Privacy & Cybersecurity Update – January 2021

A great roundup of what’s going on from Skadden, Arps. One section particularly of note to our UK business:

The EU-U.K. Trade and Cooperation Agreement (TCA) addresses many of the questions left open regarding the post-Brexit relationship of the U.K. and EU with respect to data protection and digital trade.


In this month’s edition, we examine the European Commission’s Digital Services Act and its potential regulatory impact, the National Institute of Standards and Technology’s draft guidance on internet-of-things devices’ cybersecurity, and the FTC’s settlements with two companies over their privacy policies and deceptive data retention practices. We also analyze data protection and digital trade in the EU and U.K. post-Brexit.

European Commission’s Proposed Digital Services Act Could Enhance Regulatory Reform in EU

National Institute of Standards and Technology Releases Draft Guidance on Internet of Things Device Cybersecurity

FTC Reaches Settlement With Flo Health, Inc. Regarding Its Misleading Privacy and Data Sharing Practices

FTC Settles With Everalbum Over Deceptive Practices Regarding Facial Recognition Technology and Data Deletion Practices

Data Protection and Digital Trade Post-Brexit

Original article