From 19 June 2026 businesses must have a formal process in place for individuals to raise data protection complaints directly with them. The ICO has reminded businesses that they must act now to put their complaints...
Category - Data, Privacy & Cybersecurity
King’s Speech confirms promised regulatory reforms
The King’s Speech, given on 13 May, was expected to cover several of the regulatory reforms already consulted on. While not all the development were mentioned in the speech itself, the Briefing notes accompanying...
FCA publishes good practice examples from Cyber Coordination Group
The FCA has published good and poor practice emerging from its Cyber Coordination Group (CCG) in 2025 covering key resilience topics like: incident response practices and recovery at scale; implications of AI, quantum...
Data protection complaints – are you ready?
Read our article on the changes coming into effect in June on the processes data controllers will have in place for individuals to raise data protection complaints.
Government publishes smart data strategy
The Government has published the Smart Data 2035 strategy, its vision for achieving a smart data economy for the UK. The document sets out the steps that will be taken between now and March 2029 to unlock growth...
FCA and ICO publish joint statement on vulnerability data
The FCA and ICO have published a joint statement on regulatory expectations regarding firms’ approaches to vulnerability data. The FCA wants firms to understand the needs of vulnerable customers and take steps to...
Data (Use and Access) Act 2025: majority of changes related to data protection now in force
The UK’s data protection landscape shifted again on 5 February 2026 with the arrival of a major implementation milestone under the Data (Use and Access) Act 2025 (DUAA). The Data (Use and Access) Act 2025 (Commencement...


