The Supreme Court in England has two issues to consider in the appeal which opens today. First, should the company be held to be vicariously liable for the acts of its employee in this case? It concerns, after all, a rogue employee, who took payroll data with which he was entrusted home on a … Read more
The National Cyber Security Centre (“NCSC“) emphasised the need for security by design at the launch of its Annual Review 2019 in London this morning. Many legacy systems are “accidentally insecure”, noted NCSC CEO Ciaran Martin, but now we can see the major trends developing and plan strategically. The Secure by Design Code of Conduct … Read more
As we previously reported, the EU reached political agreement on the new EU Cybersecurity Act (the “Act“) in March 2019. The Act has now been published in the Official Journal and the majority of its provisions came into effect on 27 June 2019. Read more
On 20 June 2019, the US Senate confirmed Keith Krach as the Under Secretary of State for Economic Growth, Energy, and the Environment. As part of that role, Krach will serve as the permanent Ombudsman for the EU-US Privacy Shield agreement. The EU-US Privacy Shield is a framework that regulates transatlantic exchanges of personal data … Read more
On 17 May, the EU adopted legislation which will enable it to impose sanctions against persons and entities who engage in cyber-attacks against the EU and its member states. The sanctions will be designed βto deter and respond to cyber-attacks with a significant effect which constitute an external threat to the EU and its Member … Read more
On 8 March 2018, the European Commission published its FinTech Action Plan with the aim of encouraging the European Supervisory Authorities ("ESAs") to recommend to the Commission improvements that can be made to the existing supervisory practices across financial sectors around ICT security and governance requirements. Read more
