IT legislation and regulation

Understanding the law as it applies to IT management can be one of the hardest task for IT leaders, but the growing burden of regulatory compliance makes it essential. Legislation and regulation affects enterprise IT in many ways, not just in long-standing tasks such as contracts and software licensing. We examine the latest legal development and how they affect IT managers, and talk to the experts in IT legislation and regulation to explain what it means to your organisation.

News 13 May 2024
Norway bolsters digital transformation drive

Norway’s government backs digital transformation with major capital investment this year Continue Reading
News 11 Mar 2024
Vinnova launches National Digital Advancement project

Swedish state innovation initiative invests in a network of regional research and development centres Continue Reading

News 23 Jan 2023

Royal Society calls on public sector to pilot privacy tech

The Royal Society says public sector bodies should lead the way in piloting privacy-enhancing technologies to unlock the value of data without compromising privacy and data rights, but lack of standards and incentives mean adoption is slow Continue Reading
News 20 Jan 2023

Veeam survey finds ransomware blocks digital transformation

Annual report shows secular trend to the cloud and increased use of containers, but prevalence of ransomware attacks means digital transformation is hindered Continue Reading
E-Zine 20 Jan 2023

CW APAC January 2023 – Trend Watch: CIO Trends

As we enter a new year, it remains vital for IT leaders to keep track of the latest developments across the industry. In this handbook, focused on CIO trends in the Asia-Pacific region, Computer Weekly looks at predictions for 2023, how the Australian Red Cross managed a donation surge, Mondelez’s digital transformation and Singapore’s public sector IT strategy Continue Reading
News 20 Jan 2023

WhatsApp’s £4.8m fine raises questions for organisations using behavioural advertising

The Irish Data Protection Commissioner has fined WhatsApp, owned by Meta, in a case that will raise questions for organisations that rely on contracts rather than consent to comply with GDPR when offering behavioural advertising Continue Reading
News 19 Jan 2023

UK seeks to ban sharing ‘positive’ Channel crossing videos online

Under UK government amendments to the Online Safety Bill, video footage that shows people crossing the Channel in a ‘positive light’ could be added to a list of illegal content that all tech platforms must proactively prevent from reaching users, while senior managers could face further criminal sanctions Continue Reading
News 19 Jan 2023

Newham Council rejects use of live facial-recognition tech by police

Live facial-recognition technology should not be used by police in Newham until biometric and anti-discrimination safeguards are in place, according to a motion passed unanimously by the council, but the Met Police and the Home Office have indicated they will not suspend its use Continue Reading
News 17 Jan 2023

Benelux CIO interview: Richard Ventre, SHV Holdings

In his role at Netherlands-based SHV Holdings, Richard Ventre is tackling the challenge of enabling a diverse set of digital transformations across a range of industries Continue Reading
News 17 Jan 2023

Claim IR35 reform repeal and U-turn cost the government ‘nothing’ called into question

After responding to a question about the cost of the government’s repeal of the IR35 reforms and its subsequent U-turn on the decision, the financial secretary has come under fire for claiming no additional costs were incurred by its flip-flopping Continue Reading
News 17 Jan 2023

Cloudflare urged to clamp down on pirates, counterfeiters

A whitepaper produced by brand protection specialist Corsearch calls on Cloudflare to do more to stop online content piracy and sales of counterfeit goods Continue Reading
News 17 Jan 2023

Crest throws support behind CyberUp CMA reform campaign

Cyber accreditation association Crest International has lent its support to the CyberUp campaign for reform to the Computer Misuse Act of 1990 Continue Reading
News 16 Jan 2023

IR35 reforms: Contractors cite tax avoidance legislation as ‘biggest concern’ in 2023

Contractors have cited the IR35 reforms as being their biggest concern in 2023, ahead of the cost-of-living crisis and the government’s planned tax rises Continue Reading
E-Zine 16 Jan 2023

CW EMEA: Protecting the privacy of schoolchildren

In this month’s CW EMEA, we look at how schools in Germany have stopped using Microsoft Office 365 over lack of clarity over how data is collected, shared and used. We also delve into how former UK spy boss Richard Dearlove leaked names of MI6 secret agent recruiters in China to back an aggressive right-wing US campaign against tech company Huawei. Read the issue now. Continue Reading
News 14 Jan 2023

Experts concerned over silence around government obligation to review UK surveillance laws

The government is required to review the UK’s surveillance law, the Investigatory Powers Act, but experts say they are in the dark about its plans. The National Crime Agency’s operation Venetic has highlighted the need for urgent reforms Continue Reading
News 13 Jan 2023

Cabinet Office looks to expand public data sharing for digital ID

Cabinet Office seeks feedback on proposed legislation to enhance data sharing across the public sector, in support of the UK government’s ambition to have a single sign-on identity-check system for all public services Continue Reading
News 13 Jan 2023

BBC assures UK Parliament that digital transformation plans are on track

UK Parliamentary accounts watchdog probes British Broadcasting Corporation senior management regarding plans to reconstruct organisation to be fit for purpose in modern media industry and satisfy multiplatform needs of licence fee payers Continue Reading
News 12 Jan 2023

Government accused of leaving umbrella company regulation in limbo by shelving enforcement body

The UK government is coming under pressure to reveal the state of its plans to regulate umbrella companies after it emerged that the enforcement body it promised to create is unlikely to materialise Continue Reading
Opinion 12 Jan 2023

Europe’s cyber security strategy must be clear about open source

Europe’s cyber security policy on open source is lagging behind the US, and despite growing government awareness of the issues, that poses a problem Continue Reading
News 12 Jan 2023

UK net neutrality regulation failing all stakeholders

Leading analyst releases study showing net neutrality regulation is failing consumers, innovators and investors, calling for evidence-based broadband policy Continue Reading
News 11 Jan 2023

Internet shutdowns cost global economy $24bn in 2022

Deliberate disruption of people’s access to the internet by governments is having a substantial economic impact and contributing to a range of human rights abuses, primarily against protestors Continue Reading
News 10 Jan 2023

Insurer Beazley introduces catastrophe bond to ease cyber risk

Insurance company Beazley says that its $45m cyber catastrophe bond will help to protect its balance sheet and enable it to offer more cyber insurance cover Continue Reading
News 08 Jan 2023

Vulnerable organisations to get free Cyber Essentials support

Charities and legal aid firms are among those to be offered free security checks and certifications from the National Cyber Security Centre Continue Reading
News 06 Jan 2023

Proposed digital fraud refund rules risk excluding many victims

Proposals to establish a fraud refund mechanism in the UK risk excluding many victims of digitally enabled fraud, a major bank has warned Continue Reading
News 06 Jan 2023

New UK laws to see homeowners, tenants get better access to fast broadband

UK government mandates that almost all new homes in England must be built with gigabit broadband connections during construction, making it easier for homebuyers, renters and some leaseholders to upgrade to ultrafast services Continue Reading
News 06 Jan 2023

Meta to appeal £345m fine for Facebook and Instagram privacy breaches

Social media company Meta is to appeal after the Irish Data Protection Commission fined the company for breaching GDPR Continue Reading
Feature 05 Jan 2023

Securing low Earth orbit represents the new space race

The barriers to launching satellites into low Earth orbit are falling fast, and that brings new cyber security challenges Continue Reading
News 04 Jan 2023

Traditional banking under threat from platform-based alternatives

Banking as a service embedded in non-banking business offerings will take large chunks from traditional banks Continue Reading
News 03 Jan 2023

Test of digital ID tech at Surrey nightclub proclaimed success

The majority of visitors to a Camberley venue who piloted a digital identification app developed by 1account said they found it easy to use and preferred it to standard physical ID Continue Reading
Feature 29 Dec 2022

Cyber security professionals share their biggest lessons of 2022

In the run-up to 2023, cyber security professionals are taking the time to reflect on the past few months and share their biggest lessons of 2022 Continue Reading
News 29 Dec 2022

Top 10 technology and ethics stories of 2022

Here are Computer Weekly’s top 10 technology and ethics stories of 2022 Continue Reading
News 29 Dec 2022

Top 10 Nordic IT stories of 2022

Here are Computer Weekly's top 10 Nordic IT articles of 2022 Continue Reading
News 28 Dec 2022

Complaints that NCA failed in duty of candour over EncroChat warrants ‘incredible’, court hears

NCA lawyers argue that a decision by an NCA intelligence officer to disclose notes of a key meeting after two-and-a-half years boosts her credibility as a witness Continue Reading
News 28 Dec 2022

Top 10 Middle East IT stories of 2022

Here are Computer Weekly's top 10 Middle East IT articles of 2022 Continue Reading
News 23 Dec 2022

Top 10 financial services IT stories of 2022

Here are Computer Weekly’s top 10 financial services IT articles of 2022, looking back at the moves and changes over the past year Continue Reading
News 23 Dec 2022

Top 10 Benelux IT stories of 2022

Here are Computer Weekly’s top 10 Benelux articles of 2022 Continue Reading
News 22 Dec 2022

NCA ‘wrong-footed’ defence lawyers after agreeing to take expert evidence on EncroChat ‘as read’

The National Crime Agency argued at the Investigatory Powers Tribunal that expert evidence it agreed to ‘take as read’ is limited, flawed and often based on an incorrect interpretation of the law Continue Reading
News 22 Dec 2022

Top 10 crime, national security and law stories of 2022

Here are Computer Weekly’s top 10 crime, national security and law stories of 2022 Continue Reading
News 22 Dec 2022

Top 10 cyber crime stories of 2022

Cyber crime continued to hit the headlines in 2022, with impactful cyber attacks abounding, digitally enabled fraud ever more widespread and plenty of ransomware incidents Continue Reading
Opinion 21 Dec 2022

Post-Brexit cyber dynamics in the UK and Europe: diverging paradigms?

The UK faces a choice in terms of its ongoing cyber security relationship with the EU – to preserve its collaboration with the EU by adopting an aligned approach or to adopt a divergent approach Continue Reading
News 20 Dec 2022

TSB hit with huge fine after IT migration disaster

TSB has been fined nearly £50m due to failings during its IT migration catastrophe Continue Reading
News 20 Dec 2022

Top 10 IR35 stories of 2022

The implementation of the UK government’s IR35 reforms has continued to generate headlines for Computer Weekly in 2022 Continue Reading
News 16 Dec 2022

Shiseido data breach victims plan legal action over fake companies

Employees and former employees of cosmetics firm Shiseido whose data was stolen in a recent breach are planning group legal action after their information was used to establish fraudulent companies in their names Continue Reading
News 16 Dec 2022

Defence lawyers claim NCA witness gave unreliable evidence on EncroChat hacking operation

National Crime Agency argues that the lawfulness of surveillance warrants issued to hack the EncroChat phone network should only be considered in the light of facts and assessments known at the time Continue Reading
News 15 Dec 2022

Digital Ethics Summit: Who benefits from new technology?

Experts at the 2022 Digital Ethics Summit say expedited development cycles and obviously over-hyped PR material, in tandem with the public’s near-total exclusion from conversations around technology, is creating distrust towards the tech sector Continue Reading
News 14 Dec 2022

Private health provider data could be shared with NHS England

Plans are advancing to create a single source of healthcare data in England combining both private providers and the NHS to avoid a repeat of the Ian Paterson scandal Continue Reading
News 14 Dec 2022

NHS gets new guidance on public benefits of data sharing

NHS national data guardian Nicola Byrne has published new guidance on how health and social care bodies should approach the task of evaluating public benefit when using data for purposes beyond individual care Continue Reading
News 14 Dec 2022

New cyber approaches ease Registers of Scotland’s AWS migration

As the holder of the oldest national public land register in the world, Registers of Scotland has a storied history dating back centuries. Find out how Palo Alto Networks is keeping its processes and data secure as it goes all-in on Amazon Web Services Continue Reading
News 13 Dec 2022

EU issues draft data adequacy decision in favour of US

The European Commission has concluded that the United States does ensure an adequate level of protection for personal data transferred from the European Union and will now launch the process towards the adoption of an adequacy decision Continue Reading
E-Zine 13 Dec 2022

AI experts question tech industry’s ethical commitments

In this week’s Computer Weekly, the proliferation of ethical frameworks has done little to change how artificial intelligence is developed – we look at the challenges. We examine the future of the UK semiconductor sector as the government launches a review. And we hear how NatWest has put data at the heart of customer strategy. Read the issue now. Continue Reading
News 12 Dec 2022

Cloud-based fingerprint system for UK police nears completion

Police Digital Service announces that a new cloud-based fingerprint system developed under its Transforming Forensics programme is nearly complete, but data protection concerns around the use of US-based cloud providers remain Continue Reading
News 09 Dec 2022

Online Safety Bill returns to Parliament

MPs and online safety experts have expressed concern about encryption-breaking measures contained in the Online Safety Bill as it returns to Parliament for the first time since its passage was paused in July Continue Reading
News 08 Dec 2022

Consumers to get new protections against dodgy apps

Government’s new code of practice will impose new privacy and security measures on app store operators and developers Continue Reading
News 06 Dec 2022

Legacy IT magnifies cyber risk for Defra, says NAO

Some 30% of Defra’s applications are currently unsupported, magnifying cyber risk as the government department struggles to make progress on a digital transformation programme Continue Reading
News 06 Dec 2022

EU fails to protect human rights in surveillance tech transfers

Transfers of surveillance technology from the European Union to African governments are carried out without due regard for the human rights impacts, the European Ombudsman has found after a year-long investigation into the European Commission’s management of an aid fund Continue Reading
News 05 Dec 2022

Fake investment ads persist on Meta’s social networks

Online adverts for investment scams relating to property and crypto assets are still getting past measures designed to stop them Continue Reading
News 02 Dec 2022

Post Office boosted its ‘coffers’ as Horizon system threw up unexplained shortfalls, inquiry told

The Post Office was ‘keen’ to make subpostmasters cover unexplained accounting shortfall as its business struggled, public inquiry hears Continue Reading
Opinion 01 Dec 2022

Electronic Trade Documents Bill: Why we need to seize the day with distributed ledger technologies

Lord Chris Holmes pens his views for Computer Weekly on how the Electronic Trade Documents Bill, which he calls ‘the most important law you’ve never heard of’, could be a game-changer for the potential of distributed ledger technologies such as blockchain Continue Reading
News 30 Nov 2022

Microsoft 365 banned in German schools over privacy concerns

German schools cannot legally use Microsoft Office 365 over lack of clarity about how data is collected, shared and used, as well as the potential for unlawful transfer of European citizens’ personal data to the US Continue Reading
News 30 Nov 2022

South Staffs Water customer data leaked after ransomware attack

Personal data of water utility’s direct debit customers exposed on the dark web following a Clop ransomware attack Continue Reading
News 30 Nov 2022

NIS regulations to be extended to cover MSPs

The UK government is moving ahead with plans to update the Network and Information Systems regulations to bring outsourcers and MSPs into scope Continue Reading
Opinion 29 Nov 2022

Chartered status and aligned standards are crucial for the UK's cyber sector

As the UK moves closer to ushering in the world’s first chartered cyber professionals, the UK Cyber Security Council’s Simon Hepburn outlines the sector’s defining moment Continue Reading
News 29 Nov 2022

‘Legal but harmful’ clause dropped from Online Safety Bill

Online Safety Bill’s ‘legal but harmful’ provision will be dropped by the UK government in favour of public risk assessments, tools to help users control the content they consume, and new criminal offences around self-harm Continue Reading
News 29 Nov 2022

Government needs to do more for UK semiconductor industry, say MPs

Business, Energy and Industrial Strategy Committee report says the government is putting the UK chip industry at ‘significant risk’ by failing to support it sufficiently, and calls on Whitehall to publish its semiconductor strategy immediately Continue Reading
News 24 Nov 2022

Meta faces UK lawsuit over surveillance business model

The High Court case against Meta could set a precedent for millions of UK users to object to their personal data being collected and processed for advertising purposes Continue Reading
News 23 Nov 2022

UK police arrest 120 in largest-ever cyber fraud crackdown

The administrator and more than 100 users of the iSpoof.cc cyber fraud website have been arrested in a major counter-fraud operation led by the Metropolitan Police Continue Reading
News 23 Nov 2022

South Korea data adequacy pact brings £15m Brexit bonus

UK government finalises a data adequacy agreement with South Korea, saying it will unlock a post-Brexit business bonus of just under £15m Continue Reading
News 23 Nov 2022

Red team tool developer slams ‘irresponsible’ disclosure

UK security firm MDSec defends its Nighthawk command and control penetration testing framework after suggestions were made that it could be appropriated by threat actors Continue Reading
News 23 Nov 2022

Netherlands wants watchdog to reduce bias in artificial intelligence

Dutch government will take swift action to prevent citizens getting into trouble due to the misuse of algorithms Continue Reading
News 23 Nov 2022

Hidden energy cost of on-premise data stores

Data is said to be the new oil, but organisations may be storing far more than they need – and now there is an energy crisis Continue Reading
E-Zine 21 Nov 2022

CW APAC: Trend Watch: Artificial intelligence in APAC

Artificial intelligence is becoming more commonplace across business. In this handbook, focused on the adoption of the technology in the Asia-Pacific region, Computer Weekly looks at what still stands in its way, Dell’s deep learning model, how AI can realise its potential in healthcare, and the pros and cons of using AI and ML applications in the cloud. Continue Reading
News 21 Nov 2022

AI adopted without due consideration for workers, MPs told

MPs have been warned that the rapid roll-out of artificial intelligence in workplaces has changed UK enterprises’ management practices so much that current employment law is no longer fit for purpose Continue Reading
News 21 Nov 2022

NHS trust that deleted up to 90,000 emails cleared of deliberately concealing evidence

A tribunal found in a high-profile case brought by whistleblower Chris Day that an NHS trust had not deliberately concealed evidence when a director deleted up to 90,000 emails before he was due to testify Continue Reading
Opinion 18 Nov 2022

Redundancies – are tech companies getting it right?

With recession now a reality, big tech companies have started slimming down their workforces, but they have legal responsibilities Continue Reading
News 18 Nov 2022

Is Elon Musk’s Twitter safe, and should you stop using it?

With a litany of security and compliance issues exposed and in many cases caused by Elon Musk’s takeover of social media platform Twitter, some may be asking if it’s still safe or appropriate to use Continue Reading
News 18 Nov 2022

Post Office scandal inquiry’s expert IT witness ‘troubled’ by his findings

Controversial Post Office Horizon system lacked the integrity required to trust accounting data and contained ‘joke’ coding akin to an ‘overly engineered mousetrap’, inquiry told Continue Reading
News 18 Nov 2022

CyberPeace Institute helps NGOs improve their security resilience

Adrien Ogée of the CyberPeace Institute talks about his work supporting NGOs and humanitarian organisations, and how the security community at large can help protect the world’s most vulnerable people Continue Reading
News 17 Nov 2022

Brexit deregulation will make UK next Silicon Valley, vows Hunt

Chancellor vows to revolutionise how the IT industry is regulated to spur competition, investment and innovation in a technological ‘Big Bang’ Continue Reading
News 17 Nov 2022

NHS Digital confirms final settlement of £3.95m with HMRC following conclusion of IR35 investigation

The health service’s digital arm has paid HMRC £3.95m in unpaid tax to cover the cost of its IR35 compliance errors Continue Reading
News 16 Nov 2022

Global network fragmentation a source of increasing risk

Risk consultancy’s report says the weaponisation of cyber space and geopolitical clashes herald a breakdown of global networks into distinct regional or national architectures Continue Reading
News 15 Nov 2022

APP fraud volumes expected to double by 2026, says report

Losses to authorised push payment fraud in the UK are expected to climb to over $1.5bn in the next four years. Meanwhile, the NAO accuses the Home Office of lagging on progress to tackle the issue Continue Reading
News 15 Nov 2022

Met Police removes nearly two-thirds of people from gangs matrix

Legal action by human rights group Liberty forces Met Police to overhaul its gangs violence matrix database Continue Reading
News 11 Nov 2022

Volume of self-reported breaches to ICO jumps 30%

The number of self-reported breaches to the UK’s Information Commissioner’s Office soared by nearly 30% in the 12 months to 30 June 2022 Continue Reading
News 11 Nov 2022

Defra confirms final settlement of £86.5m with HMRC over ‘historic’ IR35 status assessment errors

The conclusion of HMRC’s long-running enquiry into errors made by the Department for Environment, Food and Rural Affairs when assessing the IR35 status of its contractors has seen it pay a final settlement of £86.5m to the tax collection agency Continue Reading
News 10 Nov 2022

Scrutinising AI requires holistic, end-to-end system audits

Understanding the full impacts of artificial intelligence requires organisations to conduct end-to-end social and technical audits of their systems, but the process comes with a number of challenges Continue Reading
News 10 Nov 2022

Loan charge contractors hit with fresh loan repayment request from new firm

IT contractors who participated in loan-based remuneration schemes and were previously pursued to repay loans issued to them by a company called Felicitas Solutions are now being chased for payment by a new entity Continue Reading
Feature 10 Nov 2022

The world's oldest cryptocurrency exchange prefers doing business in Luxembourg

One of the newest niches in fintech, cryptocurrency exchanges may fare very well in Luxembourg Continue Reading
News 09 Nov 2022

UK’s National Cyber Advisory Board convenes for first time

Government convenes National Cyber Advisory Board to further its goals of making the UK one of the safest places to live and work online Continue Reading
News 07 Nov 2022

Department for Education escapes £10m fine over data misuse

Department entrusted data on 28 million children to a company called Trustopia, which turned out to be anything but trustworthy, but has escaped a £10m fine under new rules Continue Reading
News 04 Nov 2022

UK government approach to space industry lacks coherence and investment

As satellite broadband industry rockets, report from Commons Science and Technology Committee criticises government’s failures in key technical areas and continues to question value to taxpayer of OneWeb joint venture Continue Reading
News 03 Nov 2022

Global coalition reaffirms commitment to fight ransomware

Representatives of 36 countries, as well as the EU, attended the second International Counter Ransomware Initiative Summit in Washington DC Continue Reading
News 02 Nov 2022

Shadow digital secretary outlines Labour’s tech priorities

Labour’s digital and technology plans focus on reining in the power of the tech giants, boosting connectivity across the UK, and improving online safety Continue Reading
Opinion 02 Nov 2022

Can crypto recover from the crash of 2022?

What does the crypto wipeout of 2022 mean for an increasingly turbulent economy and can crypto bounce back in the months and years ahead? Crucially, how will regulators react? Continue Reading
News 01 Nov 2022

Report reveals ‘clear gaps’ in UK’s broadband safety net

Latest update on progress of broadband roll-out guarantees from April to September 2022 shows worrying signs that as the cost-of-living crisis rolls on, swathes of the UK population could be priced out of gaining acceptable broadband Continue Reading
News 01 Nov 2022

NCSC looks back on year of ‘profound change’ for cyber

The NCSC ramped up its support for UK plc in the past 12 months, but it was events beyond the UK’s borders that proved the most impactful Continue Reading
Opinion 01 Nov 2022

The rise and risks of sovereign data strategies

Data and analytics leaders need to understand what is happening now to mitigate risk and exploit data-driven opportunities Continue Reading
Opinion 31 Oct 2022

How to build consumer trust with a privacy-by-design approach

Undertaken with the right mindset and technology, privacy by design delivers value to consumers and builds trust for the long term Continue Reading
Opinion 31 Oct 2022

The risk of losing our EU data adequacy agreement is real

While some may welcome the government’s ambition to shake up the UK’s data protection regime, Westminster should be wary of drifting too far from the path charted by our US and European partners Continue Reading
Feature 31 Oct 2022

AI experts question tech industry’s ethical commitments

The massive proliferation of ethical frameworks for artificial intelligence has done little to change how the technology is developed and deployed, with experts questioning the tech industry’s commitment to making it a positive social force Continue Reading
Podcast 28 Oct 2022

Top 50 women in UK tech, IR35 Truss fiasco – Computer Weekly Downtime Upload podcast

The team reflects on the announcement of the Most Influential Women in UK Technology 2022, the IR35 reforms being scrapped, then not, and Dreamforce & Oracle Cloud World in the US Continue Reading
News 27 Oct 2022

NHS to get new national CISO

The Department for Health and Social Care is seeking a new national CISO, who will be tasked with providing strategic cyber leadership, direction and expertise across DHSC and the wider NHS Continue Reading
News 27 Oct 2022

Santander calls for cooperation to tackle APP fraud

New report puts forward key recommendations that the banking sector, government and other industries could take to tackle authorised push payment fraud Continue Reading