News & Analysis as of

European Union Personal Data United Kingdom

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
Katten Muchin Rosenman LLP

EU Initiates Renewal of UK Adequacy Decision Following the UK's Adoption of the Data (Use and Access) Act 2025

Katten Muchin Rosenman LLP on

EU Launches UK Adequacy Decision Renewal Process - On 22 July 2025, the European Commission announced that it had launched the process to renew the adequacy decision for the United Kingdom (UK) and confirmed that the UK’s...more

Latham & Watkins LLP

UK Adequacy Holds Firm Under New Data (Use and Access) Act 2025

Latham & Watkins LLP on

The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice. The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more

Goodwin

The Data Shift: UK Sets a New Course With 2025 Data (Use and Access) Act

Goodwin on

The Data (Use and Access) Bill passed both Houses of UK Parliament and received Royal Assent on 19 June 2025, now becoming the Data (Use and Access) Act 2025 (“DUA Act”). This is the final iteration of the Data Protection and...more

Skadden, Arps, Slate, Meagher & Flom LLP

Something Is Better Than Nothing: UK and EU GDPR Reform Finally Arrives

Skadden, Arps, Slate, Meagher & Flom LLP on

In recent weeks, the EU and UK have both introduced changes to their respective versions of Europe’s landmark privacy legislation, the General Data Protection Regulation (GDPR). These reforms mark the first substantial...more

Seyfarth Shaw LLP

The UK’s New Amendments to the UK GDPR Become Law and Get a Nod from the EU. What happens now?

Seyfarth Shaw LLP on

The UK’s Data (Use and Access) Act received Royal Assent last Thursday, June 19th, bringing into law some significant changes to the country’s post Brexit data protection framework, among an array of other, related rules (on...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Navigating the Rise in Data Subject Access Requests

Ogletree, Deakins, Nash, Smoak & Stewart,... on

Recently, there has been an increase in individual rights activity across Europe, particularly organizations receiving Data Subject Access Requests (DSARs) from former employees. ...more

Hogan Lovells

Streamlined BCR approval: Understanding the EDPB's updated procedure

Hogan Lovells on

On 19 March 2025, the European Data Protection Board published an updated procedure for co-operation between EU data protection supervisory authorities approving GDPR Binding Corporate Rules for intra-group transfers of EU...more

Alston & Bird

European Commission Moves to Extend Free Flows of Personal Data to the UK

Alston & Bird on

On March 18, 2025, the European Commission proposed to extend its adequacy decision in favor of the United Kingdom (‘UK’) for an additional six-month period. This would allow free flows of personal data from the EU to the UK...more

Latham & Watkins LLP

Kingdom of Saudi Arabia Issues New Data Transfer Risk Assessment Guidelines

Latham & Watkins LLP on

The guidelines specify the requirements for data controllers to conduct risk assessments related to the transfer or disclosure of personal data outside the Kingdom. ...more

A&O Shearman

English judgment shines light on ICO investigation into Cambridge Analytica

A&O Shearman on

On March 23 2018, the Information Commissioner’s Office (ICO) executed a warrant to enter and search the offices of Cambridge Analytica. The purpose of the search was to access records concerning its alleged use of personal...more

A&O Shearman

English court determines the “meaning” of personal data

A&O Shearman on

In a previous blog post we considered an unsuccessful application to strike out a claim for alleged breaches of the UK GDPR, on the grounds that the claim was – in substance – a defamation claim. That application was...more

A&O Shearman

Securing our world: how businesses can prepare for and recover from cyber attacks

A&O Shearman on

As part of our Cybersecurity Awareness Month program of events, we hosted our inaugural Cybersecurity Forum on October 1 at our London office and online. Compèred by Ffion Flockhart, global head of cybersecurity, the day’s...more

Latham & Watkins LLP

EDPB Issues Guidelines on Processing Personal Data for Legitimate Interests Purposes

Latham & Watkins LLP on

The draft guidelines provide further clarification to the EDPB’s interpretation of legitimate interests, and suggest a potential divergence with the UK ICO....more

A&O Shearman

UK AI policy developments and where next

A&O Shearman on

As the EU presses ahead with its implementation of the AI Act, the UK continues to develop its evolutionary approach to AI policy and regulation. As the new Labour Government starts to implement its perspective and ahead of a...more

A&O Shearman

When does payment card data qualify as personal data? English Court gives new guidance on this question

A&O Shearman on

The Upper Tribunal (UT) has overturned a decision by the First-tier Tribunal (FTT), relating to a Monetary Penalty Notice (MPN) that was issued by the Information Commissioner (ICO). All of this stemmed from a cyber-attack...more

A&O Shearman

EU and UK Data Protection Regulatory Trends so far in 2024: a focus on international data transfers

A&O Shearman on

This series of blogs rounds up some of the key data protection regulatory trends we have seen during 2024, focused on the EU and UK. 2024 has seen behavioural advertising and cookies continue to dominate the agenda of...more

A&O Shearman

EU and UK Data Protection Regulatory Trends so far in 2024: a focus on employee surveillance and biometric in the workplace

A&O Shearman on

This series of blogs rounds up some of the key data protection regulatory trends we have seen during 2024, focused on the EU and UK. 2024 has seen behavioural advertising and cookies continue to dominate the agenda of data...more

A&O Shearman

EU and UK Data Protection Regulatory Trends so far in 2024: a focus on AI

A&O Shearman on

This series of blogs rounds up some of the key data protection regulatory trends we have seen during 2024, focused on the EU and UK. 2024 has seen behavioural advertising and cookies continue to dominate the agenda of data...more

A&O Shearman

Zooming In on AI - #6: AI under financial regulations in the U.S., EU and U.K.

A&O Shearman on

Many governments are grappling with the question of how to regulate artificial intelligence to ensure it is adopted safely and used responsibly without hampering innovation. Governments have generally indicated similar...more

Goodwin

A Look Ahead in Life Sciences: What We Are Tracking in the Fourth Quarter of 2024 and Beyond

Goodwin on

As the life sciences, medtech, and diagnostic industries continue to expand and grow increasingly complex, so does the legal, regulatory, and compliance landscape....more

Ogletree, Deakins, Nash, Smoak & Stewart,...

International Data Transfers Remain Under EU and UK Regulatory Scrutiny

Ogletree, Deakins, Nash, Smoak & Stewart,... on

Organisations that make international transfers of personal data have undergone significant challenges and changes over the last few years. With the invalidation of the Privacy Shield agreement in 2020 and the introduction of...more

Mayer Brown

Personal Data Sharing: What Information About Recipients Do We Need to Provide to Individuals Under the GDPR?

Mayer Brown on

Sharing personal data is necessary for most organisations, but it also entails certain data protection risks. Controllers who share personal data with others must, among other obligations, ensure that they comply with the...more

Latham & Watkins LLP

UK US Data Bridge Practical Tips for Implementation and Compliance

Latham & Watkins LLP on

Latham & Watkins and Privacy Laws & Business recently co-hosted a webinar looking back on the first eight months since the UK-US Data Bridge entered into force. Speakers from the UK Information Commissioner’s Office (ICO) and...more

WilmerHale

UK, EU, and US release joint statement on competition in generative AI foundation models and AI products

WilmerHale on

On July 23, the European Commission, US Department of Justice, US Federal Trade Commission, and UK Competition and Markets Authority released a joint statement setting out shared principles on competition in markets that...more

BCLP

Navigating the FemTech Regulatory Landscape: Best Practice & Future Developments

BCLP on

The stakes are high for FemTech – as Benjamin Franklin noted: ‘it takes many good deeds to build a good reputation and only one bad one to lose it.’...more

218 Results
 / 
View per page
Page: of 9
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide