The following Information Law practice note provides comprehensive and up to date legal information covering:
Coronavirus (COVID-19): The Information Commissioner’s Office (ICO) has stated that it recognises the strain placed on some organisations by the coronavirus pandemic. For guidance on the ICO's advice to organisations and approach to enforcement in connection with the pandemic (including in relation to the reporting of personal data breaches), see Practice Note: The Information Commissioner’s Office (ICO)—Impact of coronavirus (COVID-19) on the ICO’s activities and approach to enforcement.
This Practice Note is intended to provide an overview of the laws and regulations relating to cybersecurity in the UK, with a particular focus on:
the United Kingdom General Data Protection Regulation, Retained Regulation (EU) 2016/679 (UK GDPR), which was heavily based on equivalent EU laws (the EU GDPR)
the Network and Information Systems Regulations 2018 (NIS Regulations), SI 2018/506 which originally implemented the provisions of the EU’s Network and Information Systems Directive (NIS Directive), Directive (EU) 2016/1148 in the UK (when the UK was an EU Member State)
the Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR 2003), SI 2003/2426 which originally implemented the EU’s ePrivacy Directive, Directive 2002/58/EC in the UK (when the UK was an EU Member State), and
the Financial Services and Markets Act 2000 (FSMA 2000) and the Financial Conduct Authority (FCA) Handbook
These laws and regulations are discussed in the context of:
the entities that are required to
Free trials are only available to individuals based in the UK
Complete all the fields above to proceed to the next step.
**Trials are provided to all LexisPSL and LexisLibrary content, excluding Practice Compliance, Practice Management and Risk and Compliance, subscription packages are tailored to your specific needs. To discuss trialling these LexisPSL services please email customer service via our online form. Free trials are only available to individuals based in the UK. We may terminate this trial at any time or decide not to give a trial, for any reason. Trial includes one question to LexisAsk during the length of the trial.
To view the latest version of this document and thousands of others like it, sign-in to LexisPSL or register for a free trial.
Existing user? Sign-in
Take a free trial
Take a free trial
Parliamentary committeesIP COMPLETION DAY: 11pm (GMT) on 31 December 2020 marks the end of the Brexit transition/implementation period entered into following the UK’s withdrawal from the EU. At this point in time (referred to in UK law as ‘IP completion day’), key transitional arrangements come to
Derivative claim—what it is and when to use itA guide to specific terminology used in this Practice Note is provided—see below.What is a derivative claim?A derivative claim (or derivative action) is a claim brought or continued by a shareholder on behalf of the company in relation to a breach of
Pre-trial and case management hearings in the Crown CourtCoronavirus (COVID-19): This Practice Note contains guidance on subjects impacted by the Coronavirus Act 2020 (CA 2020). CA 2020, among other measures, makes provision for the extended use of live links and audio links in criminal proceedings.
Public inquiry procedureThe procedure by which a public inquiry is conducted will vary significantly from one inquiry to the next. Even for inquiries established under the Inquiries Act 2005 (IA 2005), the associated inquiry rules are not particularly prescriptive as to how they ought to be
0330 161 1234