Implementation of the new EU standard contractual clauses and obligation to undertake a “TIA” – are you prepared?

The new EU standard contractual clauses (New EU SCCs) came into force on 27 September 2021 for the transfer of personal data from the EEA to third countries under the EU General Data Protection Regulation (EU 2016/679) (GDPR). The European Commission Implementing Decisions ((2001/497/EC) and (2010/87/EU)) which incorporated the previous standard contractual clauses (Old EU SCCs), were repealed on that day. Read more

Supreme Court finds claim for compensation under data protection legislation cannot proceed on “opt-out basis” in high profile Lloyd v Google case

In its judgment this morning the Supreme Court has overturned the Court of Appeal's decision in the high profile Lloyd v Google case, which would have opened the floodgates for class actions for compensation for loss of control of personal data to be brought on behalf of very large numbers of individuals without identifying class members: Lloyd v Google LLC [2021] UKSC 50. Read more

British Airways data class action settles

Following a stay of proceedings to pursue ADR, a number of the claims being pursued as part of the Group Litigation known as the British Airways Data Event Group Litigation (the “BA GLO”) have now been settled. We last updated on the procedural developments in this case in February 2021, when a ruling was given … Read more

Regulators collaborate to oversee digital

UK Regulators will be working more closely together in future to oversee digital markets. Concerns about tech have increased during the pandemic with a sharp increase in cyber crime and the use of data collected during the pandemic causing concern amongst citizens. Data has become a more contentious area. Read more

China Cyber Security and Data Protection Update – April 2021

This e-bulletin summarises the latest developments in cybersecurity and data protection in China. We focus on four areas: regulatory, enforcement, industry and international developments. Our Highlights Whilst the MIIT continues to crack down on mobile applications that infringes individuals’ interests in personal information, four ministries jointly issued the regulations setting out the scope of personal … Read more

China Cyber Security and Data Protection Update – March 2021

This e-bulletin summarises the latest developments in cybersecurity and data protection in China. We focus on four areas: regulatory, enforcement, industry and international developments. Our Highlights The financial regulators have continued to increase their efforts to develop and protect financial data. The People’s Bank of China released new standards on enhancing the data capability of … Read more