2025 has already been a busy year in UK consumer protection law. With the CMA having issued its annual plan for 2025 / 2026 on 27 March 2025 and its new enforcement powers under the Digital Markets, Competition and Consumer...more
4/25/2025
/ Compliance Dates ,
Consumer Protection Laws ,
Enforcement Actions ,
Enforcement Guidance ,
Fake Reviews ,
Hidden Fees ,
New Regulations ,
Regulatory Requirements ,
UK ,
UK Competition and Markets Authority (CMA) ,
Unfair or Deceptive Trade Practices
2025 is set to be a busy year in UK consumer protection law. With the CMA issuing its annual plan for 2025 / 2026 on 27 March 2025 and its new powers to enforce consumer protection law under the Digital Markets, Competition...more
3/28/2025
/ Compliance Dates ,
Consumer Protection Laws ,
Draft Guidance ,
Enforcement Actions ,
Enforcement Priorities ,
Fake Reviews ,
New Legislation ,
Regulatory Requirements ,
Risk Management ,
UK ,
UK Competition and Markets Authority (CMA) ,
Unfair or Deceptive Trade Practices
The FCA, PRA, and Bank of England have published their finalised critical third party (CTP) rules (and accompanying guidance) in PS24/16 Operational resilience: Critical third parties to the UK financial sector....more
11/25/2024
/ Bank of England ,
Compliance ,
Consultation ,
Final Rules ,
Financial Conduct Authority (FCA) ,
Financial Institutions ,
Financial Services Industry ,
HM Treasury ,
Prudential Regulation Authority (PRA) ,
Regulatory Requirements ,
Supply Chain ,
Technology ,
Technology Sector ,
Third-Party ,
Third-Party Risk ,
Third-Party Service Provider ,
UK
The stakes are high for FemTech – as Benjamin Franklin noted: ‘it takes many good deeds to build a good reputation and only one bad one to lose it.’...more
7/19/2024
/ Consumer Privacy Rights ,
Data Protection ,
Data Protection Impact Assessments (DPIAs) ,
EU ,
Mobile Health Apps ,
Patient Privacy Rights ,
Personal Data ,
Regulatory Requirements ,
Risk Management ,
Sensitive Personal Information ,
Technology Sector ,
UK
This article explores the topic of appointed representatives under Article 27 of the GDPR. What are they? When do you need one? How is regulatory enforcement starting to play out in the EU and in the UK on this issue?...more
6/21/2021
/ Appointed Public Officials ,
Data Controller ,
Data Processors ,
Data Protection ,
Data Protection Authority ,
Enforcement Authority ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
Registered Representatives ,
Regulatory Requirements ,
UK
With the UK now unambiguously out of the EU, the EU General Data Protection Regulation (2016/679) (“EU GDPR”) has been replaced by the United Kingdom General Data Protection Regulation (“UK GDPR”). In this third instalment of...more
1/28/2021
/ Commercial Contracts ,
Contract Drafting ,
Data Breach ,
Data Protection ,
Data Security ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
International Data Transfers ,
Notice Requirements ,
Privacy Policy ,
Regulatory Requirements ,
UK ,
UK Brexit ,
UK GDPR