In the rapidly evolving landscape of European tech regulation, the Data Act introduces changes with the potential to reshape established market dynamics, presenting significant challenges and opportunities for affected...more
8/20/2025
/ Cloud Service Providers (CSPs) ,
Data Privacy ,
Data Processing Rules ,
Data Processors ,
Data Protection ,
Digital Assets ,
EU ,
New Legislation ,
Regulatory Requirements ,
Service Contracts ,
Technology ,
Technology Sector
The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice.
The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more
7/28/2025
/ Adequacy Requirement ,
Amended Legislation ,
Cookies ,
Data Privacy ,
Data Protection ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
International Data Transfers ,
New Legislation ,
Personal Data ,
Privacy Laws ,
Regulatory Requirements ,
UK
The technology and digital regulatory environment in the EU and the UK is experiencing significant evolution in 2025 and beyond. These legal developments present both significant opportunities and complex compliance...more
7/17/2025
/ AI Act ,
Artificial Intelligence ,
Cybersecurity ,
Data Privacy ,
EU ,
New Legislation ,
Online Safety for Children ,
Popular ,
Regulatory Agenda ,
Regulatory Requirements ,
Risk Management ,
Technology ,
Technology Sector ,
UK
Advocate General Spielmann opines that personal data can be pseudonymous in the hands of one party and anonymous in the hands of another....more
2/20/2025
/ Court of Justice of the European Union (CJEU) ,
Data Privacy ,
Data Protection ,
Data Security ,
Data-Sharing ,
EDPS ,
EU ,
General Data Protection Regulation (GDPR) ,
Legal Opinion ,
Personal Data ,
Privacy Acts ,
Privacy Laws ,
Transparency
The CJEU has decided that the maximum thresholds for GDPR fines should be calculated using the global turnover of the broader corporate group, not solely the infringing entity....more
2/20/2025
/ Affiliates ,
Civil Monetary Penalty ,
Corporate Fines ,
Court of Justice of the European Union (CJEU) ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
EU ,
General Data Protection Regulation (GDPR) ,
Multinationals ,
Personal Data ,
Privacy Laws
Swiss companies are advised to take additional measures when transferring personal data from Switzerland to the US.
On 8 September 2020, the Swiss data protection authority, Adrian Lobsiger (the Federal Data Protection and...more
The Dubai International Financial Centre (DIFC) has a new data protection law and regulations: the Data Protection Law DIFC Law No. 5 of 2020 (DIFC DP Law) and the Data Protection Regulations (DIFC DP Regulations, and...more
Not too long ago, an investment manager looking to invest in a company might conduct due diligence, attend investor relation calls, peruse quarterly or annual filings, and consider standard ratios such as price to earnings...more
3/5/2020
/ California Consumer Privacy Act (CCPA) ,
Data Privacy ,
EU ,
EU Market Abuse Regulation (EU MAR) ,
Financial Institutions ,
Financial Services Industry ,
General Data Protection Regulation (GDPR) ,
Investment Advisers Act of 1940 ,
MiFID ,
Regulation S-P ,
Risk Management ,
Risk Mitigation ,
Securities Exchange Act
IT companies face higher fines in Russia for noncompliance with data privacy and content moderation rules.
In December 2019, Russia imposed large fines for certain types of violations of the Russian data privacy and...more
The FCA is considering whether alternative data could introduce new risks to market integrity.
The FCA’s recently published Insight article explores how alternative data might give rise to market abuse risks. The article...more
Companies should identify data flows, implement a data transfer solution, and update internal documents and privacy notices.
Since our blog on “What a “No Deal” Brexit Means for UK Data Privacy”, the European Data...more
3/20/2019
/ Article 50 Treaty of the EU ,
CNIL ,
Data Privacy ,
Data Protection ,
DIFC ,
EU ,
European Data Protection Board (EDPB) ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
International Data Transfers ,
Ireland ,
Member State ,
No-Deal Brexit ,
UK ,
UK Brexit ,
Withdrawal Agreement