Telecoms Security Framework (TSF) – Background and Requirements

The UK Government is introducing a new telecoms security framework (the “TSF”) through the Telecommunications (Security) Bill (the “Bill”). This is a particularly important development, given that fines could be significant – up to 10% of annual turnover and/or £100,000 per day of contravention in certain circumstances as further described in the Financial Penalties section…

Updated EU Commission decision paves way for 5G on the road and in-flight connectivity innovation

As a result of the EU Commission updating the implementing decision on spectrum for mobile communications on-board aircraft, designating certain frequencies for in-flight 5G technology, commercial airline companies will soon be able to offer state-of-the-art 5G facilities on their aircraft, together with prior mobile technology generations. Travellers onboard flights in the EU will be able…

Controller Binding Corporate Rules – EDPB adopts new recommendations on the application for approval and the elements and principles of the Rules

On the 16th of November 2022, the European Data Protection Board (“EDPB”) adopted Recommendations 1/2022 (the “Recommendations”) on the application for approval and on the elements and principles found in Controller Binding Corporate Rules. The EDPB’s Recommendations are open for feedback from the public with submissions to be made by 10 January 2023. The Recommendations…

The Future Is Now: The Disruptive Power of AI and Its Legal Ramifications in The Metaverse

AI is perhaps one of the fastest evolving technologies ever devised, with enormous capabilities to entirely reshape the very foundations of a range of businesses, enable significant financial development and forever alter our way of living and interacting with one another. There are high expectations that the metaverse, which relies greatly on AI technologies, will…

CJEU clarifies the interpretation of purpose and storage limitation principles under the GDPR

On 20 October 2022, the Court of Justice of the European Union (“CJEU”) issued its decision in Case C-77/21 Digi Távközlési és Szolgáltató Kft. (“Digi”) v. Nemzeti Adatvédelmi és Információszabadság Hatóság (National Authority for Data Protection and Freedom of Information, “NAIH”), relating to the request for a preliminary ruling presented by the Court of Budapest-Capital. Specifically, the…