Aug 01, 2023 Cyber lessons we can all learn from the ICO’s reprimand of BNT By Natalie Donovan Given the number of cyber-attacks currently taking place, it’s always interesting to see what triggers a regulator to take action. The...
Jul 25, 2023 IoT cybersecurity regulation picks up pace By Inder Dhaliwal The regulatory framework for securing IoT devices is attracting the attention of both UK and EU regulators. In the EU, its Member States...
Jun 27, 2023 In the global race to regulate AI, will the EU get there first? By Issabella Cardu As pressure to regulate AI continues to mount around the world, the European Parliament has approved its negotiating position for the EU...
Jun 12, 2023 Post Capita and Zellis, how do you manage cyber supply chain risk? By Natalie Donovan The recent Capita, MOVEit and Zellis cyber attacks are another reminder of the importance of considering supply chain risk as part of...
Jan 26, 2023 ICO tech report highlights privacy challenges for four key technologies By Natalie Donovan The ICO is encouraging developers to consider privacy at an early stage when implementing new technologies and, in its first annual...
Dec 20, 2022 Government pushes ahead with plans to strengthen UK’s cyber resilience and regulate more IT services By Natalie Donovan Protecting critical services and infrastructure from cyber incidents is a key priority for legislators on both sides of the channel. We...
Nov 29, 2022 EU expands scope of its cyber rules as NIS 2 agreed By Charles MacRae The EU has agreed changes to its cybersecurity rules. On 22 November 2022, the “NIS 2 Directive” received approval from the European...
Oct 25, 2022 Are you on top of your cyber supply chain risk? If not, new NCSC guidance may help By Natalie Donovan Is your organisation one of the mere 7% of businesses who review the cyber risks posed by your wider supply chain, or one of the 93% that...
Sep 23, 2022 Exclusive jurisdiction clauses and software licences – High Court reminds us that they’re not so simple By Richard Barker When you are ‘buying’ (in this case, licensing) software, you want to know the risks associated with the deal. One key risk is where you...
Sep 08, 2022 Organisations could face new security requirements under ‘cyber duty to protect’ plans? By Natalie Donovan Government call for information suggests new security requirements could be introduced to protect online accounts and user data from...
Jul 20, 2022 Is the NIS regime working? Changes proposed in new review By Slaughter and May This month, the Government published its second post-implementation review of the 2018 Network and Information Systems (‘NIS’)...
May 26, 2022 Do you know how to manage your cyber supply chain risk? By Natalie Donovan NCSC joins international partners to publish new supply chain guidance. As organisations continue to shore up their own cyber defences,...
Feb 10, 2022 Tackling cyber supply chain risk: new laws proposed By Natalie Donovan From reports of cyber attacks at the UK’s Foreign office and European oil facilities to crisp shortages caused by a ransomware attack at...
Jan 28, 2022 General Court annuls European Commission’s 2009 €1.06 billion fine on Intel By Katie Hudson Thirteen years after the European Commission imposed a EUR 1.06bn fine on US chipmaker Intel on charges of abusing its market dominance...
Jan 14, 2022 NCSC helps boards tackle the Log4j vulnerability - the 'most severe computer vulnerability in years' By Natalie Donovan The National Cyber Security Centre (NCSC) has reminded boards of their role in mitigating cyber risk in their organisations, publishing a...
Jan 14, 2022 New AI standards hub launched in UK By Natalie Donovan This week the government launched a new AI standards initiative as part of its AI strategy (see my blog from last September for...