The 2024 CrowdStrike outage and the ransomware attack on NHS partner Synnovis hit mainstream news and highlighted the fragility of ICT supply chains and the risks posed by cyber incidents....more
1/31/2025
/ Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
EU ,
Financial Institutions ,
Financial Services Industry ,
Popular ,
Ransomware ,
Risk Management ,
Risk Mitigation ,
UK
The CNIL has published its strategic plan for the period of 2025-2028. This is typical of the CNIL, who regularly inform its stakeholders of its priorities....more
1/23/2025
/ Artificial Intelligence ,
CNIL ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
EU ,
France ,
General Data Protection Regulation (GDPR) ,
Minors ,
Online Safety for Children ,
Personal Data ,
Privacy Laws
As expected in the data privacy and digital space, 2024 shaped up to be a year full of guidance, consultations, regulatory focus areas and legislative updates. Artificial Intelligence (AI) remained a hot topic with...more
1/15/2025
/ Adtech ,
Advertising ,
Artificial Intelligence ,
Cookies ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
EMEA ,
EU ,
International Data Transfers ,
Privacy Laws ,
Regulatory Agenda ,
UK
The pace of new EU law continues unabated, with IoT, cyber security and digital services being key areas of activity....more
12/6/2024
/ Certification Requirements ,
Compliance ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Management ,
Digital Markets Strategy ,
Digital Services ,
Enforcement ,
EU ,
EU Directive ,
Infrastructure ,
Internet of Things ,
Member State ,
New Legislation ,
Online Platforms ,
Personal Data ,
Risk Management ,
Sanctions
Long IT sub-contracting chains can make it hard for financial institutions to understand the vulnerabilities in their IT estate and the location of key functions (where these may be located in entities who do not have a...more
9/23/2024
/ Bank of England ,
Compliance ,
Compliance Dates ,
Cybersecurity ,
EU ,
European Banking Authority (EBA) ,
European Securities and Markets Authority (ESMA) ,
Financial Institutions ,
Financial Markets ,
Financial Services Industry ,
Implementing Technical Standards (ITS) ,
Information Technology ,
Prudential Regulation Authority (PRA) ,
Regulatory Oversight ,
Regulatory Requirements ,
Risk Management ,
Technology ,
Third-Party Service Provider ,
UK
The pace of new EU law continues unabated, with IoT, cyber security and digital services being key areas of activity. The BCLP Data Privacy & Security team is tracking EU law developments relevant to data and cyber security....more
In a joint letter this summer, the UK’s data protection regulator (the ICO) and the UK’s National Cyber Security Centre (the NCSC) sought to convey some key messages to the legal profession relevant to advising clients...more
8/22/2022
/ Australia ,
Client Services ,
Corporate Counsel ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Protection Authority ,
ENISA ,
FBI ,
Information Commissioner's Office (ICO) ,
NCSC ,
Popular ,
Ransomware ,
Reporting Requirements ,
Risk Mitigation ,
UK ,
UK GDPR