Latham.London

Tag Archives: data privacy

Financial Institutions and the Cloud: How to Navigate an Evolving Regulatory Landscape

Insights from Latham’s flagship event: Managing the risk and promise of digitisation in financial services. By Fiona Maclean, Stuart Davis, and Alistair Wye In a bid to keep pace with rapid advances in cloud adoption across financial services, regulators have published a raft of new guidance in the past year. Most recently, the European Insurance … Continue Reading

Big-Ticket Fines and Veil-Piercing Cases Raise Portfolio Company Liability Risks for PE Parents

How can private equity firms identify and mitigate inherited liability risk from vulnerable portfolio companies? By Tom Evans, Gail Crawford, Fiona Maclean, David Walker, Katie Peek, Catherine Campbell, and Amy Smyth Ongoing big ticket regulatory fines coupled with high profile corporate veil cases indicate that private equity deal teams must remain alert to the risk of … Continue Reading

GDPR & PSD2: Squaring the Circle

GDPR and PSD2 are two legal initialisms that have both generated a great deal of press coverage in recent months, but they are seldom considered together. By Christian F. McDermott, Calum Docherty and Brett Carr There were around 122 billion non-cash payments in the European Union (EU) in 2016, with card payments accounting for 49% … Continue Reading

UK Government sets out its preferred post-Brexit landscape for data protection

By Gail Crawford and Calum Docherty Her Majesty’s Government last week published a position paper outlining its preferred post-Brexit landscape for data protection. The high-level takeaways are hardly surprising: the government stresses that it intends to “remain a global leader on data protection” and, as we already know, the UK’s Data Protection Bill, announced in … Continue Reading

Queen Announces New UK Data Protection Bill

By  Gail Crawford and Danielle van der Merwe Following the commencement of the Brexit negotiations earlier this week, the Queen announced in her speech on Wednesday a new law that will “ensure the United Kingdom retains its world-class regime protecting personal data”. This bill will replace the current Data Protection Act 1998 in the UK. One of … Continue Reading

Banking on IT

By Christian McDermott, Calum Docherty, Stuart Davis and Anne Mainwaring The European Banking Authority (EBA) has published its consultation document on security measures for operational and security risks under the revised Payment Services Directive (PSD2). The WannaCry ransomware attack that swept across the globe last week revealed the destructive and indiscriminate nature of cyber threats. It attacked … Continue Reading

Latest Ransomware Attack: Is Your Arbitration Cyber-ready?

By Sophie Lamb and Samuel Pape The latest global ‘WannaCry’ attack has again brought to the fore the need for sovereign and private parties to have in place adequate cyber-security measures and response plans to deal with cyber-attacks, including in the context of international arbitration.  As attackers are becoming increasingly resourceful in their ability to … Continue Reading

Senior MP Calls for Regulatory Crackdown on Banks’ IT Systems: 3 Things You Can do to Prepare

By Gail Crawford and Christian McDermott The recent cyberattack on Tesco Bank’s IT systems has prompted Rt Hon. Andrew Tyrie MP, Chairman of the Treasury Committee, to call on regulators to take action against vulnerable bank IT systems: “Making sure that banks improve their IT systems, and their resilience to cybercrime, is also a responsibility … Continue Reading

Mitigating Cybersecurity Risks

By Jennifer C. Archie, Gail Crawford, Andrew Moyle, Serrin A. Turner, and Brian Meenagh Hacking of organisations’ systems is becoming increasingly commonplace, even with advancements in security practices. To mitigate risk, a company must have an enterprise-level, cross-functional incident response plan that is rehearsed and practiced. In the event of an incident a company with … Continue Reading

Businesses Have 2 Years to Comply with Europe’s New Privacy Regime

By Gail Crawford and Lore Leitner, Today, after more than four years of debate, the General Data Protection Regulation (GDPR, or the Regulation) enters into force. The GDPR will introduce a rigorous, far-reaching privacy framework for businesses that operate, target customers or monitor individuals in the EU. The Regulation sets out a suite of new … Continue Reading

Proposal of EU-US Privacy Shield Leaves Businesses in State of Uncertainty

By Ulrich Wuermeling, Gail Crawford and Jennifer Archie Earlier this week, the European Commission announced that a “political” agreement has been reached on a new framework for data flows from the EU to the US. The announcement highlights a few changes from the old Safe Harbor regime, such as more direct and active oversight by US … Continue Reading
LexBlog