Get a good background to data protection law and view practical guidance focused on data protection matters for commercial transactions. See also our UK GDPR compliant pro-party clauses for use in commercial agreements.
Protect trade secrets and know-how using the law of confidentiality. Get information and a set of pro-party confidentiality agreements here.
View a range of trackers to enable horizon scanning and monitoring of key developments. The trackers are maintained - making them useful for keeping up-to-date and for business development.
It’s our online practical guidance product for contentious and non-contentious lawyers dealing with Data Protection, Confidential Information, Privacy, Cybersecurity and Freedom of Information issues.
The European Data Protection Board (EDPB) and the EU Anti-Money Laundering Authority (AMLA) have announced that they will jointly develop Guidelines...
The Council of the European Union has adopted its position on a regulation to reinstate temporary rules permitting online service providers to...
This week’s edition of Information Law weekly highlights includes a hand-picked summary of news analysis, updates and new content related to laws...
Data protection authorities from G7 countries convened in Paris on 25–26 June 2026 under the French G7 presidency. The meeting, hosted by the...
The Information Commissioner’s Office (ICO) has published its 'Edtech examined' report following audits conducted in 2024–25 of 28 edtech providers...
ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note considers the rules of dealing with the recognition and...
ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note considers the rules of service as they will apply in the time...
ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note considers the rules for determining the applicable law, also...
ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note considers the rules for determining which court has...
This Practice Note provides a summary of UK law as it applies to the use of deepfakes. A deepfake is a form of audiovisual content that has been...
Policy version: [insert date of this policy][—for previous versions of this policy see here].[Insert website] (our website) is provided by [insert...
This Precedent is drafted in contemplation of arrangements where the parties wish to insert data processing provisions within a Schedule rather than...
Policy version: [insert date of this policy][—for previous versions of this policy see here][Insert name of mobile app] [for [insert operating...
1Consent to terms and conditions—not data processing consent[Insert Terms and conditions you are seeking consent for, eg your T&Cs in relation to the...
STOP PRESS: On 19 June 2025, the Data (Use and Access) Bill received Royal Assent, becoming the Data (Use and Access) Act 2025 (DUAA 2025) and coming...
The UK General Data Protection Regulation (UK GDPR)—NavigatorThis Practice Note serves as a reference guide to the Retained Regulation (EU) 2016/679...
Privacy law—misuse of private informationThe tort of misuse of private information is focused on ‘the protection of human autonomy and dignity—the...
Confidentiality agreement—mutualThis Agreement is made on [date]Parties1[insert name of party] [of [insert details ] OR a company incorporated in...
The Information Commissioner’s Office (ICO)The Information Commissioner’s Office (ICO) is the UK’s independent regulator designed to uphold...
The UK General Data Protection Regulation (UK GDPR)This Practice Note provides a summary of the UK GDPR regime. For a higher-level introduction to UK...
Letter of claim—breach of confidence[Insert name and address of recipient]Dear [insert organisation name],[Name of client] and confidential...
Trade secrets and confidential information—protection and enforcementThis Practice Note sets out the protection available for trade secrets and...
Introduction to the EU GDPR and UK GDPRThis Practice Note provides a high-level introduction to the EU’s General Data Protection Regulation,...
Data protection, privacy and confidential information case law trackerThis Practice Note tracks noteworthy High Court, Court of Appeal and Supreme...
Commercial use of photographs—data protection and privacy issuesThis Practice Note addresses issues affecting professional photographers taking...
Letter of claim—breach of data protection law[Insert name and address of recipient]Dear [insert organisation name],[Name of client] and breach of data...
What does IP completion day mean for Information Law? [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.11 pm (GMT) on 31...
Confidential information, privacy and injunctionsThis Practice Note deals with the general principles of obtaining an injunction relating to...
The Data Protection Act 2018This Practice Note introduces the UK’s Data Protection Act 2018 (DPA 2018).For higher-level introductions to data...
Under the NIS Directive, organisations operating in the banking and financial market infrastructure sectors (such as banks and credit institutions, or operators of trading venues or central counterparties) were included as OESs. Article 1(7) of the NIS Directive permitted EU Member States (which at the time included the UK) to limit the scope of the NIS Directive for certain sectors where existing legislation provided equivalent measures to those specified in the NIS Directive. Therefore, the NIS Regulations have never covered the banking and financial market infrastructure sectors on the basis that firms operating in those sectors must continue to adhere to requirements and standards as set by other regulatory regimes.
measures which can be put in place to provide protection or anonymity to a witness (eg a screen separating a witness from the defendant);
“Telecommunications service” means any service that consists in the provision of access to, and of facilities for making use of, any telecommunication system (whether or not one provided by the person providing the service).