The Encryption debate is far from ‘going dark’

Shortly after the release of the communiqué from the most recent ministerial meetings of the ‘Five Countries’ security alliance — Australia, Canada, New Zealand, the UK and the US — at the end of July, we warned that the issue of the use of, and access to, encrypted services and technologies ‘remains front of mind for … Read more

Brexit planning full steam ahead? Spotlight on telecoms and media

As the 31 October 2019 deadline for the UK to leave the EU draws ever closer, uncertainty continues to remain as to whether any such departure will be accompanied by a “deal” (i.e. a version of the Withdrawal Agreement setting out arrangements for the UK’s withdrawal) or “no-deal”. Or indeed whether the October exit date … Read more

UK Government issues call for Views on post-Brexit Cyber Security Certification

Last week, the Department for Digital, Culture, Media & Sport issued a Call for Views on the certification scheme currently anticipated by Regulation (EU) 2019/881 (the Cybersecurity Act) after Brexit. The closing date for responses has been extended to 15 October 2019. In the issued document, the UK Government proposes to maintain “a close relationship with the EU … Read more

Who is liable when a connected and autonomous vehicle crashes?

In March 2018, a pedestrian in Arizona was struck by a self-driving Uber vehicle during a vehicle test. An Arizona prosecutor recently found Uber not criminally liable for the incident, though little detail was given for the decision (see our blog post, here). Once CAVs are on the roads and self-driving, liability is expected to … Read more

EU Council rejects European Commission’s Wi-Fi plans for connected and autonomous vehicles

In the latest development in the EU’s long-running debate on the preferred communication technology standard for connected and autonomous vehicles (CAVs), the Council of the EU has rejected the Commission’s proposed legislation favouring Wi-Fi technology (the “Regulation“). Twenty one (of twenty eight) Member States voted against the Regulation; a result seen as victory for proponents … Read more

A Clearer Roadmap to Recovery: the roles of NCSC and ICO clarified at CYBERUK

The National Cyber Security Centre (NCSC) and the Information Commission Office (ICO) have clarified their roles in relation to breaches of cyber security.  NCSC manages cyber incidents at a national level to prevent harm being caused to both victims and the UK overall. It helps manage the response at a governmental level and seeks to ensure that lessons are learned to help deter future attacks. The ICO is the independent regulator for enforcing and monitoring data protection legislation and the competent authority for Digital Service Providers under the Network and Information Systems (NIS) Directive. The ICO is the first port of call for organisations who have suffered a breach of cyber security. Read more

OPEN INNOVATION: COLLABORATE TO INNOVATE

Innovation that happens in an “open” collaborative context – either internally or with external partners – can provide faster, better, more holistic results to accelerate innovation and improve competitive advantage, concludes our new report: Open Innovation: Collaborate to Innovate, based on “innovation” interviews with our clients. In order to get, and stay, ahead in the market, businesses in … Read more

FCA calls for input on proposed Cross-sector Sandbox by 30 August 2019

New technologies, such as artificial intelligence (“AI“) and distributed ledger technology (“DLT“), continue to have a significant impact on the way in which firms, customers and regulators interact.  Firms introducing innovative business models whose products or services fall under the jurisdiction of different sectoral regulators can find themselves having to address competing regulatory expectations. As … Read more

EU adopts new sanctions framework targeting external cyber-attacks

On 17 May, the EU adopted legislation which will enable it to impose sanctions against persons and entities who engage in cyber-attacks against the EU and its member states. The sanctions will be designed “to deter and respond to cyber-attacks with a significant effect which constitute an external threat to the EU and its Member … Read more