About Information Law
Lexis®+ Information Law is an online practical guidance product for contentious and non-contentious lawyers dealing with Data Protection, Confidential Information, Privacy, Cybersecurity and Freedom of Information issues.
Data protection
Get a good background to data protection law and view practical guidance focused on data protection matters for commercial transactions. See also our UK GDPR compliant pro-party clauses for use in commercial agreements.
Confidential Information
Protect trade secrets and know-how using the law of confidentiality. Get information and a set of pro-party confidentiality agreements here.
Key information law developments
View a range of trackers to enable horizon scanning and monitoring of key developments. The trackers are maintained - making them useful for keeping up-to-date and for business development.
Lexis+® Information Law
It’s our online practical guidance product for contentious and non-contentious lawyers dealing with Data Protection, Confidential Information, Privacy, Cybersecurity and Freedom of Information issues.
Our Information Law Experts
Adam Gillert
Hamish Corner
Anthony Taylor
Jon Bartley
Hazel Grant
Latest Information Law News
The European Parliament has announced a provisional agreement with the Council of the EU on amendments to the EU Artificial Intelligence (AI) Act...
The European Commission has announced that the EU and Japan have agreed to deepen cooperation across a range of digital policy areas, including...
The Department for Science, Innovation and Technology (DSIT) has published its Cyber Security Breaches Survey for 2025/2026, which was carried out...
This week’s edition of Information Law weekly highlights includes a hand-picked summary of news analysis, updates and new content related to laws...
The Victims and Courts Bill has received Royal Assent, introducing reforms aimed at strengthening victims’ rights and improving the operation of the...
Latest Information Law Practice Notes
This Practice Note considers the approach of the English courts where two or more agreements potentially bear on the forum in which disputes are to be...
Incorporated v unincorporated charitiesThere are a number of incorporated or unincorporated structures that are adopted by charities.The corporate...
Many companies and government bodies (such as HMRC) have been exposed to or suffered loss of confidential information or other breaches of...
This Practice Note provides practical guidance on the proper execution of simple contracts and deeds for private trusts.We have produced a collection...
This Practice Note deals with the practical aspects of bringing a defamation claim such as: identifying a defamatory statement; determining whether...
Latest Information Law Precedents
The ScheduleJoint controller arrangements1Definitions and interpretation1.1In this Schedule:Communication•means a complaint, enquiry, notice, request...
[Insert name of public authority][Insert public authority's address, including postcode][Insert public authority’s email address or email address of...
FORTHCOMING CHANGE: In December 2023 the Information Commissioner’s Office (ICO) published draft guidance on recruitment and selection. That draft...
Stop press: The Data (Use and Access) Act 2025 (Commencement No 6 and Transitional and Saving Provisions) Regulations 2026, SI 2026/82 bring into...
Stop press: The Data (Use and Access) Act 2025 (Commencement No 6 and Transitional and Saving Provisions) Regulations 2026, SI 2026/82 bring into...
Latest Information Law Q&As
Featured Information Law content
The UK General Data Protection Regulation (UK GDPR)—Navigator [Archived]
The UK General Data Protection Regulation (UK GDPR)—NavigatorThis Practice Note serves as a reference guide to the Retained Regulation (EU) 2016/679...
Privacy law—misuse of private information
Privacy law—misuse of private informationThe tort of misuse of private information is focused on ‘the protection of human autonomy and dignity—the...
Confidentiality agreement—mutual
Confidentiality agreement—mutualThis Agreement is made on [date]Parties1[insert name of party] [of [insert details ] OR a company incorporated in...
The Information Commissioner’s Office (ICO)
The Information Commissioner’s Office (ICO)The Information Commissioner’s Office (ICO) is the UK’s independent regulator designed to uphold...
The UK General Data Protection Regulation (UK GDPR)
The UK General Data Protection Regulation (UK GDPR)This Practice Note provides a summary of the UK GDPR regime. For a higher-level introduction to UK...
Are recorded conversations between lay people legal and can they be used in legal proceedings?
Is it standard for a non-disclosure agreement to contain liability limitations (eg for loss of information and/or breach) and what arguments could be used to seek to remove any such provisions added by another party?
In the context of confidentiality agreements, what constitutes an ‘indirect’ disclosure? Is it necessary to specifically use the word ‘indirect’ to capture all types of disclosure by the main disclosing party?
Letter of claim—breach of confidence
Letter of claim—breach of confidence[Insert name and address of recipient]Dear [insert organisation name],[Name of client] and confidential...
Trade secrets and confidential information—protection and enforcement
Trade secrets and confidential information—protection and enforcementThis Practice Note sets out the protection available for trade secrets and...
Introduction to the EU GDPR and UK GDPR
Introduction to the EU GDPR and UK GDPRThis Practice Note provides a high-level introduction to the EU’s General Data Protection Regulation,...
Data protection, privacy and confidential information case law tracker
Data protection, privacy and confidential information case law trackerThis Practice Note tracks noteworthy High Court, Court of Appeal and Supreme...
Commercial use of photographs—data protection and privacy issues
Commercial use of photographs—data protection and privacy issuesThis Practice Note addresses issues affecting professional photographers taking...
Letter of claim—breach of data protection law
Letter of claim—breach of data protection law[Insert name and address of recipient]Dear [insert organisation name],[Name of client] and breach of data...
What does IP completion day mean for Information Law? [Archived]
What does IP completion day mean for Information Law? [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.11 pm (GMT) on 31...
Confidential information, privacy and injunctions
Confidential information, privacy and injunctionsThis Practice Note deals with the general principles of obtaining an injunction relating to...
The Data Protection Act 2018
The Data Protection Act 2018This Practice Note introduces the UK’s Data Protection Act 2018 (DPA 2018).For higher-level introductions to data...
Is someone’s voice personal identifiable information under GDPR? If someone is to do a voice over for content of some training for a business, would a consent form be needed?
Associated legal terms
exhibit
a document or thing presented as evidence in court;
Public authority and public body
Public authorities and public bodies often carry out activities involving personal data. The terms ‘public authority’ and ‘public body’ are used throughout the GDPR regimes, including within several of the definitions, but are not expressly defined. The EDPB considers that under the EU GDPR: • these notions are broad enough to include both public bodies in third countries and ‘international organisations’ (ie an organisation and its subordinate bodies governed by public international law, or any other body which is set up by, or on the basis of, an agreement between two or more countries) • with respect to public bodies in third countries, the notion is to be determined under domestic law • public bodies include government authorities at different levels (eg national, regional and local authorities) and also other bodies governed by public law (eg executive agencies, universities, hospitals and so on)
Territory
means [[list the specific countries, states or regions which form the territory] OR the [countries OR states OR regions] listed in Schedule [insert schedule number] ][subject to any variation agreed or implemented pursuant to clause [insert clause number]];
CONTACT US
