• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

UK data protection

UK’s Data Protection Regulator fines a UK SaaS provider ~$4 million following a ransomware incident

April 4, 2025 By Hanna Hewitt and Kelly Hagedorn

On March 26, 2025, the UK data protection regulator (the Information Commissioner’s Office (“ICO”)) fined Advanced Computer Software Group Ltd (“Advanced”) £3.07 million (approximately $4 million). In 2022, Advanced suffered a ransomware incident that put the personal data of 79,404 people at risk. In its penalty notice, the ICO found that Advanced failed to implement […]

Filed Under: Cybersecurity, Data Breach, International, Ransomware Tagged With: Data breach, ICO, UK Cybersecurity, UK data protection, UK GDPR

UK Information Commissioner’s Office Issues Warning on Ransomware Payments

July 13, 2022 By Paul Greaves

On July 8, 2022, the UK Information Commissioner’s Office (UK ICO) together with the UK National Cyber Security Centre (NCSC), published a joint letter asking the Law Society of England & Wales to remind its members that they should not advise clients to pay ransomware demands should they fall victim to a cyber-attack. The Law […]

Filed Under: Cybersecurity, Data Breach, Data Protection, Data Security, Enforcement, Privacy, Regulation Tagged With: Cybersecurity, Data Breach Notification, Ransomware, Regulatory Enforcement, UK data protection, UK GDPR

UK Unveils Post-Brexit Data Plans with an Emphasis on International Transfers of Personal Data

August 26, 2021 By Paul Greaves

Today, the UK Department of Digital, Culture, Media and Sport (“DCMS”) has made a series of announcements shedding light on the UK’s post-Brexit data strategy. The announcements – which emphasize the importance of international transfers of personal data to global trade – include as follows: A Press Release, providing an overview of the UK government’s […]

Filed Under: Data Protection, GDPR, International, Privacy Tagged With: EU Data Protection, International Data Transfers, UK, UK data protection

UK Launches Public Consultation on GDPR Consent Guidance

March 8, 2017 By Privacy, Cyber & Data Strategy Team

The General Data Protection Regulation (GDPR) will come into force on 25 May 2018, replacing UK’s Data Protection Act 1998 (DPA). It is yet unclear how Brexit will play out, yet in the meantime the United Kingdom is moving to adopt the GDPR principles so that it adequately protects the personal data transferred within the […]

Filed Under: Data Protection, GDPR, Legislation, Privacy Tagged With: EU Data Protection, EU Privacy, EU Regulation, European Union (EU), UK data protection

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • UK Publishes Software Security Code
  • Texas AG Secures $1.375 Billion from Google: Key Takeaways for Companies Collecting Consumer Data
  • CISA Issues Enhanced Guidance to Mitigate Cyber Threats to Operational Technology Systems
  • CPPA Issues Revised Draft CCPA Regulations; Votes to Initiate Public Comment Period
  • UK Data Protection Regulator Fines UK Law Firm ~$80,000 Following Ransomware Incident
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website. OkCookie policy