Data export: EU provides more clarity after Schrems II

In documents published last week, the EU provided some welcome clarity on how organisations should address the invalidation of Privacy Shield as a basis for exporting personal data from the EU. On 10 November 2020, the European Data Protection Board (EDPB) adopted recommendations on ‘supplemental measures’, which can be considered to ensure compliance with the …

Read moreData export: EU provides more clarity after Schrems II

Europe proposes lower voice termination rates

On 25 August 2020, the European Commission proposed a regulation to set Europe-wide (lower) voice termination rates of 0.2 euro cents per minute for mobile voice and 0.07 euro cents per minute for fixed voice. The introduction of these new termination rate ceilings are subject to: a three year ‘glide path’ (to 1 Jan 2024) …

Read moreEurope proposes lower voice termination rates

UK confirms it will mostly implement new EU telecoms law (despite Brexit)

On 22 July 2020, the UK government confirmed that it would largely implement the European Electronic Communications Code – the EU’s updated, harmonised regulatory framework for telecoms – into UK law by 21 December 2020. This confirms the approach from that first announced in July 2019, providing welcome certainty, despite a change in the leader …

Read moreUK confirms it will mostly implement new EU telecoms law (despite Brexit)

How will Ofcom’s role change in 2020?

On 30 April 2020 Ofcom published its work plan for 2020/21, which flags two new material upcoming changes in its role for 2020: becoming the regulator for on-line harms (aka dealing with ‘fake news’ on social media) enforcing the UK’s policy to limit/exclude Chinese network vendors from UK 5G network deployment. Ofcom explains: “…the UK …

Read moreHow will Ofcom’s role change in 2020?

European Network and Information Security Directive adopted to address cyber-threats

On 6 July 2016, the European Union (which for now includes the UK) adopted the Network and Information Security (or NIS) Directive. This imposes obligations on three sets of stakeholders:

Read moreEuropean Network and Information Security Directive adopted to address cyber-threats