Cyber Risk Legal Update - January 2016
Cyber Risk legal update | January 2016
Newsletter | Cyber Insurance, Privacy & Data Security
It should not be forgotten that the European data protection reform package contained two pieces of legislation, the GDPR and the Data Protection Directive for Police and Judicial Co-operation on Criminal Matters (the Directive). The Directive contains harmonised laws intended to improve protection for individuals affected by crime and law enforcement, while enhancing cross-border police co-operation to better combat crime and terrorism.
In response to these developments the ICO has promised to do all it can to facilitate the implementation of the new regulations. The ICO will be providing regular advice and guidance on the GDPR prioritising new aspects of the GDPR, acknowledging that much of the text is already familiar territory.
Clearly changes, some of those significant, will need to be made in order to comply with the GDPR when it comes into force in 2018. Now is the time for organisations to promptly commence, GDPR implementation programmes.
DAC Beachcroft will be undertaking a series of sector specific workshops and publications over the coming months to help guide clients through these changes. Further details about when these will be taking place will be made available shortly.
For DAC Beachcroft privacy updates, please follow us on Twitter at @DACBprivacy.
Click the below headings to read more on each of the developments...
EU Data Protection Regulation Developments
Updates from around the World...
Rhiannon Webster, Partner
+44 (0) 20 7894 6577
|Hans Allnutt, Partner
+44(0)20 7894 6925
|Rhiannon Webster, Partner
+44(0)20 7894 6577
|Patrick Hill, Partner
+44(0)20 7894 6930
|Helen Nuttall, Solicitor
+44(0)20 7894 6937
You might also like ...
September 2014 update
Cyber security is about risk reduction, not risk prevention. No system can ever be 100% secure, particularly when constrained by financial resources and the exposure to human error or behaviour.
The law governing data security is similarly not absolute. For example, the Data Protection Act 1998 ("DPA") demands that an organisation has "appropriate" technical and organisational security measures.