Isobel Whitby

Isobel Whitby

A&O Shearman

Contact
View Bio
RSS

Latest Publications

Share:

The cyber-nuclear nexus: safeguarding clean energy

Politicians’ and tech giants’ embrace of nuclear energy to power AI heightens the urgency to protect critical infrastructure from cyber threats....more

6/6/2025  /  Artificial Intelligence , Clean Energy , Cyber Attacks , Cybersecurity , Energy Sector , Executive Orders , Government Agencies , Nuclear Power , Regulatory Requirements , Risk Management

Insuring data breach liabilities – how different policies can stack up and the problem of late notification

An English Court has recently decided that three insurance policies covering the same loss – data breach settlements arising from an incorrectly addressed email – provided a combined, cumulative limit of indemnity. While the...more

5/19/2025  /  Cyber Insurance , Cybersecurity , Data Breach , Data Protection , Insurance Claims , Insurance Litigation , Liability , Policy Terms , Professional Liability Insurance , Settlement , UK

Operational Incident Reporting: UK Financial Regulators Propose New Rules

The Financial Conduct Authority (FCA), Prudential Regulation Authority (PRA) and Bank of England are consulting on proposals to require firms to report operational incidents and material third party arrangements. In the face...more

1/9/2025  /  Bank of England , Compliance , Cyber Incident Reporting , Cyber Threats , Financial Conduct Authority (FCA) , Financial Regulatory Reform , Prudential Regulation Authority (PRA) , Reporting Requirements , Risk Management , UK

English judgment shines light on ICO investigation into Cambridge Analytica

On March 23 2018, the Information Commissioner’s Office (ICO) executed a warrant to enter and search the offices of Cambridge Analytica. The purpose of the search was to access records concerning its alleged use of personal...more

12/18/2024  /  Analytics , Commercial Litigation , Corporate Governance , Data Protection , EU , Information Commissioner's Office (ICO) , Investigations , Personal Data , Search & Seizure , UK

English court determines the “meaning” of personal data

In a previous blog post we considered an unsuccessful application to strike out a claim for alleged breaches of the UK GDPR, on the grounds that the claim was – in substance – a defamation claim. That application was...more

12/2/2024  /  Data Privacy , Data Protection , Defamation , EU , General Data Protection Regulation (GDPR) , Personal Data , Statutory Interpretation , UK

When does payment card data qualify as personal data? English Court gives new guidance on this question

The Upper Tribunal (UT) has overturned a decision by the First-tier Tribunal (FTT), relating to a Monetary Penalty Notice (MPN) that was issued by the Information Commissioner (ICO). All of this stemmed from a cyber-attack...more

11/6/2024  /  Credit Cards , Cyber Attacks , Data Security , Debit Cards , EU , Information Commissioner's Office (ICO) , Payment Methods , Personal Data , UK , UK Data Protection Act , UK GDPR

Cyber-attack victim obtains injunction to prevent publication of stolen data

Following a high-profile cyber-attack earlier in the year which impacted the medical data of NHS patients, the English High Court granted Synnovis an interim injunction which prevents the publication of the stolen data. This...more

9/6/2024  /  Cyber Attacks , Cybersecurity , Data Breach , Data Privacy , Data Protection , EU , Medical Records , Technology Sector

English court applies Article 49 GDPR derogation to allow a transfer of personal data to Ukraine

The English High Court recently granted a bank permission to transfer personal data disclosed in court proceedings to an authority in Ukraine, a country without UK GDPR adequacy status. The Judge found that the transfer fell...more

8/2/2024  /  Cybersecurity , Data Privacy , Data Protection , Disclosure , Personal Data , UK GDPR , Ukraine

Operational resilience feedback from UK Financial Conduct Authority

Firms have just over six months until the transition period for implementing the UK Financial Conduct Authority (FCA), Prudential Regulation Authority (PRA) and the Bank of England rules and guidance on operational resilience...more

7/15/2024  /  Bank of England , Banking Sector , Banks , Financial Conduct Authority (FCA) , Financial Institutions , Financial Regulatory Reform , Financial Services Industry , FinTech , Prudential Regulation Authority (PRA) , UK
9 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide