Focusing on the latest digital trends and risks and developments in the field of data protection, privacy, information and cyber law.

What Might The BA And Marriott Fines Tell Us About The ICO’s Approach To Penalties?

David Smith

Few will have been surprised that, when the ICO eventually published details of the BA and Marriott fines, the final penalties were very much lower than the £183+ million and £99+ million proposed in the original notices of intent. Many may nevertheless have been surprised at just how much lower, coming in at £20 million Read More

What Are The Prospects for UK Adequacy Now?

David Smith

EU officials were reported recently in the media as saying that there are two key issues standing in the way of an adequacy finding for the UK. These are the use of data by the UK intelligence services and the potential “onward flow” of data from the UK to countries such as the US.  Apparently Read More

UK ICO Updates Approach to Data Protection Regulation During Coronavirus Pandemic

David Smith

Back in April the ICO set out how it would be adjusting its regulatory approach during the coronavirus public health emergency. As well as committing to support organisations, particularly those at the frontline in providing healthcare and other vital services, through fast tracked advice and guidance the ICO indicated that, in handling the public’s complaints, Read More

Fintech M&A: The future of dealmaking post Covid-19 coronavirus

William Samengo-Turner

After a run of high-value deals at the start of the year, fintech M&A has dramatically slowed. What will dealmaking look like in the future? For investors in the fintech market, the contrast could not have been more stark. In the first quarter of 2020, financial institutions, financial sponsors and mature fintech companies generated a Read More

China: Technology Export Control and Beyond

Emma Keeling

As technology and IP have increasingly become the focal point of tensions between the US and China, the Chinese Government announced its amendments to the Catalogue of Technologies Prohibited or Restricted from Export (the Catalogue) on 28 August 2020. It is worth noting that China has long had a technology export control regime in place. Read More

Schrems II – The CJEU Leaves Us With More Questions Than Answers

David Smith

Immediately following the landmark decision of the CJEU in Schrems II on 16 July my colleague Nigel Parker discussed, in his blog, the decision and its likely implications for international data transfers. More recently Jane Finlayson-Brown has discussed The European Data Protection Board’s (EDPB) FAQs on the judgment. I am now adding some further thoughts Read More