2 min read

UK faces "perfect storm" for cyber security: Lessons for boards from ‘Cyber UK’ 

We’ve just returned from Cyber UK (the Government’s flagship cyber security conference) with the clear message that (i) the UK is facing the perfect storm in terms of cyber risk – acute geopolitical uncertainty combined with fast-developing... Read more

Law Commission launches project on consumer class actions regime 

On 20 April 2026, the Law Commission of England and Wales announced a new project to examine whether a class actions regime should be introduced for consumer law claims. The project will have two core objectives: (1) assessing the... Read more

Sky Betting case update: a score draw but an objective answer on marketing consent 

Businesses will welcome the clarity provided by the Court of Appeal in RTM v Bonne Terre Limited that consent to personalised marketing and data processing should be judged objectively rather than by reference to an individual’s state of... Read more

5 things you need to know from the UK’s new Smart Data Strategy 

The UK’s Smart Data Strategy, published on 26 March, sets out the government’s aims and plans for smart data in the UK until 2035. With the necessary primary legislation now in place under the Data (Use and Access) Act 2025 (DUA Act) to support... Read more

Privacy laws are playing their part in online safety regulation 

The debate about keeping people (especially children) safe online keeps making headlines. That debate has accelerated as AI tools that can generate very realistic images and videos have become easy-to-use, widely available products. Legislators... Read more

CMA issues first consumer protection fine under the DMCCA 

The CMA has today ordered AA Driving School and BSM Driving School -- both owned by Automobile Association Developments Limited (AA) -- to refund over £760,000 to more than 80,000 customers and pay a £4.2 million fine for drip pricing. The... Read more

AI Omnibus Update: European Parliament Adopts its Position, including a Ban on ’Nudification’ Apps, Fixed High-Risk Deadline and Simplified Compliance 

The European Parliament (EP) has adopted its position on ‘omnibus’ amendments to the EU AI Act (the Act), addressing a number of contentious issues, including the interaction between the Act and high-risk sectoral law; the looming deadline... Read more

New ICO guidance on ADM: Some relaxations but no free pass 

The ICO has published new draft updated guidance (the draft guidance) for organisations using automated decision making. The draft guidance provides support for organisations in applying the new provisions in Articles 22A-D of the UK GDPR, which... Read more

Cloud “remains central” to CMA’s approach as it announces investigation into Microsoft’s business software ecosystem 

The board of the Competition and Markets Authority (CMA) has announced that the next strategic market status (SMS) investigation under its digital markets powers will be into Microsoft’s business software ecosystem. Many had expected the CMA’s... Read more

UK government opts out of its (previously) preferred proposal on copyright and AI 

Last week, the UK government published its report on copyright and AI (and accompanying economic impact assessment) due under the Data Use and Access Act 2025 (DUA Act). Whilst largely deferring policy decisions until a later date, the report... Read more