News & Analysis as of

General Data Protection Regulation (GDPR) Enforcement Actions United Kingdom

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

Alston & Bird

UK Data Protection Regulator Fines 23andMe ~$3.1 Million Following Credential Stuffing Attack

Alston & Bird on

On June 5, 2025, the UK’s Information Commissioner’s Office (ICO) fined 23andMe £2.31 million (~$3.1 million). The fine was for failing to implement adequate security measures to protect the personal data of over 155,000 UK...more

A&O Shearman

UK Information Commissioner's Office launches AI and Biometrics Strategy

A&O Shearman on

In early June the UK Information Commissioner’s Office (ICO) launched its AI and Biometrics Strategy (AIBS), the first time it has published a dedicated document setting out its priorities on General Data Protection (GDPR)...more

Lighthouse

Current State of Data Protection Regulations in the US and EMEA

Lighthouse on

Organizations must continuously review and refine their data governance strategies to keep pace with a regulatory environment that is shifting at an unprecedented rate. In response to mandates for stronger compliance...more

Skadden, Arps, Slate, Meagher & Flom LLP

Key Themes From the 2025 IAPP Global Privacy Summit

Skadden, Arps, Slate, Meagher & Flom LLP on

On April 23 and 24, 2025, regulators, industry leaders and data privacy leaders from across the globe convened in Washington, D.C. for the 2025 International Association of Privacy Professionals (IAPP) Global Privacy Summit....more

Jenner & Block

Client Alert: New GDPR Investigations into the Use of Children’s Data

Jenner & Block on

The UK’s data protection regulator, the Information Commissioner’s Office (ICO), has recently announced investigations into three companies in connection with the use of children’s personal information. In a statement on...more

A&O Shearman

English Court reviews the ICOs first GDPR fine (again)

A&O Shearman on

In December 2019, the UK Information Commissioner’s Office (ICO) imposed a fine of £275,000 on Doorstep Dispensaree Limited (DDL) for multiple contraventions of the GDPR. On December 9 2024, five years on and three judgments...more

A&O Shearman

Zooming in on AI - #7: AI under financial regulations in the U.S., EU and U.K. - a comparative assessment of the current state of...

A&O Shearman on

This is the final note in a three-part series on the regulation of artificial intelligence in the financial services sector in the United States, the European Union and the United Kingdom. Our first note, we provided a...more

McDermott Will & Emery

European Privacy Risk Exposure

McDermott Will & Emery on

2022 was yet another eventful year in terms of GDPR compliance. The continued evolution of the enforcement landscape, with increasing number of sanctions and individuals exercising their rights required time and attention...more

McDermott Will & Emery

European Regulators Provide Some Key Clarifications on Cookie Banners

McDermott Will & Emery on

The European Data Protection Board (EDPB) adopted a draft report of the work undertaken by the Cookie Banner Taskforce (the Report). The Report describes how regulators apply cookie legislation in handling certain types of...more

Robinson+Cole Data Privacy + Security Insider

Ireland Fines Instagram €405 Million for Children’s Data Violations

Robinson+Cole Data Privacy + Security Insider on

Ireland’s Data Privacy Commissioner will reportedly fine Instagram for its handling of children’s data. According to an investigation that began in 2020, Instagram published emails and phone numbers for children ages 13 to 17...more

McDermott Will & Emery

[Webinar] Mitigating Risk Exposure Under Evolving Global Cookies Regulations - May 19th, 12:00 pm - 1:00 pm EDT

McDermott Will & Emery on

The regulation of cookies and similar tracking technologies is rapidly evolving, not only in the European Union and United Kingdom but also in the United States and globally. If you have visited a website recently, you might...more

BakerHostetler

International Data Protection Update – First Quarter 2021

BakerHostetler on

This quarterly update highlights some of the international data protection issues that have caught our attention, and the attention of our clients, in the past three months....more

Hogan Lovells

Five conclusions from the UK ICO's British Airways fine

Hogan Lovells on

On 16 October the UK Information Commissioner (ICO) confirmed that it had imposed a fine of £20m on British Airways (BA) for infringing the GDPR by failing to protect the personal data of approximately 400,000 of its...more

Skadden, Arps, Slate, Meagher & Flom LLP

Privacy & Cybersecurity Update - July 2020

Skadden, Arps, Slate, Meagher & Flom LLP on

In this month's edition, we examine the Court of Justice of the European Union's decision invalidating the EU-U.S. Privacy Shield framework, as well as the U.S. government's response to the decision. We also examine two...more

BCLP

Cyber Security Trends: Tips from recent UK enforcement activity - Part 4

BCLP on

When the regulator has decided to investigate your organisation following a data breach, the remit for the investigation will be wide-ranging and go beyond the narrow circumstances of the breach. Recent decisions shed useful...more

BCLP

Cyber Security Trends: Tips from recent UK enforcement activity – Part 3

BCLP on

Key to recent ICO decisions has been the ICO’s assessment of the extent and quality of communications with affected individuals and the regulator itself. It is clear the ICO sees certain behaviours (such as the setting up of...more

BCLP

Cyber Security Trends: Tips from recent UK enforcement activity – Part 2

BCLP on

In this part of our briefing series, we cover how prior regulatory enforcement action affects the assessment of sanctions and some pitfalls associated with undertaking internal security audits.  Who is this relevant for?...more

Orrick, Herrington & Sutcliffe LLP

ICO Fines: When Is An Appeal Appealing?

Orrick, Herrington & Sutcliffe LLP on

The decision to appeal a regulatory finding is never taken lightly. By the time a regulator has completed its investigation and notified a company of its intention to fine, the company will have invested significant time and...more

BCLP

Cyber Security Trends: Tips from recent UK enforcement - Part 1

BCLP on

What insights into cyber security norms can organisations glean from the UK ICO’s recent enforcement decisions, most of which have been released since the GDPR came into force? Final fines are still awaited on the UK’s...more

Skadden, Arps, Slate, Meagher & Flom LLP

Skadden's 2020 Insights

Skadden, Arps, Slate, Meagher & Flom LLP on

Despite political and economic uncertainties, markets and deal activity were resilient in 2019, and strong fundamentals remain in place heading into 2020. Companies continue to face a challenging litigation and enforcement...more

Society of Corporate Compliance and Ethics...

GDPR enforcement actions: UK and Germany

Society of Corporate Compliance and Ethics... on

Report on Supply Chain Compliance 3, no. 2 (January 23, 2020) - Two recent enforcement actions shed light on how regulators will enforce GDPR provisions going forward. In one case, the United Kingdom’s Information...more

White & Case LLP

GDPR Guide to National Implementation: United Kingdom - A practical guide to national GDPR compliance requirements across the EEA

White & Case LLP on

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed. Brexit Note: The GDPR will apply in...more

Skadden, Arps, Slate, Meagher & Flom LLP

Cross-Border Investigations Update - September 2019

Skadden, Arps, Slate, Meagher & Flom LLP on

This issue of Skadden’s semiannual Cross-Border Investigations Update takes a close look at recent cases, regulatory activity and other key developments, including a review of the first year of GDPR enforcement, analysis of...more

Skadden, Arps, Slate, Meagher & Flom LLP

UK Employment Flash - August 2019

Skadden, Arps, Slate, Meagher & Flom LLP on

In this issue of UK Employment Flash, we examine the latest employment law developments, news and insights from the UK, including the Court of Appeal's ruling regarding pay for fathers or other caregivers taking shared...more

38 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide