Focusing on the latest digital trends and risks and developments in the field of data protection, privacy, information and cyber law.

Cyber and data breaches: the questions that always arise

Lawson Caisley

When a company is the victim of a cyber attack or data breach, a number of crucial questions will have to be answered immediately.  These include: Must we involve the police? Do we need to pursue urgent civil remedies for real protection? Can/should we pay a ransom? When do we report to regulators? When do Read More

Online content and take down requirements- what are the boundaries?

Emma Keeling

De-reference in the EU….. Last month we reported on the Google/CNIL judgment, where the Court of Justice of the European Union (the CJEU) ruled that Google was not necessarily required to de-reference personal data on all its search engine domains in order to comply with the right to be forgotten under the General Data Protection Read More

Rules of the game? Digital political campaigning for the 2019 UK general election

Maeve Hanna

Online campaigning played a pivotal role in the 2016 Brexit referendum and the 2017 UK general election and is set to do the same ahead of voters taking to the polls on 12 December 2019. In anticipation of the election, parties have been busy building their war chests, with the Conservatives raising more than £5 Read More

Data ethics – navigating the spirit of the law

Karishma Brahmbhatt

In a world awash with ever-increasing amounts of data and the technology to process it, data ethics is a topic that has come to the fore. In this podcast, data protection senior associate, Karishma Brahmbhatt, discusses how organisations can create the right data culture and why it is important that they do so. Read More

Cookies consent does not escape the GDPR: CJEU issues decision in the Planet49 case

Catherine di Lorenzo

On 1 October 2019, the Court of Justice of the European Union (CJEU) issued its long-awaited decision in the case Planet49 (Case C 673/17). The decision clarifies the requirements for valid cookie consent under Directive 2002/58 (ePrivacy Directive). In particular, the CJEU rejects pre-ticked boxes as a means of providing valid consent to the use Read More

CJEU rules that the right to be forgotten does not extend beyond the EU’s borders

LaurieAnne Ancenys

The Court of Justice of the European Union (CJEU) has ruled that there is no obligation for a search engine operator to, in case of a request, de-reference personal information of individuals on all of its search engine’s domain name extensions beyond the territory of EU Member States in order to be in compliance with Read More