In our latest blog post on preparing for the EU’s Digital Operational Resilience Act (DORA), entering into force on January 17, 2025, we take a look at second-level requirements under DORA covering the classification and...more
Beginning January 17, 2025, financial entities based in the European Union must have in place processes and policies, and mandatory contract provisions with their third-party technology vendors, that comply with the EU...more
The Dutch Data Protection Authority—the Autoriteit Persoonsgegevens (AP)—recently announced that it will in many cases regard scraping of personal data by private sector organizations as an infringement of the EU General Data...more
Beginning January 17, 2025, the European Union’s Digital Operational Resilience Act (DORA) will require financial entities to maintain and submit to EU regulators a comprehensive register of their contractual arrangements...more
The European Central Bank (ECB) has published data showing that banks are increasingly using third-party providers to support their critical functions. However, more than 10% of outsourcing contracts covering critical...more
The UK communications regulator and concurrent competition authority, Ofcom, announced on April 5 its proposal to refer the UK cloud services market to the Competition and Markets Authority (CMA) for further investigation....more
Investment in UK technology companies continues apace, with 2021 marking another record year. The UK government announced in December 2021 that the UK tech sector achieved its “best year ever” in 2021 through investments...more
The Board of the International Organization of Securities Commissions (IOSCO) has published a set of revised outsourcing principles for regulated entities. IOSCO is an international policy forum for securities regulators and...more
11/19/2021
/ Confidential Information ,
EU ,
European Securities and Markets Authority (ESMA) ,
Financial Conduct Authority (FCA) ,
Financial Markets ,
Information Security ,
IOSCO ,
Outsourcing ,
Prudential Regulation Authority (PRA) ,
Regulatory Agenda ,
Regulatory Oversight ,
Securities Regulation ,
UK
The European Cloud User Coalition (ECUC) published a paper (the Position Paper) on May 17 recommending, among other matters, the adoption of “model clauses” for the long-term compliant use of cloud technologies....more
6/15/2021
/ Banks ,
Cloud Computing ,
Cloud Service Providers (CSPs) ,
Consumer Service Agreements ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Security ,
EU ,
European Commission ,
Financial Institutions ,
FinTech ,
Innovative Technology ,
Model Clauses ,
Standard Contractual Clauses
The European Securities and Markets Authority (ESMA) on May 10 published final guidelines on outsourcing to cloud service providers (ESMA Guidelines) to help firms and competent authorities identify, address, and monitor the...more
5/18/2021
/ Cloud Computing ,
Cloud Service Providers (CSPs) ,
Competent Authority (CA) ,
EU ,
European Securities and Markets Authority (ESMA) ,
Investment ,
Outsourcing ,
Regulatory Requirements ,
Reporting Requirements ,
Service Agreements ,
UCITS
The World Intellectual Property Office (WIPO) held its third “Conversation on Intellectual Property and Artificial Intelligence” on November 4, 2020, to discuss its revised issues paper on Intellectual Property Policy and...more
11/27/2020
/ Artificial Intelligence ,
Copyright ,
Copyright Infringement ,
EU ,
European Commission ,
Intellectual Property Protection ,
Popular ,
Trademarks ,
UK ,
UK Intellectual Property Office (UK IPO) ,
USPTO ,
WTO