Data and privacy
Upcoming changes to data protection legislation in Asia
The data privacy landscape in Asia is varied, complex and evolving. We are already seeing the wheels of change in motion as the data privacy laws of several Asian jurisdictions are being updated to reflect more closely the European data protection regime. This article summarises some of those changes.
Read moreCyber_Bytes - Issue 27
Welcome to Cyber_Bytes, our bi-weekly round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 26
Welcome to Cyber_Bytes, our bi-weekly round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 25
Welcome to Cyber_Bytes, our bi-weekly round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 24
Welcome to Cyber_Bytes, our bi-weekly round up of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 23
Welcome to Cyber_Bytes, a round up of key developments in cyber, tech and evolving risks over the last two weeks.
Read moreCyber_Bytes - Issue 22
Welcome to the latest edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 21
Welcome to the latest edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 19
Welcome to Cyber_Bytes, a round up of key developments in cyber, tech and evolving risks over the last two weeks.
Read moreSchrems II – Groundhog Day for Data Transfers
On Thursday 16 July, the Court of Justice of the European Union (“CJEU”) delivered its judgment in one of the most highly anticipated court cases in data protection, Case C-311/18 Data Protection Commissioner v Facebook Ireland Limited, Maximillian Schrems (widely referred to as “Schrems II”). This decision came almost 8 months after Advocate General Saugmandsgaard Øe published his Opinion, which albeit not binding, provided a strong indication for the CJEU's judgment.
Read moreRestarting your business and implementing Government guidance to support NHS Test and Trace
In its latest guidance on keeping workers and customers safe during COVID-19 in restaurants, pubs, bars and takeaway services (23 June 2020), the Government has recommended that businesses operating in these sectors keep a temporary record of customers and visitors for 21 days. This will assist NHS Test and Trace with requests for that data if needed.
Read moreCyber bytes - Issue 17
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber bytes - Issue 16
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber bytes - Issue 15
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber bytes - Issue 14
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber Bytes - Issue 13
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber Bytes - Issue 12
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 10
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber Bytes - Issue 11
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCybersecurity and COVID-19: Opportunities for change in the face of challenge
COVID-19 is not the first and will not be the last pandemic, but it is the first one that has brought the importance of cyber resilience and adaptability in the era of global trade to the forefront of many businesses' minds.
Read moreCyber_Bytes - Issue 8 2020
Welcome to the eighth 2020 edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 9
Welcome to Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreAre you compliant with the new rules in Singapore? Asia? Beyond?
With the implementation of the GDPR in Europe (2018) and the rise of serious cyber-attacks in Asia, many APAC countries are making major changes to their data privacy laws. Navigating the various regulatory regimes can be complex particularly for companies doing business across the region and beyond.
Read moreCyber_Bytes - Issue 7 2020
Welcome to the seventh 2020 edition of Cyber_Bytes, our bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 6 2020
Welcome to Cyber_Bytes, a round up of key developments in cyber, tech and evolving risks over the first month of 2020.
Read moreCyber_Bytes - Issue 5 2019
Welcome to Cyber_Bytes, a bi-weekly roundup of key developments in cyber, tech and evolving risks.
Read moreCyber_Bytes - Issue 4 2019
Welcome to Cyber_Bytes, a round up of key developments in cyber, tech and evolving risks over the last two weeks.
Read moreNo Deal Brexit – implications for data and privacy law compliance
The Brexit rollercoaster ride continues. At the time of writing, the UK and EU have just announced the agreement of a new withdrawal deal but there are serious doubts about whether it will be backed by Parliament. Despite the requirements of the Benn Act, the risk of the UK leaving the EU without a deal continues to be a concern.
Read morePushing back on APP scams
An Authorised Push Payment (APP) is where a payer instructs their payment service provider, such as their bank, to send money from their account to another. These payments are usually made through the Faster Payment Service or CHAPS.
Read moreThe latest cyber stats revealed (the Cyber Security Breaches Survey 2019)
Whilst cyber attacks decrease, the threats to businesses remain. We give you the Cyber Security Breaches Survey 2019.
Read moreSeeking the "right regulation" of digital services: Lords' Communications Committee articulates its vision
In 2018, Mark Zuckerberg, Facebook's CEO, told the US Senate Judiciary Committee that the question was no longer whether there should be regulation of the internet, but what is the right regulation.
Read moreLove (or hate) Data?
Personal Data and Special Category Personal Data – what has changed? "The course of true love never did run smooth" - Shakespeare, W., A Midsummer Night's Dream The definition of personal data is obviously fundamental to the General Data Protection Regulation (GDPR). When considering data protection, your first question should always be – 'is this data personal data?'
Read moreHappy Valentine's Day from RPC: Love (or hate) data?
So it is that time of year again. Love is in the air - roses, prosecco (if you're lucky, champagne), chocolates (in boxes covered in sickly hearts as though a heart surgeon has gone serial killer – yes, we're big fans of Luther).
Read moreGDPR and the Data Protection Act 2018 – how do they impact publishers?
The need for publishers to ensure that their processing of personal data complies with the law is more important than ever.
Read moreVicarious liability of data controllers: The Morrisons data breach case
Following the conviction of Andrew Skelton, a former Morrisons employee, after he published Morrisons’ employees’ personal details on a file sharing website, a group of over 5,500 employees of Morrisons took action against the supermarket to recover compensation for breach of a statutory duty under the UK Data Protection Act 1998 (‘DPA’), as well as for breach of confidence and misuse of private information.
Read moreThorny issues of jurisdiction and claim form service laid bare by High Court
In Howard Kennedy v The National Trust for Scotland [2017] EWHC 3368 (QB), the High Court considered two complex issues: one relating to the doctrine of forum non conveniens and the other to the CPR provisions on service of a claim form. In his judgment, handed down yesterday, Sir David Eady stayed the action in England & Wales on the basis that Scotland is the more appropriate forum. He also provided guidance on the tricky interplay between deemed and actual service of a claim form, ultimately holding that the claim form in this case had been validly served in time.
Read moreGovernment sets out details of new data protection legislation
The Government has today published a Statement of Intent setting out details of the forthcoming Data Protection Bill. Matt Hancock MP, the Digital Minister, says that the reforms will "bring our data protection law up to date" whilst transferring the General Data Protection Regulation ('GDPR') into domestic law. The text of the Data Protection Bill is expected in early September.
Read moreWhen can publishing newspaper articles amount to harassment?
The High Court has struck out part of a harassment claim against the publisher of the Daily Mail and Mail Online. Unless the Judge's order is successfully appealed, the remaining harassment claim will proceed to trial.
Read moreSupreme Court endorses open justice principle
The Supreme Court has handed down its much anticipated judgment on reporting restrictions and the principle of open Justice in the case Khuja (formally PNM) v Times Newspapers Limited.
Read moreBrevan Howard's gagging order against Reuters upheld by the Court of Appeal in breach of confidence case
The news agency, Reuters, has lost its appeal against an injunction, which prevented it from reporting leaked confidential and commercially sensitive information concerning a leading global alternative asset manager, Brevan Howard Asset Management LLP.
Read moreCFAs and ATE premiums out of the running in freedom of expression cases
Supreme Court tips media organisations' Article 10 rights over obligation to pay claimants' additional liabilities in freedom of expression cases
Read moreEleven more charities fined by ICO in 'wealth screening' probe
The ICO has fined a further eleven charities following an investigation that revealed widespread misuse of donors' personal data.
Read moreSecret 'wealth-screening' by charities breaks data laws
An ICO investigation into charity fundraising practices has led to two charities being fined and eleven being issued with Notices of Intent to fine.
Read moreItalian data protection authority issues fines totalling more than €11m for illegal data processing
The fines are thought to be the highest ever issued by a European data protection authority.
Read moreCouple awarded £17,000 damages for distress caused by neighbour's CCTV surveillance
The compensation is an example of the rise of "distress" claims as a result of breaches of the Data Protection Act 1998 (DPA).
Read moreBrexit does not spell the end of the GDPR
The General Data Protection Regulation (the GDPR) is due to become law on 25 May 2018. As this will be before “Brexit” (Britain’s exit from the EU) takes effect, the GDPR will apply in the UK from that date.
Read moreInvestigatory Powers Act gets royal assent
This week, the Queen gave royal assent to the Investigatory Powers Bill (aka "The Snoopers Charter"), marking the end of the controversial bill's passage into law.
Read moreICO issues record £400,000 fine for TalkTalk data breach
The record fine is an indication that the new Information Commissioner, Elizabeth Denham, is looking to take a robust approach to enforcement ahead of the introduction of the GDPR in May 2018.
Read moreMax Schrems toppled Safe Harbor – will the Model Clauses be next?
On Monday, the Irish Data Protection Commissioner announced that it intends to seek clarification on the legal status of the EU Standard Contractual Clauses (the Model Clauses).
Read more