On 28 September, the European Commission (“Commission”) announced that it had adopted two proposals aimed at bringing European liability rules into the digital age and addressing many of the new issues arising from novel technologies. The first, tasked with updating the existing regime under the Product Liability Directive

Continue Reading The EU readies its rules on liability for AI and the digital age

The proposed Cyber Resilience Act seeks to establish fundamental requirements for all products with digital elements and thereby ensure greater cybersecurity

On 15 September 2022, the European Commission presented its proposal for the Cyber Resilience Act (Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL on horizontal

Continue Reading The European Commission’s proposal for the Cyber Resilience Act

The growth of the metaverse emphasizes the need to address the cybersecurity challenges posed by this new multimedia environment.

It is increasingly likely that the metaverse will be subject to cyberattacks that pose a real risk to both the companies that choose to be active in the metaverse and the
Continue Reading Metaverse and cybersecurity, what are the challenges for the future?

In parallel to the proposal for a Regulation on Artificial Intelligence,[1] the European Commission has also presented a proposal for the new Machinery Regulation 2021[2] (Machinery Regulation), that will replace the Machinery Directive currently in force (Directive 2006/42/EC).[3]

In the first part of our analysis (available here
Continue Reading The interplay between the new Machinery Regulation and Artificial Intelligence, IoT, cybersecurity and the human-machine relationship

On 10 November 2021, the UK Supreme Court in a unanimous judgment allowed Google’s appeal against the Court of Appeal decision granting Mr Lloyd permission to continue his representative claim (i.e. a US-style opt-out “class action”) against Google. The judgment brings very welcome clarification in a rapidly evolving area of
Continue Reading Lloyd v Google – Supreme Court Judgment – report and impacts on data protection and mass claims in the UK

Since its inception 30 years ago, the Computer Misuse Act 1990 (CMA) has acted as the primary legislative sword and shield of the UK against a threatening, and ever-growing, cloud of cyber-enabled crime. It is no longer the case that those exploiting an organisation’s threat-vectors exist in dark basements wearing
Continue Reading A Blunted Sword and a Chipped Shield: A call for development to the Computer Misuse Act 1990

In the wake of several high-profile cybersecurity incidents, President Biden yesterday issued an “Executive Order on Improving the Nation’s Cybersecurity.”

The Order sets forth new requirements for federal agencies and government service providers and addresses topics including updating government contracts to remove barriers to sharing threat information, modernizing federal government
Continue Reading President Biden issues broad-ranging Executive Order on cybersecurity

By: Tony Samp, Steven R. Phillips, Charles Dent and Nathaniel J. Bell

The House and Senate have voted to send this year’s National Defense Authorization Act – which includes the most substantial legislation addressing artificial intelligence (AI) approved by Congress to date – to President Trump, who has
Continue Reading Landmark AI legislation advances toward becoming law

by Jim Halpert, Andrew A. Kingman and Andrew Serwin

As the business community takes stock of the 2020 election results, it should place particular significance on the passage of Proposition 24, the California Privacy Rights Act (CPRA), by about a 12 percent margin. The CPRA makes significant changes to
Continue Reading California ballot initiative passes, significantly altering the California Consumer Privacy Act

by: Victoria Lee and Andrew Serwin

In the latest episode of DLA Piper’s Beyond the Curve podcast, Victoria Lee, co-chair of the firm’s global Technology sector, talks with Andrew Serwin, US chair and global co-chair of DLA Piper’s Cybersecurity and Data Protection, Privacy and Security practices, about the recent Schrems
Continue Reading Beyond the Curve podcast: Impact of the Schrems II decision