Related insights: Data, Privacy and FOI
Final reminder: 21 March 2024 deadline looms for moving away from the old EU standard contractual clauses
15 Jan 2024
In Autumn 2022 we reported that 22 September 2022 marked the date from which you could no longer use the old EU Standard Contractual Clauses adopted in 2001 and 2010 by the European Commission (the Old EU SCCs) for new contracts transferring personal data outside of the UK under the UK GDPR.
For contracts entered into before 21 September 2022, you could continue to use the Old EU SCCs for an additional period of time before needing to change to an alternative transfer mechanism. This effectively gave organisations an implementation window during which time they could identify any transfers taking place under the Old EU SCCs and then assess those transfers to implement an alternative mechanism.
For contracts entered into before 21 September 2022, you could continue to use the Old EU SCCs for an additional period of time before needing to change to an alternative transfer mechanism. This effectively gave organisations an implementation window during which time they could identify any transfers taking place under the Old EU SCCs and then assess those transfers to implement an alternative mechanism.
Can Artificial Intelligence assist with cybersecurity management?
05 Jan 2024
AI has great capability to both Harm and to Protect in a cybersecurity context. As with the development of any new technology, the benefits provided through correct and successful use of AI are inevitably coupled with the need to safeguard information and to prevent misuse.
Equifax: a lesson in intra group controls
20 Oct 2023
Back in 2017, significant UK customer data that Equifax Ltd held on the servers of its US parent, and for which it acted as a data controller, was compromised in a cybersecurity incident. FCA took the unprecedented step of announcing at the time that it would be carrying out an investigation. Almost exactly six years later, it published its final notice on the matter – imposing a fine of over £11 million.
Cross-border transfers at the ICO's Data Protection Practitioners’ conference
18 Oct 2023
US data transfers are in a state of change following the EU-US Data Privacy Framework, which came into force on 11 July 2023, and the UK-US data bridge, which will come into effect on 12 October 2023. You can read more about this in our recent articles here and here. We have set out below some of the key takeaways and focus areas of the ICO in respect of international transfers at the DPPC.
Data bridge over the Atlantic
22 Sep 2023
On 21 September 2023, the UK Secretary of State for Science, Innovation and Technology laid before Parliament regulations that will operate to significantly simplify the process for UK businesses to transfer personal data to the United States.
Womble Bond Dickinson advises Keswick on pre-pack deal acquisition
31 Jul 2023
International law firm Womble Bond Dickinson has advised Keswick Flooring, one the UK's leading online direct to consumer hard flooring brands, and a subsidiary of Nestware Holdings, the sister company of household brand Carpetright, on its acquisition of Coventry-headquartered UK Flooring Direct (UKFD).
UK-US data transfers: what to expect next - the UK perspective
31 Jul 2023
The EU has approved the EU-US Data Privacy Framework, meaning that businesses which certify under the EU-US Data Privacy Framework have a valid transfer mechanism to share personal data from EEA countries to the US. This approval is relevant for UK businesses that operate internationally and are involved with the transfer of personal data from the EU and to other UK businesses to the extent any data transfers they are involved with are subject to the EU GDPR.
The rise of generative AI in software development: are AI-assisted software development tools inadvertently creating imitations of copyleft-licensed code?
28 Jul 2023
The use of generative AI in software development is on the rise but not widely understood. Danny Jeffrey and Paul Armstrong from Womble Bond Dickinson explains how these new tools are being used, as well as some of the risks associated with their application.
Growing Global: 2023 global data privacy law survey report
18 Jul 2023
Against this backdrop, Womble Bond Dickinson’s annual survey report analyses the fast-evolving global data privacy law landscape and, for the first time, includes over 200 respondents from both the US and UK.
Insights
Stay informed
