Search results

Please enter search term
Equifax: a new dawn for FCA enforcement? The FCA’s recent decision to fine Equifax Limited (“Equifax”) £11,164,400 for failing to manage and monitor the security of UK consumer data outsourced to its US-based parent Equifax Inc. - six years after the investigation was first announced - raises th... Clearview AI: the First-Tier Tribunal decision provides a clearer view on behavioural monitoring The First-Tier Tribunal (FTT) has allowed the appeal of the ICO’s fining and enforcement notices against Clearview AI Inc (Clearview). The FTT held that the ICO had no jurisdiction over Clearview as the use of its services by its clients for criminal law ... UK government finalises IoT cybersecurity requirements The UK government has published the final version of the Product Security and Telecommunications Infrastructure (Security Requirements for Relevant Connectable Products) Regulations 2023 providing manufacturers of IoT devices with clarity as to the securi... Same same but different: welcome alignment in ICO draft Data Protection Fining Guidance On 2 October 2023, the ICO released for consultation new draft guidance on how it decides to issue penalty notices and calculate fines under the UK GDPR and the DPA 2018 (the “draft Fining Guidance”). This follows on from the European Data Protection Boar... New product intervention measures in Spain: is the sale of leveraged products to retail clients over? For some years now, EU financial authorities have been looking into the sale of complex and risky products to retail investors. The starting point was the ESMA Decision on the temporary prohibition of the marketing, distribution and sale of binary options... CMA launches market investigation into public cloud infrastructure services On 5 October 2023, the UK Competition and Markets Authority launched a market investigation into the supply of public cloud infrastructure services following a referral by Ofcom, the UK’s media and telecoms regulator. This follows Ofcom’s publication of t... ICO takes enforcement action over generative AI chatbot On 6 October the ICO issued Snap Group Limited (Snap), which operates the popular Snapchat messaging platform, with a preliminary enforcement notice over potential failures to properly assess the privacy risks posed by its generative AI chatbot ‘My AI’. T... Quantum computing threat: NIST publishes new quantum encryption standards Ratings agency Moody’s has recently warned that companies are “woefully unprepared” for the impact of quantum computing; in particular, its impact on security. The US government has a program to help combat this risk and last month the National Institute ... Where are you on Pillar Two? Advisers and businesses would be wise not to hold out for finality and certainty before engaging with these highly complex and evolving rules. The first instalment of the UK legislation to implement Pillar Two was enacted in July as Part 3 (multinational ... 'Groundbreaking' online safety law finally passes The UK’s new Online Safety Bill has finally been agreed, over two years after it was first introduced. The OSB, which the government boldly claims ‘will make the UK the safest place in the world to be online’, cleared its final parliamentary hurdle on 19t...