Privacy and Electronic Communications Regulation 2003 (PECR)., General Data Protection Regulation (GDPR), UK

The Data (Use and Access) Act

Mayer Brown on 7/7/2025

On 19 June 2025 the Data (Use and Access) Act (the "DUA Act") received Royal Assent and became law in the UK, having been passed by the UK Parliament on 11 June 2025....more

Meet the In-Laws: the UK’s Digital Legislative Agenda for 2025

Ropes & Gray LLP on 12/23/2024

After its election to power in July 2024, the newly formed Labour government wasted little time in announcing its legislative priorities for the coming year. Unsurprisingly, these priorities included several proposed Bills...more

UK Data Protection and Digital Information (No. 2) Bill: What Is Changing?

Latham & Watkins LLP on 3/29/2023

The updated reform legislation provides welcome guidance and clarifications on aspects such as legitimate interests and accountability, without substantially shifting the approach proposed under the existing reform bill. ...more

The ICO Changes its Approach to the 24-Hour PECR Notification Rules: 5 Key Takeaways

Orrick, Herrington & Sutcliffe LLP on 2/6/2023

In what will be a surprise move to many, the ICO has issued a statement to UK public electronic communications service providers ("CSPs") regulated by the Privacy and Electronic Communications Regulations 2003 (known as...more

UK’s Data Protection Reform Proposals Show Distinct Divergence from EU Rules

Faegre Drinker Biddle & Reath LLP on 8/4/2022

The UK government has recently published proposals to amend UK data protection legislation with moves towards divergence from EU rules and regulation following the UK’s decision to leave the EU (“Brexit”). The Data Protection...more

10 key proposals from the UK government’s consultation on reforming data protection law

Hogan Lovells on 9/16/2021

On 10 September 2021, the UK Government’s Department for Digital, Culture, Media and Sport (DCMS) published its long-awaited proposals for reform of the country’s data protection laws. The consultation paper includes a...more

The ICO Age-Appropriate Design Code of Practice: Steps to Take in 2021 To Protect Children’s Privacy

Fenwick & West LLP on 2/5/2021

The United Kingdom’s Information Commissioner’s Office (ICO) finalized a new Code of Practice (the Code) in September 2020, which applies to most companies that offer online services to or otherwise collect personal data from...more

Data issues when acquiring assets from an insolvent vendor

BCLP on 11/16/2020

Recent M&A deals the teams have worked on involving insolvent corporates have highlighted the challenges which exist around the transfer of customer lists and databases, which are often a significant asset for the buyer. ...more

Data Protection Impacts for UK Businesses Under the UK Withdrawal Agreement

Latham & Watkins LLP on 2/14/2020

“Business as usual” for UK-EU data protection transition in 2020. On 29 January 2020, the EU Parliament approved the UK Withdrawal Agreement after the UK Parliament’s ratification via the EU Withdrawal Act 2020 on 23 January...more

Privacy and Data Security Alert l January 2020

Shook, Hardy & Bacon L.L.P. on 1/30/2020

States Consider Privacy and Data Security Legislation - It’s that time of year again, when we see a flood of legislative activity at the state level on privacy and data security laws. A couple of recent examples are below....more

GDPR Privacy FAQs: Do European privacy laws require a cookie banner when a company uses first-party session cookies?

BCLP on 7/24/2019

Probably not. A cookie can qualify as “personal data” under GDPR when it can be linked to an individual person. Even in instances where a cookie cannot be linked, it is still governed by the ePrivacy Directive and...more

Privacy and Electronic Communications Regulation 2003 (PECR). › General Data Protection Regulation (GDPR) › United Kingdom

"My best business intelligence, in one easy email…"