Data Driven Compliance: Understanding the UK’s New Failure to Prevent Fraud Offense with Sam Tate
Daily Compliance News: July 25, 2025, The New Sheriff in Town Edition
Everything Compliance: Episode 157, The Q2 2025 Great Women in Compliance Edition
The Capital Ratio Podcast | Entering the US Banking Market
Great Women in Compliance: GWIC X EC Q2 2025 - Exploring Compliance Innovations
An Ounce of Prevention Podcast | The International Anti-Corruption Prosecutorial Taskforce and the Future of Global Enforcement
The LathamTECH Podcast — Where Digital Assets Slot Into a Shifting Fintech Regulatory Landscape: Insights From the US, UK, and EU
10 For 10: Top Compliance Stories For the Week Ending May 24, 2025
Daily Compliance News: May 23, 2025, The Gutless Wonders Edition
Daily Compliance News: May 21, 2025, The I Want You Back Edition
Everything Compliance: Episode 153, The CW 25 Edition
10 For 10: Top Compliance Stories For the Week Ending, May 3, 2025
Daily Compliance News: April 30, 2025, The 4 AM Wake-Up Call Edition
The Capital Ratio Podcast | Stablecoins: Regulatory Issues for UK and EU Banks To Consider
An Ounce of Prevention Podcast | Preparing for the UK Failure to Prevent Fraud Offence
Compliance into the Weeds: Global Anti-Corruption Leadership
Daily Compliance News: March 24, 2025, The ABC Task Force Edition
Daily Compliance News: March 18, 2025, The Slack Channel Edition
Podcast — UK FinReg Focus Areas in 2025: Retail Markets
Podcast — UK FinReg Focus Areas in 2025: Wholesale Markets
On April 8, 2025, the UK government published the Cyber Code of Practice (the “Code”) to support board directors in governing cybersecurity risks. The Code is available online. The UK’s data protection regulator is actively...more
On 14 January 2025, the Home Office opened a public consultation (the "Consultation") on proposals seeking to address the growing threat and impact of ransomware in the UK. The UK Government details three specific proposals...more
The 2024 CrowdStrike outage and the ransomware attack on NHS partner Synnovis hit mainstream news and highlighted the fragility of ICT supply chains and the risks posed by cyber incidents....more
By March 31, 2025, U.K. firms regulated by the Financial Conduct Authority will be required to have conducted mapping and testing to ensure they remain within their impact tolerances for identified operational risks of...more
Major hospitals in London are grappling with severe disruptions following a cyberattack on Synnovis, a key pathology services provider. The attack has resulted in canceled surgeries and emergency patients being diverted to...more
On 11 July 2023, the English High Court handed down its decision on the claimant’s application in Armstrong Watson LLP v. Persons Unknown, granting judgment in default and final injunctive relief. Specifically, the court...more
Paying a cyber ransom will, allegedly, secure your data and give you back control of your systems. But there are legal, operational and ethical risks to consider....more
The UK government confirmed on 30 November 2022 that there will be changes to the UK’s cybersecurity regulations in response to a public consultation launched earlier this year. This follows recent updates relating to the...more
The crucial question that a company and its board will face if it suffers a cyber security breach is: "Had you taken reasonable steps to try to prevent a breach, and to prepare to handle any breach that occurred?" If the...more
A recent High Court case examines the liability position where leaks or losses of personal data occur as a result of the actions of a cyber-attacker, rather than as a result of breaches or misuse by the data controller...more
The end of the Brexit transition period is now upon us. Whilst the EU General Data Protection Regulation (EU GDPR) is retained in domestic law with minimal amendment, the so-called 'UK GDPR' has some key changes that...more
On 30 October 2020, the UK’s data privacy regulator, the Information Commissioner’s Office (ICO) issued a final penalty notice (Penalty Notice) to fine the hotel chain Marriott International, Inc. (Marriott) for a GDPR data...more
The UK Information Commissioner’s Office (ICO) has recently handed down two of the largest fines relating to a data breach in UK history. In August 2018, British Airways (BA) was subject to a cyberattack which breached the...more
The UK National Cyber Security Centre and Canada’s Communications Security Establishment released an advisory linking APT29 (also known as, ‘the Dukes’ or ‘Cozy Bear’) to attacks against COVID-19 vaccine development in...more
UK Government set to move forwards with regulation on consumer IoT device security The UK Government has just announced that it intends to draw up legislation aimed at ensuring that all consumer smart devices sold in the UK...more
The English High Court will adopt flexible and innovative approaches to help victims of cybercrime obtain remedies against defendants who are either unknown or refuse to engage in proceedings. The court confirmed its...more
In a Final Notice dated 1 October 2018, the FCA sanctioned Tesco Personal Finance Plc for failings connected with a cyber attack it suffered in November 2016. The attack originated from Brazil and attackers managed to...more
The UK government launched its 5-year National Cyber Security Strategy in November 2016, investing a reported £1.9 billion to protect UK businesses from cyber-attacks and make the country the safest place to live and do...more
Welcome to The Big Think – the thought leadership series from Allen & Overy’s global Employment practice. Its mission is to think big, think forward and think without boundaries. Members of our international team put...more
With interconnectivity and use of digital storage expanding, cyberthreats posed by nation states, commercial competitors, company insiders, transnational organised crime and ‘hacktivists’ are growing on a global basis. Recent...more
In 2012, the director gen¬eral of MI5 revealed that a London-listed company had lost £800 million as a result of a state-backed cyber at¬tack. The company in question has not been publicly identified and no disclosures were...more