of personal data
We take a closer look at businesses' obligations under Hong Kong law to protect personal data in a cross-border transfer and the new recommended model contractual clauses.
Read moreEBA encourages banks to pool their resources for cloud audits
The EBA has set out that banks are no longer required to provide their auditors (or themselves) with an independent right to audit their cloud service providers.
Read moreHow will the "Genny lec" impact the world of cyber and tech?
On 22 May 2024, Prime Minister Rishi Sunak stood in the pouring rain to announce a General Election, thus commencing a summer of political and meteorological uncertainty for those in the UK.
Read moreFines for PDPA Breaches: How Clear is the Crystal Ball?
The Singapore Personal Data Protection Commission ("PDPC") has recently issued a number of new enforcement decisions.
Read moreThaler v Comptroller [2023] UKSC 49: the UKSC rules that AI cannot be an 'inventor'
To the surprise of no one, the UK Supreme Court (UKSC) has finally ruled that an artificial intelligence (AI) cannot be an inventor for the purposes of UK patent law. This judgment accords with the decisions of the lower courts in the UK and the initial ruling of the UKIPO. It also reflects similar findings from most of courts around the world where the claimant, Dr Thaler, brought similar actions.
Read moreGenerative AI and intellectual property rights—the UK government's position
The IPO is to produce a code of practice by the summer that will provide guidance to support AI firms in accessing copyright protected works as an input to their models.
Read moreParliamentary 'wash up' – which Bills made it through?
On 22 May 2024, Prime Minister Rishi Sunak announced that a General Election will take place on 4 July 2024. Parliament was then prorogued on 24 May 2024 which allowed a mere 2 days for 'wash up' - the process by which outstanding bills may be rushed through the parliamentary process.
Read moreOfcom's 'Roadmap to Regulation' underway with its consultation on illegal harms duties under the Online Safety Act
In November, Ofcom, as new online safety regulator, published the first of four major consultations under the Online Safety Act ("OSA"), which sets out its proposals for how "user-to-user" ("U2U") services (essentially any online website or app that allows users to interact with each other) and online search services (i.e. Google, Bing and similar) should approach their illegal content duties under the new legislation. The consultation provides guidance in a number of areas including governance, content moderation, reporting and complaints mechanisms, terms of service, supporting child users, and user empowerment.
Read moreThe Online Safety Bill is set to become law
The Online Safety Bill will shortly become law in the UK as soon as it receives Royal Assent. The legislation will introduce a new regulatory regime for online platforms and search engines which target the UK, imposing wide-ranging obligations on in-scope services with serious consequences for non-compliance.
Read moreAdams v Carey – where does the Court of Appeal's decision leave the SIPP market?
The Court of Appeal has today dismissed Mr Adams' appeal against Carey in respect of COBS 2.1.1R. However, the appeal in relation to s.27 FSMA has been upheld. We discuss the background to the proceedings, the Court of Appeal decision and where it takes the SIPP (and wider financial services) market.
Read moreDORA Watch – June and July 2024
As financial entities and ICT service providers undergo the final stages of implementation of the Digital Operational Resilience Act (DORA) requirements into their systems and processes, it is imperative to understand the legal developments and ongoing updates arising from EU Member States as they go through their respective transposition and alignment processes. Through TerraLex - our global legal network, which provides us with access to 22,000 lawyers from highly regarded and carefully vetted law firms stretching more than 120 countries – we have collated legal updates focusing on DORA and its implications in EU jurisdictions.
Read moreEU AI ACT-ion stations
The EU is forging ahead with its vision for AI. With wrapping up talks on the EU AI Act between the EU governments, the Commission and the parliamentary negotiators imminent, we bring you up to date on the EU's risk based approach, the scope of the Act, a timeline, key points that will form the basis of the discussions and next steps.
Read moreWhat To Know About AI Fraudsters Before Facing Disputes
Fraudsters are quick to weaponise new technological developments and artificial intelligence is proving no exception, with AI-assisted scams increasingly being reported in the news, including most recently one using a likeness of a BBC broadcaster.
Read moreIs the FCA to blame for BSPS? MPs seem to think so
The House of Commons Public Accounts Committee (PAC) yesterday published a report entitled "Investigation into the British Steel Pension Scheme". The report makes a number of recommendations in light of its investigations in to the FCA's conduct and regulatory oversight at the time of the issues arising from the British Steel Pension Scheme (BSPS) and in particular the decision by 7,834 members to transfer to a personal pension arrangement. The report is heavily critical of the FCA's handling of BSPS and its regulatory oversight of the defined benefit transfer market generally. Given the request in the report for an update from the FCA on its progress on the various recommendations and conclusions in 6 months' time, we wait to see how the FCA reacts to yet further criticism of its handling of BSPS at a time when it is reviewing responses to the consumer redress scheme consultation.
Read moreSIPPs and FOS - does the Rowanmoor decision change anything?
Last week FOS published a decision it reached last year in a complaint against a SIPP provider involving advised sales. The FOS upheld the complaint, finding that the SIPP provider should have rejected business from the regulated financial adviser, CIB Life and Pensions Limited (CIB), given, broadly, red flags available to the SIPP provider with respect to the operation of CIB's business model including that CIB was not advising on the ultimate investment within the SIPP and as a result such introductions involved a significant risk of consumer detriment. The decision has received quite a bit of press attention - but has it moved the dial for SIPP complaints before FOS or not?
Read moreThe Future of Insolvency Regulation
On 21 December 2021 the Government launched a consultation into the future of insolvency regulation. The changes proposed in the consultation document will have a wide ranging impact on the insolvency profession (and its insurers) with the proposals including: the direct regulation of insolvency firms, the introduction of a single regulatory body with powers to order compensation against insolvency practitioners and firms, a new additional requirements regime, changes to the bond regime and a public register of insolvency practitioners and firms. Many of the changes proposed require primary legislation and so it may be some time before the changes to take effect (if adopted). But there does appear to be some wind behind these proposals given they follow on from the Call for Evidence in 2019 and a more general focus on insolvency issues in the wake of the Covid-19 pandemic.
Read moreCyber_Bytes - Issue 46
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 45
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 44
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 43
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 42
Welcome to Cyber_Bytes, our regular round-up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 41
Welcome to latest edition of Cyber_Bytes, our regular round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 40
Welcome to latest edition of Cyber_Bytes, our regular round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 39
Welcome to latest edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 38
We are back following a short seasonal break and hope you enjoy this latest edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 37
We hope you enjoy this latest edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreStay connected and subscribe to our latest insights and views
Subscribe Here