Lexology

The Pervasive Threat of Business Email Compromise Fraud — and How to Prevent It

USA - February 20 2020 Eliminating the risk of business email compromise (BEC) attacks requires all parties to a financial transaction to pay close attention to email…

Green Shoots for the Commercialisation of Cannabis-Based Medicinal Products in the UK?

European Union, United Kingdom - February 20 2020 Recent legal and regulatory developments pave the way for an increased commercialisation opportunity in cannabis-based medicines, but complex rules…

Data Protection Impacts for UK Businesses Under the UK Withdrawal Agreement

European Union, United Kingdom - February 13 2020 On 29 January 2020, the EU Parliament approved the UK Withdrawal Agreement after the UK Parliament’s ratification via the EU Withdrawal Act 2020 on 23…

RuNet Law Comes Into Force: What Is Next

Russia - November 27 2019 As Russia’s internet law imposes new obligations on technology and infrastructure companies, the Russian government considers subordinate legislation…

Updates: UK ICO Statements on Adtech and Real Time Bidding

United Kingdom - October 28 2019 Despite progress, the online advertising industry and UK regulators are still at odds over the “legitimate interest” definition under the GDPR…

Adtech and Real Time Bidding in the Regulatory Crosshairs

United Kingdom - September 11 2019 UK data protection regulator demands companies in the RTB ecosystem re-evaluate privacy notices, use of personal data, and lawful basis. The UK…

China Issues New Cybersecurity Law to Protect Children

China, USA - September 9 2019 On August 22, 2019, the Cyberspace Administration of China (CAC) released a new data privacy regulation related to children, the Provisions on Cyber…

How Are European Supervisory Authorities Exercising Cooperation and Consistency In Practice?

European Union, Germany - September 2 2019 Recent action by the Hamburg authority may present implications for companies regulated by a lead data protection supervisory authority in Europe. A…

High GDPR Fines: German Data Protection Authority Joins the Club

European Union, France, Germany - August 27 2019 The Berlin Data Protection Authority (Berlin DPA) recently announced that it will issue a multimillion-euro fine for breach of the EU’s General Data…

Navigating Data Processing Ethics for FinTech in Hong Kong

Hong Kong - August 15 2019 If adopted efficiently, the PCPD's Ethical Accountability Framework should help organizations to demonstrate and enhance trust with individuals. In…