In an increasingly interconnected world, preserving the free flow of data across borders is crucial to the prosperity of businesses operating in every industry. But over the last year, there have been a number of important data protection developments in Europe that have a direct impact on the supply chain and distribution arrangements operated by organizations. These developments are restricting the ways in which businesses can share personal data within their organizations and with counterparties internationally. They include:
Continue Reading Data Protection Developments in Europe – Supply Chain and Distribution

The Spanish Data Protection Authority (“Agencia Espanola Proteccion Datos – AEPD”) has recently issued its highest fine to date, totaling €8.15 million for several breaches of GDPR and national legislation by a multinational telecommunication company and its service providers. Notably, €2 million of this fine was attributable to its service provider conducting an international transfer of personal data to a country that did not comply with the European data protection requirements.
Continue Reading Spanish Data Protection Authority Issues Highest GDPR Fine to Date

On 2 April 2020, the Court of Justice of the European Union (the “CJEU”) delivered its judgment in Coty Germany v Amazon (Case  C‑567/18), in which the CJEU considered whether Amazon was liable for trade mark infringement for storing goods that infringed EU trade marks.
Continue Reading The Court of Justice of the European Union Provides Some Clarification on Third Party Liability of Marketplaces in Trade Mark Infringement Disputes

On 27 February 2020, the UK government unofficially announced that the UK will not participate in the Unitary Patent and Unified Patent Court system. The decision was confirmed by a spokesperson for the prime minister, who stated that “Participating in a court that applies EU law and bound by the CJEU is inconsistent with

Responding to a written question put to the UK Parliament on 21 January 2020, Government Minister Chris Skidmore stated that the UK has no plans to implement the controversial new EU Copyright Directive following the UK’s exit from the European Union. Entering into force in June 2019, EU countries have been given until June 2021

Ongoing public consultations from the World Intellectual Property Organisation and others demonstrate a focus by IP policymakers on better understanding issues posed by artificial intelligence. In our newest Legal Update, we outline some key issues in relation to copyright ownership in AI-generated works and inventorship and ownership challenges for patent protection in AI-generated inventions. For

In its second statement of intent of the week, on 9 July 2019, the UK’s Information Commissioner’s Office (“ICO”) announced its intention to fine Marriott International, Inc (“Marriott”) £99.2m under the General Data Protection Regulation (“GDPR”) for a personal data breach that occurred in relation to the Starwood guest reservation database system.
Continue Reading UK ICO Intends to Fine Marriott over £99m for Personal Data Breach under the GDPR

The UK’s Information Commissioner’s Office (“ICO”) today (8 July 2019) announced its intention to fine British Airways (“BA”) £183.39m under the General Data Protection Regulation (“GDPR”) for a personal data breach. This is the highest fine issued so far by a European Union data protection supervisory authority for a personal data breach under the GDPR.
Continue Reading British Airways Fined over £183m for Personal Data Breach Under the GDPR

Although the EU General Data Protection Regulation (the “GDPR”) entered into force on 25 May 2018, and the obligations under the GDPR have since taken effect, there remain significant uncertainties as regards enforcement. In particular, the application of the GDPR’s fining provisions – arguably the key concern for companies commercially – raises several issues,
Continue Reading GDPR Fines – Lessons from Competition Law