Cyber risk, like any other risk to your business, needs to be managed properly and considered a high priority risk for the internal compliance or legal team—not just the IT department. It is a business risk that must be managed within an overall information risk-management and crime prevention framework.
The guidance and tools referenced reflect information security and breach notification requirements in the UK General Data Protection Regulation (UK GDPR), Assimilated Regulation (EU) 2016/679 and Data Protection Act 2018, but are not intended to cover specialist sector-specific requirements in the:
Network and Information Systems Regulations 2018 (NIS Regulations), SI 2018/506
Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR 2003), SI 2003/2426 (as amended), or
Financial Services and Markets Act 2000 (FSMA 2000) and the Financial Conduct Authority (FCA) Handbook
Cybercrime is simply a crime that has some kind of computer or cyber aspect to it. It takes shape in a variety of different forms.
one-off—involves theft or manipulation of data or services which appears, from the victim’s perspective, to be a single event, eg malware or phishing
ongoing—a
To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.
**Trials are provided to all LexisNexis content, excluding Practice Compliance, Practice Management and Risk and Compliance, subscription packages are tailored to your specific needs. To discuss trialling these LexisNexis services please email customer service via our online form. Free trials are only available to individuals based in the UK, Ireland and selected UK overseas territories and Caribbean countries. We may terminate this trial at any time or decide not to give a trial, for any reason. Trial includes one question to LexisAsk during the length of the trial.
This week's edition of Risk & Compliance weekly highlights includes the FCA’s findings from its review of firms’ sanctions systems and controls, the...
Spotlight on Corruption has published its submission to the Home Office's consultation on economic crime information sharing, which closed in May...
The Serious Fraud Office (SFO) has warned that companies which fail to self–report suspected economic crime face an increased risk of enforcement...
Law360, Expert Analysis: In March 2026, the government published its Fraud Strategy 2026–29, setting out a three-year plan to tackle the most commonly...
What is the difference between an appeal and a review?What is an appeal?An appeal in insolvency proceedings is no different to an appeal in normal litigation. An appeal will be allowed only if the appeal court is satisfied that the decision of the lower court was 'wrong' or 'unjust because of a
Strike out—making an application to strike out a statement of caseA strike out order can be made either following an application by the parties or on the court's own initiative. This Practice Note deals with the scenario of the order being made following a party's application.Making an application
Can shares in a limited company that have not been paid-up at all be cancelled?A limited company having a share capital may not alter that share capital, except in the ways listed in section 617 of the Companies Act 2006 (CA 2006). Shares in a company cannot simply be cancelled without following an
Template for regulatory references given by SMCR firms and disclosure requirements[Insert addressee details]Dear [insert name][It is our understanding that [insert name of prospective employee] [was an employee of yours between the dates of [insert dates as appropriate] OR is a current employee of
0330 161 1234