Jane Finlayson-Brown

Jane Finlayson-Brown

A&O Shearman

Contact
View Bio
RSS

Latest Posts › Risk Management

Share:

The UK’s Online Safety Act (OSA): What you need to do now

We are now on the first stop – illegal harms – of Ofcom’s (the UK’s online safety regulator) roadmap for what online providers must do to comply with the OSA. - By March 16, 2025, in-scope services must assess the risk of...more

3/18/2025  /  Consumer Protection Laws , Cybersecurity , Data Privacy , Data Protection , Enforcement Actions , Government Agencies , Regulatory Requirements , Risk Management , Technology Sector , UK

Zooming in on AI #15: Regulatory spaghetti and AI – how to make sense of the EU GDPR and the EU AI Act

Given the rapid speed of development in the field of AI, it is increasingly important that businesses develop effective governance to address the regulatory framework governing the development, training, use and deployment of...more

2/20/2025  /  Artificial Intelligence , Compliance , Data Privacy , Data Protection , EU , General Data Protection Regulation (GDPR) , Regulation , Regulatory Agenda , Regulatory Requirements , Risk Management , Technology Sector

Zooming in on AI – #13: EU AI act– Focus on fundamental rights impact assessment for high-risk AI systems

Companies deploying high-risk artificial intelligence (AI) systems must prepare to conduct Fundamental Rights Impact Assessment (FRIA) by 2 August 2026. In this edition of our “Zooming in on AI” series we explain what this...more

12/11/2024  /  Artificial Intelligence , Data Protection , Data Protection Impact Assessments (DPIAs) , EU Data Protection Laws , General Data Protection Regulation (GDPR) , Machine Learning , Risk Management , Technology Sector

Zooming in on AI #11: EU AI Act – What are the obligations for the limited-risk AI systems

The EU Artificial Intelligence Act (“AI Act”) exemplifies a highly advanced risk-based approach to European regulation. One of its distinguishing features is the detailed classification of various risk levels associated with...more

11/12/2024  /  Artificial Intelligence , Digital Services , EU , European Commission , General Data Protection Regulation (GDPR) , Machine Learning , Privacy Laws , Regulatory Agenda , Regulatory Requirements , Risk Management , Technology Sector , Transparency

Zooming in on AI – #10: EU AI Act – What are the obligations for “high-risk AI systems”?

Companies deploying high-risk artificial intelligence (AI) systems must prepare to navigate a complex landscape of new obligations by August 2, 2026. In this post we explain the key obligations for providers and deployers of...more

10/30/2024  /  Artificial Intelligence , Automated Systems , Data Protection , Distributors , EU , EU Data Protection Laws , General Data Protection Regulation (GDPR) , Importers , Regulatory Agenda , Regulatory Oversight , Regulatory Requirements , Reporting Requirements , Risk Management , Technology Sector , Transparency

Zooming in on AI - #8: Balancing innovation and compliance - how governance can foster responsible AI

AI-driven technology has emerged as a cornerstone of our present and future daily lives, revolutionising the way transactions and interactions are organised. With the increased use of AI systems, there is also an...more

10/22/2024  /  Artificial Intelligence , Corporate Governance , Data Protection , EU , Machine Learning , Privacy Laws , Regulatory Agenda , Regulatory Requirements , Risk Management , Stakeholder Engagement , Technology Sector

Zooming In on AI - #6: AI under financial regulations in the U.S., EU and U.K.

Many governments are grappling with the question of how to regulate artificial intelligence to ensure it is adopted safely and used responsibly without hampering innovation. Governments have generally indicated similar...more

10/8/2024  /  Artificial Intelligence , Bank of England , Bergdorf Goodman , Data Collection , Data Processors , Data Selling , Documentation , EU , European Banking Authority (EBA) , European Securities and Markets Authority (ESMA) , Financial Conduct Authority (FCA) , Financial Industry Regulatory Authority (FINRA) , Financial Institutions , Financial Services Industry , Information Governance , Machine Learning , MiFID II , Personal Data , Popular , Privacy Laws , Prudential Regulation Authority (PRA) , Regulatory Agenda , Regulatory Standards , Risk Management , Third-Party , Training , Transparency , UK

Zooming in on AI – #4: What is the interplay between “Deployers” and “Providers” in the EU AI Act?

One of the key aspects of the EU AI Act (“AI Act”)[1] is linked to the qualification of providers and deployers and the nuances which help distinguish between the two categories of stakeholders. What would this mean in...more

9/16/2024  /  Artificial Intelligence , Corporate Governance , EU , Privacy Laws , Regulatory Requirements , Risk Assessment , Risk Management , Shareholders , Technology Sector

Data Governance: Strategic Convergence, Opportunities and Risks

AI is accelerating digital transformation for companies and data governance is a key pillar in this change, enabling data strategies that unlock the potential of AI, and mitigate the risks associated with its use. Data...more

9/12/2024  /  Artificial Intelligence , Corporate Governance , Data Management , Data Privacy , Data Protection , EU , Information Governance , Machine Learning , Regulatory Agenda , Regulatory Requirements , Risk Management , UK

Zooming in on AI: When will the AI Act apply?

EU Regulation 2024/1689, also known as the Artificial Intelligence Act (AI Act), enters into force as of 1 August 2024. But when will it become applicable? The AI Act sets out a harmonized legal framework for the...more

8/5/2024  /  Artificial Intelligence , Compliance , Corporate Governance , Data Protection , EU , Innovative Technology , Machine Learning , Privacy Laws , Regulatory Agenda , Regulatory Requirements , Risk Management , Technology Sector

UK – NCSC publishes guidance on shadow IT

The UK National Cyber Security Centre (NCSC) published its guidance on shadow IT on 27 July 2023. ‘Shadow IT’ are unknown assets that are used within an organisation for business purposes (including in certain cloud...more

8/9/2023  /  Asset Management , Cybersecurity , Data Security , Information Technology , NCSC , New Guidance , Risk Management , Risk Mitigation , Technology , UK

UK NCSC revises risk management guidance

The UK National Cyber Security Centre (NCSC) revised its guidance on risk management on 26 June 2023, which was last updated in 2018....more

7/5/2023  /  Cybersecurity , NCSC , Risk Assessment , Risk Management , UK

Representatives of over 30 nations to coordinate actions against ransomware

On 14 October 2021, the White House brought together the representatives of more than 30 national governments to address the transnational nature of the threat posed by ransomware attacks. The meeting resulted in a joint...more

10/18/2021  /  Biden Administration , Cyber Attacks , Cyber Threats , Cybersecurity , Data Breach , Hackers , Information Technology , Joint Statements , Popular , Ransomware , Regulatory Agenda , Risk Management

Cybersecurity And Risk Management - Our View

The challenge and risks - The topic of cybersecurity is seldom out of the press these days, occupying the minds of business leaders and politicians alike. From a business perspective, the ideal outcome would be to...more

3/15/2016  /  Cloud Computing , Cybersecurity , General Data Protection Regulation (GDPR) , Incident Response Plans , Popular , Risk Management , Trade Secrets
14 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide