For all commercial clients - and especially those operating in the technology field - cyber exposures, together with data security and privacy concerns have become business-critical risks.
The insurance industry has been quick to respond to the ever-increasing focus on cyber and data protection through the provision of a variety of policies covering a range of risks from first party losses to liabilities following a loss or theft of data.
Our experienced team of data, technology and insurance lawyers are perfectly placed to advise insurers and intermediaries on all aspects of cyber and data insurance.
Advising a London Market insurer on silent cyber compliance across a suite of over 1,000 policy wordings and associated documents.
Drafting a variety of cyber policy wordings for a number of insurers across various lines of business, including marine cyber and cyber K&R.
Advising the board of a leading insurer on its silent cyber strategy.
We have supported a London Market insurer’s claims team to enable it to determine coverage in relation to over 200 specialty risk claims.
It is clear that the digital landscape, often termed cyberspace, is a man-made environment, in which human behaviour dominates and where technology both influences and aids our role in it — through the internet, telecoms and networked computer systems, which are often interdependent. The extent to which any organisation is potentially vulnerable to cyber-attack depends on how well these elements are aligned.
The data protection legislation (namely, the UK GDPR and Data Protection Act 2018) contain various provisions that deal with the processing of personal data for research purposes.
Public bodies will be pleased to hear that another significant court decision (Ali v Luton Borough Council [2022] EWHC 132 (QB)) has been made that is favourable to data controllers.
The cases summarised give considerable comfort to data controllers seeking to defend themselves against claims that relate to breaches arising as a result of a failure rather than a direct act and/or are based on assertions of damage or distress that are exaggerated, unsubstantiated or bear little relation to the breach itself.
In February 2021, the High Court handed down judgment London Borough of Lambeth v AM (No. 2) [2021] EWHC 186 (QB), in which Browne Jacobson LLP acted for the Claimant Council. The judgment is critical reading for public bodies who are required to take action to restrict the use of confidential information in circumstances where that information has been inadvertently disclosed to a third-party.
The GDPR requires all businesses to implement ‘Data Protection by Design & Default’ but what does that mean in practice and how can businesses practically comply?
Did you know that cyber attackers can use publicly available information about your business and employees to make their attacks more successful? Information is often gleaned from websites and public social media accounts.
The latest update covering delegated authority, insurance product development, the senior insurance managers regime, data protection, operational control frameworks, Lloyds market, and horizon scanning.