News & Analysis as of

European Union Information Commissioner's Office (ICO) Data Privacy

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
Latham & Watkins LLP

UK Adequacy Holds Firm Under New Data (Use and Access) Act 2025

Latham & Watkins LLP on

The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice. The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more

Paul Hastings LLP

ICO Annual Report Provides Insight Into Data Protection Risks for Businesses

Paul Hastings LLP on

The UK Information Commissioner’s Office’s (the ICO’s) latest Annual Report summarises its accomplishments and priorities, including last year’s enforcement actions. Based on our review of the report, we see the ICO focusing,...more

Goodwin

The Data Shift: UK Sets a New Course With 2025 Data (Use and Access) Act

Goodwin on

The Data (Use and Access) Bill passed both Houses of UK Parliament and received Royal Assent on 19 June 2025, now becoming the Data (Use and Access) Act 2025 (“DUA Act”). This is the final iteration of the Data Protection and...more

Latham & Watkins LLP

Kingdom of Saudi Arabia Issues New Data Transfer Risk Assessment Guidelines

Latham & Watkins LLP on

The guidelines specify the requirements for data controllers to conduct risk assessments related to the transfer or disclosure of personal data outside the Kingdom. ...more

DLA Piper

Google’s U-Turn on Device Fingerprinting: ICO’s Response and Subsequent Guidance

DLA Piper on

In a December, the Information Commissioner’s Office (ICO) responded to Google’s decision to lift a prohibition on device fingerprinting (which involves collecting and combining information about a device’s software and...more

Skadden, Arps, Slate, Meagher & Flom LLP

UK’s ICO and NCA Sign Memorandum of Understanding for Further Collaboration on Cybersecurity

Skadden, Arps, Slate, Meagher & Flom LLP on

On 5 September 2024, the UK’s data privacy regulator, the Information Commissioner’s Office (ICO), and the UK National Crime Agency (NCA) signed a Memorandum of Understanding (MoU) outlining how they will further collaborate...more

Constangy, Brooks, Smith & Prophete, LLP

UK government establishes UK-U.S. Data Bridge

Constangy, Brooks, Smith & Prophete, LLP on

The United Kingdom has announced its decision to establish the UK-U.S. Data Bridge. The UK-U.S. Data Bridge will allow UK businesses and organizations to transfer personal data to organizations in the United States that have...more

A&O Shearman

Increasing global cybersecurity regulation of private companies on the near horizon

A&O Shearman on

Within the past year, a number of countries around the world, including the United States, United Kingdom, France, and The Netherlands have initiated regulatory inquiries and developed new strategies for the purpose of more...more

BCLP

The Evergreen privacy programme - myth or reality?

BCLP on

Though perhaps falling short of being a universally accept­ed one, it is a truth that any organisation processing per­sonal data needs a privacy programme. But how best should an internal compli­ance framework be structured...more

Orrick, Herrington & Sutcliffe LLP

8 Things You Need to Know About United Kingdom (UK) International Data Transfers

Orrick, Herrington & Sutcliffe LLP on

Update: UK international data transfer agreement and UK addendum to the EU standard contractual clauses now in force In February, the Information Commissioner’s Office (“ICO”), the United Kingdom (UK) data protection...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

UK Government’s Consultation on Data Protection and Privacy: Information Commissioner’s Office Issues Response

Ogletree, Deakins, Nash, Smoak & Stewart,... on

The Information Commissioner’s Office (ICO) recently released its response to the UK government consultation, ‘Data: A new direction’. The consultation was conducted by the Department for Digital, Culture, Media and Sport...more

Goodwin

Europe OPTS for Pragmatism with New SCCS and ICO Opens Consultations on UK SCCS — What Companies Need to Do Next

Goodwin on

The dust has settled on the new EU standard contractual clauses for cross-border data transfers (“New SCCs”), but confusion still reins on how the New SCCs cover data transfers and what companies need to do to take advantage...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

EU-UK Trade and Cooperation Agreement Provides a Grace Period for Free Flow of Personal Data

Ogletree, Deakins, Nash, Smoak & Stewart,... on

After the political and constitutional upheaval of the last four years that has been Brexit, a trade deal - the EU-UK Trade and Cooperation Agreement - was finally reached between the United Kingdom (UK) and the European...more

Jones Day

Jones Day Global Privacy & Cybersecurity Update | Vol. 25

Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - Cybersecurity Standards Issued for Government Contractors - On January 31, the Office of the Under Secretary of Defense for Acquisition and...more

BCLP

GDPR Privacy FAQs: What are the major differences between the Information Commissioner’s Office guidance on cookies and the CNIL’s...

BCLP on

The Information Commissioner’s Office or the “ICO” is the British supervisory authority charged with enforcing GDPR. The Commission Nationale de l’informatique et des libertes (the “CNIL”) is the French supervisory authority....more

Epiq

Marriott Facing 124 Million GDPR Fine

Epiq on

Everyone knows about the General Data Protection Regulation (GDPR). The GDPR is the EU’s new privacy regime in the region. Over a year has passed since its implementation and organizations are discovering how strict EU...more

Akin Gump Strauss Hauer & Feld LLP

Continuing GDPR Pressure for Adtech

Akin Gump Strauss Hauer & Feld LLP on

Data protection authorities (DPAs) in the European Union (EU) continue to scrutinize practices in the adtech sector for compliance with the EU’s General Data Protection Regulation (GDPR) and local data protection and...more

Fox Rothschild LLP

Why Every M&A Deal Should Include Data Privacy Due Diligence

Fox Rothschild LLP on

Milk, meat, fruits, breads … and data protection. These are the new food groups for your M&A deal. Just 24 hours after the notice of intent to fine British Airways 183 Million GBP, the UK ICO issued an intent to fine...more

Latham & Watkins LLP

No Deal Brexit and Data Transfers: Companies Must Prepare Now

Latham & Watkins LLP on

Companies should identify data flows, implement a data transfer solution, and update internal documents and privacy notices. Since our blog on “What a “No Deal” Brexit Means for UK Data Privacy”, the European Data...more

Sheppard Mullin Richter & Hampton LLP

Talk About Ironic: Brexit Group Fined Under EU-Related Privacy Regulations

Sheppard Mullin Richter & Hampton LLP on

In an ironic twist, the British Information Commissioner’s Office (ICO) recently fined a Brexit advocacy group for violating regulations issued under an EU directive. The fines, totaling £120,000, were levied against...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

“We’re Updating Our Privacy Policies” - Consent Under the GDPR

Ogletree, Deakins, Nash, Smoak & Stewart,... on

With the General Data Protection Regulation (GDPR), the European Union’s new privacy law having come into effect on 25 May 2018, thousands of companies have been flooding inboxes in recent weeks with emails asking for consent...more

King & Spalding

UK Data Protection Authority Publishes International Strategy

King & Spalding on

The United Kingdom’s Information Commissioner’s Office (“ICO”) has published its international strategy for 2017-2021, which sets out the UK’s strategy for its relationship with the European Union on data privacy matters...more

Jones Day

Global Privacy & Cybersecurity Update Vol. 14

Jones Day on

New York Attorney General Announces Record Number of Data Breach Notices in 2016 - On March 21, 2017, the New York Attorney General's Office announced that it received 1,300 reported data breaches in 2016—a 60 percent...more

Morgan Lewis

United Kingdom to Implement EU General Data Protection Regulation

Morgan Lewis on

UK Secretary of State Karen Bradley recently confirmed that the United Kingdom will implement the European Union’s General Data Protection Regulation (GDPR), the regulation by which the European Commission intends to...more

Seyfarth Shaw LLP

No Safe Harbour? Immediate Implications for Employers

Seyfarth Shaw LLP on

A landmark decision of the European Court of Justice (ECJ) has held that companies may no longer rely on “Safe Harbour” to justify transferring personal data from the European Union to the US, because the US Government has a...more

25 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide