The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. In this article we cover the applicability of NIS2 to digital infrastructure providers and digital services providers (collectively “digital providers”), an expansion in scope under NIS2 that represents a major shift for the EU’s digital sector ...
An exploration of key aspects of the Employment Rights Bill which will impact living sector employers; day 1 right to claim unfair dismissal, changes to the use of zero hour contracts and the extension of the duty to protect employees from harassment. Employment Rights Bill – A Shake Up for the Living Sector The Employment Rights Bill (“ERB”) is poised to introduce significant change to the UK’s workforce ...
When must controllers respond to DSARs with more than just a copy of personal data? Is it enough to point to a privacy notice to satisfy the extra GDPR requirements? UK and EU courts are increasingly saying that it's not enough. Handling data subject access requests (DSARs) is an ongoing compliance burden for many organisations. In this series, we consider how different strategies can cut the task down to size ...
A federal judge in Texas has struck down the recently implemented United States Department of Labor (“DOL”) federal overtime salary threshold rule. This 2024 rule raised the minimum salary level for certain employees to be exempt from overtime pay requirements under the Fair Labor Standards Act (“FLSA”). Generally, the FLSA requires employers to pay non-exempt employees 1.5x their regular rate for hours worked in excess of 40 in a work week ...
Our final article in this series discussing different protected characteristics and the discrimination claims they give rise to, focuses on age, how employers can fall foul of the law and the steps they need to take to avoid age discrimination claims. What is age discrimination? The Equality Act 2010 prohibits both direct and indirect age discrimination, as well as age related harassment and victimisation ...
HSE involvement The Bill (if granted Royal Assent) will require the Health and Safety Executive (HSE) to publish a Health and Safety Framework on violence and harassment in the workplace, including violence against women and girls and gender-based violence. Employer duties Emphasis is placed on preventative measures which should be taken by employers ...
November 15, 2024 By: Artin Betpera, Christina Morgan and David Liu I. Introduction Any business operating a website needs to be aware of the proliferation of lawsuits targeting websites which use any type of customer tracking technology. While advantageous to the business in its marketing efforts, the data collection subjects the business to potential liability ...
Chapter 647 of the Laws of Malta, titled the Markets In Crypto-Assets Act (hereinafter referred to as “Chapter 647”), integrates all aspects of Regulation (EU) 2023/1114 of the European Parliament and Council on markets in crypto-assets (“MiCAR”) ...
The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. Given that cloud-based architecture is now considered the industry-norm, data centres have become the custodians of the vast majority of our digital economy and form a core aspect of any critical infrastructure or service ...
In October of 2024, the Office of Federal Contract Compliance Programs (“OFCCP”) announced it had received two Freedom of Information Act (“FOIA”) requests to disclose EEO-1 Type 2 Consolidated Report data, which is filed annually by prime federal government contractors and first tier sub-contractors. The Type 2 report is one of the annual filings required for multiple-establishment covered contractors. The report includes demographic data for all U.S ...
On October 11, 2024, the United States Department of Defense (DOD) published a final rule implementing its Cybersecurity Maturity Model Certification (CMMC) program, which is designed to verify that defense contractors are adequately protecting sensitive information from cybersecurity threats. The CMMC applies to contractors who process, store, or transmit Controlled Unclassified Information (CUI) or Federal Contract Information (FCI), which is most DOD contractors ...
The domestic implementation of NIS2 continues to advance at pace. In this note, we outline Italy’s formal adoption of NIS2, highlight the key dates you need to know for registration, compliance and enforcement. For further information about NIS2, including sector-specific guidance, please visit our Resiliency page ...
The Krogerus Data Symposium 2024 brought together hundreds of data and AI experts on 23 October at Lasipalatsi to discuss the upcoming changes brought by the Data Act and the AI Act. This year, the programme highlighted both the practical challenges and opportunities that technological advancements and the EU legislator's responses to them will present to companies' operations ...
The published findings of the FCA's recent survey on culture and non-financial misconduct demonstrates how financial services firms have been responding to Employment issues and what might be on the horizon ...
Employers in California, and others with California employees and worksites, should take note of new laws set to take effect on January 1, 2025, as well as laws that have recently gone into effect that may impact their operations. Understanding the changes is essential for compliance, and Dinsmore’s labor and employment attorneys are available to assist with navigating these regulatory changes to ensure your organization remains compliant ...
1. Introduction We are not only living in a digital age but also in an age where individuals and businesses increasingly depend on banks for their day-to-day activities. The convergence of these two factors is compounded with the increased use of artificial intelligence (AI) both generally and specifically in the banking sector. From a general perspective, AI start-ups in 2013 received USD 2 bn in investments globally which increased twelvefold in 2018 to USD 24 bn [1] ...
By: Ruben Gotlieb, Esq. As many of you know by now, Donald Trump has won a second term as president. Additionally, Republicans in the U.S. Senate will have a small majority in Congress. It is still uncertain who will hold a majority in the House of Representatives. What does this mean for tax legislation set to expire, or “sunset,” at the end of 2025? To pass a permanent tax law, a majority of at least 60 senators is needed. Without this, the law can only last for 10 years ...
Resolutions and meetings of Guernsey Companies The articles of incorporation (the “Articles”) of a company must always be checked for specific requirements relating to general meetings. Note, however, that in certain circumstances the Articles may be overridden by The Companies (Guernsey) Law, 2008 (as amended) (the “Law”), which provides for certain basic shareholder protections in specific circumstances ...
The Product Regulation and Metrology Bill (the “Bill”) was published on 4 September 2024 and will provide the Secretary of State with wide regulation making powers to replace, amend or update product safety legislation in the UK. Why is the Bill needed? The Department for Business and Trade’s impact assessment of the Bill stated that the “UK lacks powers to end recognition or to recognise new and updated EU regulations in GB” ...
Integrating AI tools at work is not without danger. Three experts from the independent Belgian law firm, ALTIUS, explain how companies should best guard against ethical risks, data protection, intellectual property rights, and trade secrets. “It is essential that organisations teach their people to work with AI safely and responsibly ...
In the past month, the U.S. Citizenship and Immigration Services (“USCIS”) has launched a voluntary I-9 verification process called “E-Verify+” aimed at improving the I-9 and E-Verify processes and streamlining employer workflows. E-Verify+, which was originally referred to as “E-Verify NextGen,” has been in the works for several years ...
****Dear Ladies and Gentlemen!**** Since 2022 restrictions are imposed with respect to transactions with persons from “unfriendly” countries in the Russian Federation. Thus, for a certain number of transactions/operations (i.e. issuance/repayment of loans, execution of financial instruments, distribution of dividends/profits etc ...
The gaming industry, which has transformed from a niche market to a global powerhouse, has seen a significant surge in venture capital (VC) investment over the past few years. This trend is driven by the rapid growth of the gaming market, advancements in technology, and the increasing societal acceptance of gaming as a mainstream form of entertainment. Here’s a closer look at the emerging trends and key players in VC investment within the gaming sector ...
The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. The major changes brought about by NIS2 include stricter security measures, new incident reporting obligations and will substantially expand enforcement powers for regulators ...
How far can employers search for personal data to answer an access request? Can they check personal mobiles or laptops - or personal emails on a work device? Here we look at invading staff privacy to respect someone else's data protection rights. In this series we have already looked at taking control of data subject access requests (DSARs) through data protection by design, and understanding when you can refuse to comply with a DSAR ...
