Jan 26, 2023 ICO tech report highlights privacy challenges for four key technologies By Natalie Donovan The ICO is encouraging developers to consider privacy at an early stage when implementing new technologies and, in its first annual...
Dec 20, 2022 Government pushes ahead with plans to strengthen UK’s cyber resilience and regulate more IT services By Natalie Donovan Protecting critical services and infrastructure from cyber incidents is a key priority for legislators on both sides of the channel. We...
Nov 29, 2022 EU expands scope of its cyber rules as NIS 2 agreed By Charles MacRae The EU has agreed changes to its cybersecurity rules. On 22 November 2022, the “NIS 2 Directive” received approval from the European...
Oct 25, 2022 Are you on top of your cyber supply chain risk? If not, new NCSC guidance may help By Natalie Donovan Is your organisation one of the mere 7% of businesses who review the cyber risks posed by your wider supply chain, or one of the 93% that...
Sep 23, 2022 Exclusive jurisdiction clauses and software licences – High Court reminds us that they’re not so simple By Richard Barker When you are ‘buying’ (in this case, licensing) software, you want to know the risks associated with the deal. One key risk is where you...
Sep 08, 2022 Organisations could face new security requirements under ‘cyber duty to protect’ plans? By Natalie Donovan Government call for information suggests new security requirements could be introduced to protect online accounts and user data from...
Jul 20, 2022 Is the NIS regime working? Changes proposed in new review By Edmund Berney This month, the Government published its second post-implementation review of the 2018 Network and Information Systems (‘NIS’)...
May 26, 2022 Do you know how to manage your cyber supply chain risk? By Natalie Donovan NCSC joins international partners to publish new supply chain guidance. As organisations continue to shore up their own cyber defences,...
Feb 10, 2022 Tackling cyber supply chain risk: new laws proposed By Natalie Donovan From reports of cyber attacks at the UK’s Foreign office and European oil facilities to crisp shortages caused by a ransomware attack at...
Jan 28, 2022 General Court annuls European Commission’s 2009 €1.06 billion fine on Intel By Katie Hudson Thirteen years after the European Commission imposed a EUR 1.06bn fine on US chipmaker Intel on charges of abusing its market dominance...
Jan 14, 2022 NCSC helps boards tackle the Log4j vulnerability - the 'most severe computer vulnerability in years' By Natalie Donovan The National Cyber Security Centre (NCSC) has reminded boards of their role in mitigating cyber risk in their organisations, publishing a...
Jan 14, 2022 New AI standards hub launched in UK By Natalie Donovan This week the government launched a new AI standards initiative as part of its AI strategy (see my blog from last September for...
Dec 13, 2021 Cyber Essentials update for 2022 By Natalie Donovan On 24 January 2022, the National Cyber Security Centre (NCSC) will introduce the biggest update to Cyber Essentials’ technical controls...
Nov 17, 2021 Anti-virus subscription contracts: time to renew your practice By Calum Scott The Competition and Markets Authority (CMA) published compliance principles on 19 October 2021 concerning auto-renewal for anti-virus...
Nov 04, 2021 Open Source Software enforcement – helping to reduce e-waste? By Matthew Harman The Software Freedom Conservancy (SFC) has commenced litigation in the US against smart TV manufacturer Vizio for alleged breaches of...
Oct 25, 2021 Bug off. What if your software provider won’t fix errors? By Charles MacRae In the case of Top System SA v État belge the Court of Justice of the EU provided some helpful clarifications on the scope of a user’s...