Cyber and Data Security Notes

A clearer roadmap to recovery: the roles of NCSC and ICO clarified at CYBERUK

The National Cyber Security Centre (NCSC) and the Information Commission Office (ICO) have clarified their roles in relation to breaches of …

Marriott/Starwood Data Breach: ICO intention to issue another big £99 million ‘mega fine’

British Airways Data Breach: ICO announces potential £183 million ‘mega fine’

The ICO has published a notice of its intent to fine British Airways £183.39 million for its 2018 data breach where the personal data of 500,000 …

Zero-day attacks, red teaming and other cyber concerns

There are a myriad cybersecurity issues that legal departments must concern themselves with, with proactivity being key to the safety of a business’s …

Guideline on cyber security for Hong Kong authorised insurers will come into effect on 1 January 2020

In June 2019, the Hong Kong Insurance Authority published its Guideline on Cybersecurity (GL 20) for authorised insurers, which will take effect on 1 …

EU Regulation on cyber security now in force

US Senate confirms Permanent Ombudsman for the EU-US Privacy Shield Agreement

On 20 June 2019, the US Senate confirmed Keith Krach as the Under Secretary of State for Economic Growth, Energy, and the Environment. As part of that …

IOSCO publishes final report of Cyber Task Force

On 18 June 2019, the International Organisation of Securities Commissions ("IOSCO") published the final report of its Cyber Task Force ("CTF"). The …

US Department of Defense recognises cyber security as allowable contractor cost

Reflecting recognition of the critical nature of cybersecurity concerns and precautions, the US Department of Defense ("DoD") has announced that certain …

UK Government publishes new cyber security guidance for businesses

The cyber security guidance for business published jointly by the Department for Digital, Culture, Media & Sport, the Cabinet Office …

US FTC continues Facebook privacy and competition probes

The US FTC continues its investigations of Facebook relating to both privacy and competition issues. The FTC has undertaken several investigations of …

California Consumer Privacy Act Regulatory process proceeds and legislative amendments are proposed

In our last report on the California Consumer Privacy Act ("CCPA"), which expands the rights that California residents have with respect to their …