EU information law trackers

This subtopic contains a series of trackers which track aspects of EU information laws.

The GDPR enforcement by UK and EEA supervisory authorities—tracker tracks enforcement decisions in individual EU and EEA states. Otherwise, note that these trackers generally follow developments at EU level,

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

TAKE A FREE TRIAL

Latest Information Law News

FCDO publishes statement on signing the UN Convention against Cybercrime

The Foreign, Commonwealth & Development Office (FCDO) has published the UK’s national speech delivered by its Cyber Director, Andrew Whittaker, at the signing ceremony of the UN Convention against Cybercrime in Hanoi. The UK formally signed the Convention, reaffirming its commitment to international cooperation in addressing cybercrime. The speech outlined the UK’s strategic aim to reduce cybercrime risks by 2030 and emphasised the need for a coordinated global response involving governments, law enforcement, civil society, and the private sector. It also made clear that the UK will only engage with States that uphold the Convention’s human rights safeguards, which are considered essential for building trust and enabling effective collaboration.

Home Office publishes CRI guidance on supply chain resilience against ransomware

The Home Office has published non-binding guidance to help organisations strengthen their supply chain resilience against ransomware threats. According to the Home Office, ransomware remains a major global threat, with attackers increasingly targeting supply chains to amplify disruption.

Information Law weekly highlights—23 October 2025

Welcome to this week’s edition of the Information Law weekly highlights: a hand-picked summary of news analysis, updates and new content related to laws governing the use and dissemination of information and personal data. Each week these highlights focus on developments in key topics such as data protection, ePrivacy, cybersecurity, breach of confidence, misuse of private information, and defamation.

EDPB adopts opinions on UK data adequacy extensions

The European Data Protection Board (EDPB) has adopted Opinions 26/2025 and 27/2025 on the European Commission’s draft decisions to extend the validity of the UK adequacy decisions under the General Data Protection Regulation (Regulation (EU) 2016/679) and the Law Enforcement Directive (Directive (EU) 2016/680) until December 2031. The Board has welcomed the continued alignment between UK and EU data protection frameworks but has urged the Commission to closely monitor UK developments that may affect the level of protection, including recent legislative changes to the Data (Use and Access) Act 2025 and the structure of the Information Commissioner’s Office (ICO).

View Information Law by content type :

News