News & Analysis as of

Information Commissioner's Office (ICO) Personal Data Corporate Counsel

Paul Hastings LLP

ICO Annual Report Provides Insight Into Data Protection Risks for Businesses

Paul Hastings LLP on

The UK Information Commissioner’s Office’s (the ICO’s) latest Annual Report summarises its accomplishments and priorities, including last year’s enforcement actions. Based on our review of the report, we see the ICO focusing,...more

Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

A&O Shearman

Data (Use and Access) Act gets Royal Assent

A&O Shearman on

On June 19 2025, the Data (Use and Access) Act (DUA Act) received Royal Assent, having passed both Houses of Parliament on June 11 2025. The Data (Use and Access) Bill was first introduced in the House of Lords on October 23...more

Jenner & Block

Client Alert: New GDPR Investigations into the Use of Children’s Data

Jenner & Block on

The UK’s data protection regulator, the Information Commissioner’s Office (ICO), has recently announced investigations into three companies in connection with the use of children’s personal information. In a statement on...more

Cooley LLP

New UK Guidance on Workplace Monitoring

Cooley LLP on

On 3 October 2023, the UK’s Information Commissioner’s Office (ICO) published new guidance on workplace monitoring. The previous guidance was issued in 2011, as part of the ICO’s Employment Practices Code, and was badly in...more

Orrick, Herrington & Sutcliffe LLP

Data Subject Access Requests from Employees: What UK Employers Need to Know About New ICO Guidance

Orrick, Herrington & Sutcliffe LLP on

A challenging economic situation is prompting contentious staffing decisions. The rise of hybrid work has led employers to generate more information in more places about employees. Against this backdrop, more employees are...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Bill in U.K. Parliament Would Facilitate Certain Types of Data Processing by Redefining ‘Personal Data’ Parameters

Ogletree, Deakins, Nash, Smoak & Stewart,... on

On March 8, 2023, the Data Protection and Digital Information (No. 2) Bill was introduced to the UK Parliament by the Department for Science, Innovation and Technology (DSIT). If enacted, the Bill will make changes to the UK...more

Orrick, Herrington & Sutcliffe LLP

ICO Issues Updated Guidance on International Data Transfers

Orrick, Herrington & Sutcliffe LLP on

On 17 November 2022, the Information Commissioner's Office (“ICO”) announced that it has updated its guidance on international data transfers. In its announcement, the ICO outlined its intention to “clarify an alternative...more

Benesch

REMINDER: New UK Cross-Border Data Transfer Mechanisms Now in Effect.

Benesch on

Moving forward, businesses will need to use the updated Data Transfer Agreement or Data Transfer Addendum for any relationship or contract that contemplates the cross-border transfer of UK personal data. As of September...more

Orrick, Herrington & Sutcliffe LLP

8 Things You Need to Know About United Kingdom (UK) International Data Transfers

Orrick, Herrington & Sutcliffe LLP on

Update: UK international data transfer agreement and UK addendum to the EU standard contractual clauses now in force In February, the Information Commissioner’s Office (“ICO”), the United Kingdom (UK) data protection...more

Faegre Drinker Biddle & Reath LLP

International Data Transfers: Clarity on Timing of U.K. Transfer Mechanisms

Faegre Drinker Biddle & Reath LLP on

The U.K. Information Commissioner’s Office (UK ICO) recently confirmed the options and clarified the timing of new data transfer agreements for transfers of personal data out of the U.K. The situation has been somewhat...more

Faegre Drinker Biddle & Reath LLP

Significant Changes Proposed to UK GDPR

Faegre Drinker Biddle & Reath LLP on

On September 10, the U.K. government launched a consultation “Data: A New Direction” (Consultation), which proposes significant changes to the U.K.’s data protection framework. The U.K. government has signalled its...more

Butler Snow LLP

The European Commission’s New Standard Contractual Clauses: Transferring Personal Data from the EU (A Long Overdue “Take Two”)

Butler Snow LLP on

On June 4, 2021, the European Commission adopted a new, highly anticipated set of standard contractual clauses to facilitate the transfer of personal data out of the European Economic Area (“EEA”) in accordance with the...more

Orrick, Herrington & Sutcliffe LLP

Warren v DSG Retail Ltd – Shifting the Liability Landscape in Post‐Cyberattack Litigation

Orrick, Herrington & Sutcliffe LLP on

Since the General Data Protection Regulations ("GDPR") came into force in 2018, companies in the United Kingdom (UK) that have suffered cybersecurity attacks often face civil claims from individuals whose data has been...more

BCLP

UK launches consultation on international data transfers - a first glimpse of the “UK SCCs”

BCLP on

On 11 August, the UK Information Commissioner’s Office launched a consultation paper on “International transfers under UK GDPR”. The documents released alongside the paper include a draft International Data Transfer Agreement...more

A&O Shearman

European Commission adopts positive UK adequacy decisions for data transfers

A&O Shearman on

On 28 June 2021, just two days before the interim EU-UK data transfer “bridging mechanism” expired under the Trade and Cooperation Agreement, the European Commission (EC) adopted two adequacy decisions for the UK to...more

Jones Day

Data Protection: Reducing the Risk of Disruption on a "No Deal" Brexit

Jones Day on

The Situation: The United Kingdom is due to leave the European Union ("EU") on 31 October 2019. Negotiations between member states of the EU excluding the United Kingdom ("EU27") and the United Kingdom are ongoing, but it is...more

McGuireWoods LLP

Implications of Brexit on GDPR

McGuireWoods LLP on

The General Data Protection Regulation (GDPR) imposes strict obligations upon organizations that process the “personal data” of European individuals. Failure to comply with GDPR can result in large fines. The UK’s Information...more

18 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide