Category: Information security

China Cybersecurity and Data Protection: Monthly Update – November 2019

19 November, 2019

In this bulletin we summarise recent updates relating to cybersecurity and data protection in China to keep you updated on developments. We focus on three areas: regulatory developments, enforcement developments, and industry developments. For further detail, please see our update here. Read more

Update: WM Morrisons Supermarket plc (Appellants) v Various Claimants (Respondents)

18 November, 2019

Case ID: UKSC 2018/0213 Hearing Date 6 and 7 November 2019 Justices: Lady Hale, Lord Reed, Lord Kerr, Lord Hodge, Lord Lloyd-Jones Facts (taken from Supreme Court Case Summary) In November 2013, an employee of the appellant, Mr Skelton, downloaded payroll data he was entrusted with at work onto a personal USB stick and took … Read more

China publishes first law on encryption

13 November, 2019

The new Encryption Law, China’s first national law on encryption, was published on 26 October 2019 and will come into force on 1 January 2020. It broadens the current regulatory scope of encryption, liberalises commercial encryption at national-law level and proposes a market-oriented regulatory regime for the commercial encryption industry. Foreign and foreign-invested enterprises are given … Read more

Game changer for cyber/data breach cases opens in Supreme Court: WM Morrisons Supermarkets Plc v Various Claimants

06 November, 2019

The Supreme Court in England has two issues to consider in the appeal which opens today. First, should the company be held to be vicariously liable for the acts of its employee in this case? It concerns, after all, a rogue employee, who took payroll data with which he was entrusted home on a … Read more

NCSC advocates Security by Design at Launch of Third Annual Review today in London

23 October, 2019

The National Cyber Security Centre (“NCSC“) emphasised the need for security by design at the launch of its Annual Review 2019 in London this morning. Many legacy systems are “accidentally insecure”, noted NCSC CEO Ciaran Martin, but now we can see the major trends developing and plan strategically. The Secure by Design Code of Conduct … Read more

Zero-day attacks, red teaming and other cyber concerns

02 July, 2019

There are a myriad cybersecurity issues that legal departments must concern themselves with, with proactivity being key to the safety of a business’s information. Speaking recently on a live webcast hosted by Lawyers Weekly — Security breaches: is your firm protected? — Telstra security consultant Keith Kerr said zero-day attacks refer to instances where legal … Read more

US FTC continues Facebook privacy and competition probes

10 June, 2019

The US FTC continues its investigations of Facebook relating to both privacy and competition issues. The FTC has undertaken several investigations of Facebook’s privacy practices, and has notably entered into a consent decree in 2012 requiring Facebook to gain more explicit consent from users before sharing their data. Over the past year, in the wake … Read more

Cyber and Data Security notes

Filters