Monthly Archives: June 2017

GDPR Compliance: Just under a year to “get your house in order”

The European Commission published its first draft of the EU General Data Protection Regulation (“GDPR“) in January 2012, which set out a comprehensive reform of the current existing EU regime. The reform was designed to give citizens more control and … Continue reading

Leave a Comment

Filed under Data Protection, GDPR, Guidance

Digital Economy Act 2017: The pick ‘n’ mix assortment of provisions receives Royal Assent

The Digital Economy Act (the “Act“) finally received Royal Assent on 27 April 2017 and the final text was published at the beginning of May. First introduced in the House of Commons in July 2016, it has been the subject … Continue reading

Leave a Comment

Filed under Brexit, IT and Technology

ENISA Guidance: Incident Reporting for Digital Service Providers under Cyber Security Directive and the interplay with GDPR

The new report referenced in the article above, follows comprehensive guidelines (the “Guidelines“) published by ENISA in February 2017 for Member States and the European Commission on how to implement incident notification for “digital service providers” (“DSPs“) across the EU, … Continue reading

Leave a Comment

Filed under Cyber Security, Data Protection, GDPR, Guidance

SWIFT publishes mandatory controls for customers

In April 2017, the Society for Worldwide Interbank Financial Telecommunications (SWIFT) published a final version of its Customer Security Controls Framework (the “Framework“), as part of its Customer Security Programme which launched in June 2016. SWIFT is a messaging network … Continue reading

Leave a Comment

Filed under Data Protection, Guidance, IT and Technology

WannaCry: A chance to test systems and raise awareness at a global level?

In one of the most dramatic and widespread cyber attacks to date, on Friday 12 May 2017, a worldwide ransomware attack known as “WannaCrypt” or “WannaCry” began infecting hundreds of thousands of computers in over 150 countries. Starting in the … Continue reading

Leave a Comment

Filed under Cyber Security, Data breach, Data Protection, GDPR, Guidance

UK’s cyber security breaches survey and Verizon’s data breach report suggest progress – but more to do

April 2017 welcomed two insightful publications on the current cyber security landscape. The UK Department for Culture, Media and Sport’s annual Cyber Security Breaches Survey (the “Survey“) and Verizon’s 2017 Data Breach Investigations Report (the “Report“), highlight the changing attitude … Continue reading

Leave a Comment

Filed under Cyber Security, Data breach, Data Protection

EU-US Privacy Shield first annual review announced following a challenging introduction

On 12 July 2016, the European Commission adopted an “adequacy decision” allowing for the transatlantic transfer of personal data from the EU to the US in accordance with the framework and principles of the EU-US Privacy Shield (the “Privacy Shield“). … Continue reading

Leave a Comment

Filed under Brexit, Data Protection, Extra-territoriality

EU Council publishes Progress Report on draft EU ePrivacy Regulation

On 15 May 2017, the Council of the European Union published its progress report (the “Report“) on the first draft of the ePrivacy Regulation (the “Draft Regulation“). The Draft Regulation focuses on the processing of personal data and protection of … Continue reading

Leave a Comment

Filed under Data Protection, ePrivacy, GDPR, National privacy law

New Mirai based malware variants – BrickerBot and a Bitcoin miner

The Mirai malware gained its infamy in October 2016 following its record breaking attack on systems operated by domain name system provider Dyn, using unsecured Internet of Things (“IoT“) enabled “smart” devices (such as CCTV recorders, webcams and routers). It … Continue reading

Leave a Comment

Filed under Cyber Security, Data breach, Data Protection, IT and Technology