United Kingdom: Data Protection

Subscribe

Privacy law and privacy regulation thought leadership, articles, podcasts, videos and webinars from expert sources across the legal world. Explore insights covering topics including GDPR, data protection, data privacy, and privacy protection.

Leaks, Breaches, And Rogue Insiders: Why Internal Wrongdoing Is Rising And Detection Isn’t Keeping Up

The most damaging incidents inside large organizations rarely begin with dramatic misconduct. More often, they start with subtle deviations from normal behavior: a misplaced file, late-night access, a quiet grudge, or a moment of opportunity.

United Kingdom Privacy

KI

K2 Integrity

Data Protection Complaints: Are You Ready?

From 19 June 2026, all organisations that act as data controllers must have a formal process in place for individuals to raise data protection complaints directly with them

United Kingdom Privacy

WB

Womble Bond Dickinson

Age Assurance In 2026: What Do Digital Businesses Operating In The UK And EU Need To Know?

The regulatory landscape for age assurance is changing more rapidly than ever, with legislators and regulators globally intensifying efforts to protect children online.

United Kingdom Privacy

LS

Lewis Silkin

AI And Data Privacy In Investigations: What Legal Teams Need To Know

Internal investigations increasingly rely on AI tools to process large volumes of personal data, but this efficiency comes with significant data protection risks under UK GDPR.

United Kingdom Privacy

W

WilmerHale

UK Pensions: What’s New This Week? April 20, 2026

United Kingdom Employment

AO

A&O Shearman

Using Registered Trade Marks As A Means To Combat Deepfakes

United Kingdom IP

M

Murgitroyd

Ofcom Investigates Online Forums Hosting Image-based Sexual Abuse

United Kingdom Criminal

LS

Lewis Silkin

Behind The Front Door: When Property Data Becomes Personal Data

United Kingdom Privacy

GW

Gowling WLG

When Does A First DSAR Become Excessive: Implications Of The CJEU's Brillen Rottler Decision

United Kingdom Privacy

KL

Herbert Smith Freehills Kramer LLP

ASA And CAP Annual Report 2025: Smarter, Proactive Advertising Regulation

United Kingdom Media & IT

GA

Global Advertising Lawyers Alliance (GALA)

UK Pensions: What’s New This Week? April 13, 2026

United Kingdom Employment

AO

A&O Shearman

The DRCF's Quiet Warning To Businesses On Agentic AI

United Kingdom Technology

LS

Lewis Silkin

What U.S. Startups Need To Know About The UK & EU GDPR But Probably Don’t (Video)

United Kingdom Privacy

AP

Arnold & Porter

UK Legal Update - Spring 2026

United Kingdom Commercial

TS

Travers Smith LLP

Nottingham Attacks Inquiry Begins (Video)

United Kingdom Litigation

RB

Rothera Bray

Divorce And Privacy: How Can I Protect My Personal Information? (Video)

United Kingdom Privacy

WL

Withers LLP

Tech 10 – NRF Reflections: The Future Of Retail Technology (Video)

United Kingdom Technology

A

AlixPartners

Hotels Unpacked - A Glimpse Into The World Of Luxury With Rocco Forte Hotels (Podcast)

United Kingdom Finance

M

Macfarlanes LLP

Employment Law Update: What's Changing From 6 April 2026?

United Kingdom Employment

RB

Rothera Bray

Beyond Bossware: The Rise Of ‘wellbeing-monitoring’ In The Workplace

A leading global investment bank has begun piloting a system that compares junior bankers’ self-reported working hours with computer-generated estimates based on their digital activity.

United Kingdom Privacy

LS

Lewis Silkin

UK Legal Update - Spring 2026

As EU-based businesses will be aware, the European Commission unveiled a digital simplification package in November 2025 proposing significant changes to the EU AI Act, the GDPR, e-privacy and cyber incident reporting rules. The aim is to simplify and soften rules that are perceived to hinder the EU's digital competitiveness and act as a brake on innovation.

United Kingdom Commercial

TS

Travers Smith LLP

The ICO Rates The Top Ten Most Popular Mobile Games! (On The Protection Of Children's Privacy)

On 1 December 2025, the Information Commissioner's Office (ICO) announced a monitoring programme that targets 10 popular mobile games played by children in the UK.

United Kingdom Privacy

BS

BCL Solicitors LLP

Data Protection Complaints Procedure – Key Actions For Pension Scheme Trustees

From 19 June 2026, all pension scheme trustees will be required, as data controllers, to have a process in place for the handling of data protection related complaints.

United Kingdom Privacy

WB

Womble Bond Dickinson

What The UK's Data Protection Reforms Mean For Pension Trustees

United Kingdom Privacy

TS

Travers Smith LLP

AI Transcription—opportunities, Risks And Mitigants

United Kingdom Technology

AO

A&O Shearman

Another Milestone In Drive For Increased Age Assurance Reached As Ofcom And ICO Issue Joint Statement

United Kingdom Privacy

LS

Lewis Silkin

Weaponising Access Rights: CJEU Confirms Abusive Access Requests May Be Refused

United Kingdom Privacy

GP

Goodwin Procter LLP

United Kingdom Proposes Changes In The Cyber Security And Resilience Bill To The NIS Regulations, With Key Differences To NIS2

United Kingdom Technology

MB

Mayer Brown

UK Government Opens Consultation On Digital ID Scheme

United Kingdom Immigration

LS

Lewis Silkin

DRCF Responsible AI Forum 2026: What Businesses Need To Know (Part 2)

United Kingdom Technology

LS

Lewis Silkin

UK Court Rules Duty To Safeguard Personal Data Extends To Hacked Pseudonymised Data In DSG Retail Ltd V The Information Commissioner

United Kingdom Privacy

CM

Crowell & Moring LLP

Everyone is a lawyer now - how to get the most out of AI

United Kingdom Technology

LS

Lewis Silkin

February Data Wrap: A Snapshot Of Key Regulatory Developments

United Kingdom Privacy

KL

Herbert Smith Freehills Kramer LLP

DRCF Responsible AI Forum 2026: What Businesses Need To Know (Part 2)

Somewhere on a leafy British road the above sign sits in quiet absurdity. Drivers read it, ponder its existence, and accelerate away none the wiser. It's a sign about a sign that isn't in use....

United Kingdom Technology

LS

Lewis Silkin

UK Court Rules Duty To Safeguard Personal Data Extends To Hacked Pseudonymised Data In DSG Retail Ltd V The Information Commissioner

In a significant ruling on the application of data protection law in the United Kingdom, on 19 February 2026...

United Kingdom Privacy

CM

Crowell & Moring LLP

Everyone is a lawyer now - how to get the most out of AI

On 18 March 2026, we marked the publication of our Commercial, Technology and Regulatory Annual Handbook 2026 with a panel event in Manchester attended by in-house lawyers...

United Kingdom Technology

LS

Lewis Silkin

February Data Wrap: A Snapshot Of Key Regulatory Developments

Whilst the Data (Use and Access) Act 2025 ("DUA Act 2025") received Royal Assent back in June 2025, the most significant changes under the UK's long-awaited data protection...

United Kingdom Privacy

KL

Herbert Smith Freehills Kramer LLP

Getting Ready For The Complaints Regime Under The Data (Use And Access) Act 2025

United Kingdom Privacy

KM

Katten Muchin Rosenman LLP

The UK’s ICO Publishes Its First Report On Agentic AI, Identifying Risks And Opportunities

The UK Information Commissioner’s Office (ICO) published its Tech Futures: Agentic AI report on Jan. 8, 2026, offering its first analysis of AI agents. The report underscores that agentic AI introduces fundamentally new data protection challenges and that agentic capabilities magnify existing risks from generative AI.

United Kingdom Technology

BL

Borden Ladner Gervais LLP

Tech Companies Operating In The UK Told To Make Sure Their Age Assurance Works

In a two-pronged approach covering online safety and data protection laws, both Ofcom and the ICO have written to major tech platforms to ask them to enforce their minimum age rules with highly effective age checks.

United Kingdom Privacy

LS

Lewis Silkin

Cyber Resilience In Financial Services: Navigating Rising Risks And The 2026 Regulatory Shift

UK financial regulators are signaling a fundamental shift in cyber-security oversight as 2026 marks the convergence of new operational incident reporting requirements, critical third-party provider designations, and the Network and Information Systems Bill. With cyber attacks increasing in frequency and over 40% involving third-party providers, firms face heightened expectations to demonstrate not just documented controls, but credible...

United Kingdom Finance

BC

Bryan Cave Leighton Paisner

The European Commission's Digital Package: What It Means For Cybersecurity Compliance

In November 2025, the European Commission introduced a digital omnibus package with the aim of simplifying cybersecurity compliance processes for European companies.

European Union Technology

N

NAVEX

Court Confirms Broad Data Security Duty: Controllers Must Protect Against Third-party "Jigsaw" Identification

United Kingdom Privacy

GW

Gowling WLG

Data Centres And The NSIP Regime: A Significant Shift In The Consenting Landscape

United Kingdom Real Estate

WB

Womble Bond Dickinson

Transactional Integrity: AI Agents For Payments Podcast

United Kingdom Technology

AO

A&O Shearman

Divorce And Privacy: How Can I Protect My Personal Information? (Video)

United Kingdom Privacy

WL

Withers LLP

What The New "Soft Opt‑in" Means For Your Charity's Marketing

United Kingdom Commercial

WB

Womble Bond Dickinson

ICO Continues To Show Teeth When It Comes To Protecting Children's Data - Will This Be The Theme Of 2026?

United Kingdom Privacy

LS

Lewis Silkin

Key Provisions Of The Data (Use And Access) Act 2025 Are Now In Force – What's Coming Next?

United Kingdom Employment

LM

Littler Mendelson

X Marks The Spot: ICO And Ofcom Investigate Grok

United Kingdom Technology

M

Macfarlanes LLP

Get Ready For The New Data Protection Complaints Handling Rules

United Kingdom Commercial

TS

Travers Smith LLP

The Data Use and Access Act 2025: A new 'right to complain'

United Kingdom Privacy

WL

Withers LLP

Preparing For The Data (Use And Access) Act 2025: Upcoming Complaints Procedure Requirement

United Kingdom Privacy

MB

Mayer Brown

Handling Data Protection Complaints Under The DUAA: Key Takeaways From ICO Guidance

United Kingdom Privacy

LS

Lewis Silkin

ICO Publishes Guidance On How To Deal With Data Protection Complaints

United Kingdom Privacy

AP

Arnold & Porter

Key Data Protection Changes Under The Data (Use And Access) Act 2025 Comes Into Force On February 5 2026

United Kingdom Privacy

AO

A&O Shearman

Data, Privacy And Cyber In The UK And EU: Ten Watchouts For 2026

European Union Technology

IL

Ius Laboris

See more

Latest Videos

See more

Divorce And Privacy: How Can I Protect My Personal Information? (Video)

WL

Withers LLP

ThinkHouse TUPE Club: Key Questions On A Service Provision Change (Video)

GW

Gowling WLG

Unique Product Identifiers – ANNA DSB & the UPI

TRAction

Data Privacy: How The EU, The UK And India Compare (Video)

IL

Ius Laboris

What Rights Do Data Subjects Have Under The AI Act And Are They Different From The GDPR? (Video)

F

Fieldfisher

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More