The High Court’s decision in Raine v JD Wetherspoon clarifies when spoken disclosures can amount to data processing. This article compares Raine and Scott and explains why information retrieved from records is treated differently from memory-only disclosures.
(Judicial review – police use of facial recognition technology in London – Shaun Thompson and another v The Metropolitan Police Commissioner (2026) EWHC 915 (Admin)) The Recognition Software The Metropolitan Police Service (“MPS”) adopted live facial recognition technology (“LFR”) in September 2024. Under its policy, the technology is used across London to prevent and detect […]
The Cyber Essentials 2026 updates introduce stricter rules on MFA, patch management and cloud services. Learn what businesses must do to remain compliant.
Deepfakes are no longer theoretical for the legal sector. They pose real risks to evidence, fraud prevention, data protection and professional responsibility, requiring firms to rethink verification, governance and trust in an AI-driven environment.
A Chronicle Law webinar explores the legal and compliance considerations for law firms recording calls and meetings and communicating with clients via WhatsApp, including UK GDPR requirements, consent, and best practice for managing messaging communications.
This article explores how the NHS is adopting AI-powered ambient scribes to reduce clinical administration, while examining the data protection, UK GDPR, and patient transparency challenges associated with voice data, anonymisation, and vendor use of sensitive health information.
Subject access requests are rising, often creating significant time and cost burdens. The Data (Use and Access) Act 2025 allows only a “reasonable and proportionate search” for personal data, but recent cases, including Ashley v HMRC (2025), show that the effort involved in reviewing and redacting data can also be considered disproportionate. Organisations may therefore argue that both the search and the review/redaction process are unreasonable when compliance would be excessively burdensome.
This guidance explains when and how to share information with the police. Disclosure is allowed in emergencies, when required by law, or in the public interest. In all other cases, a properly completed Schedule 2 Data Protection Act form must be provided. All disclosures must be documented and limited to necessary, specific information.
Discover how DMARC email authentication protects your organisation from phishing, email spoofing, and cyber threats. Learn the key protocols, policy settings, and benefits of implementing DMARC to enhance email security and deliverability.
The Data (Use and Access) Act 2025 brings major changes for UK law firms. From new ICO compliance rules and client data protections to AI transparency and enforcement powers, discover what the amendments mean for your practice and how to stay secure in a shifting regulatory landscape.
As UK law firms continue to digitise, cyber threats are escalating. From ransomware to data theft and email compromise. This article from Debra Cairns of Net-Defence explores real cases and highlights practical steps firms can take to strengthen defences, protect client data and maintain trust.
Insider threats occur when employees misuse access to steal or leak data, causing legal, financial, and reputational damage. This article from Debra Cairns examines three UK cases, ICO responses, warning signs, and effective data loss protection measures.
In this article, Debra Cairns of Net Defence outlines five practical, budget-friendly actions law firms can take today to strengthen their cyber security posture; covering backup, phishing, password protection, mobile safety, and basic technical controls.
Spencer West are pleased to provide Law Firms with a free webinar about the handling of subject access requests. Guided by specialist speaker Kristy Gouldsmith.
The UK legal sector faces growing cyber threats, from ransomware to insider risks. With 70% of data loss caused by human error or negligence, firms must take action. Debra Cairns of Net-Defence highlights the importance of safeguarding sensitive data, addressing both internal and external threats, and managing supply chain vulnerabilities.
Be the first to know
Subscribe for our latest legal news in your inbox. All for FREE.