Featured documents
R (Greyhound Board of Great Britain Ltd) v Welsh Ministers [2026] EWHC 670 (Admin) What are the practical implications of this case? The ruling reinforces the constitutional divide between the courts and the legislature. It explains that the scheme and framework of the Government of Wales Act 2006 (GWA 2006) embody that separation of powers, and that any judicial attempt to recognise and enforce a common law obligation on Welsh Ministers to consult prior to introducing legislation in the Senedd would trespass upon that boundary. This is not a departure from established principle; case law has already upheld comparable rules for lawmakers in Scotland and at Westminster. However, this is the first express confirmation of the position for Welsh lawmakers, and the first time this dimension of the GWA 2006 has been analysed in such depth. The court examined earlier
The solution arrived through the United Nations Compensation Commission (UNCC), a quasi‑judicial body handling mass claims, created under UN Security Council Resolution 687. By addressing environmental harm—most notably via its ‘F4’ claim class—the UNCC set a seminal benchmark shaping how international law and contemporary arbitral panels allocate financial responsibility for wartime ecological devastation. With present-day wars in areas such as Eastern Europe and the Middle East bringing dam breaches, strikes on chemical facilities, and the burning of farmland, the UNCC’s legacy endures as an essential reference point for states, global investors, and companies engaged in post‑conflict arbitration. The F4 claims: Quantifying the unquantifiable Prior to the 1990s, mechanisms in international law for war reparations overwhelmingly favoured property loss, foregone earnings, and bodily injury. The natural world was commonly treated as a mute, non-compensable victim of armed hostilities...
Understanding the farming business as a business Many farms still use long-standing structures that arose by habit, not strategy. Sole traders, informal partnerships and outdated partnership deeds are common. While once effective, such setups can cause major issues around succession, tax planning and involving the next generation. A corporate team can take a fresh, business-led view of the farm, asking: Who owns the land and other critical assets? Who manages daily operations? Who carries the risk and who enjoys the return? What is the enduring plan for succession? From this review, the team can confirm whether the current setup is fit for purpose or if an alternative — for example an updated partnership agreement, a company, a limited liability partnership, or a blended model — would better meet the family’s aims. Tax efficiency through joined-up advice Tax sits at the centre of most
Most recent News
New Risk & Compliance forecast as at 15 October 2025 Our Risk & Compliance forecast dated 15 October 2025 monitors proposed regulatory developments affecting risk and compliance, helping you prepare for any updates that might impact your organisation. Use it to plan for any changes relevant to your organisation. Please review it in detail; however, key points that ought to be on your radar are highlighted below as you assess priorities now. New items we’re tracking this month Economic Crime and Corporate Transparency Act 2023 ( Consequential, Incidental and Miscellaneous Provisions) Regulations 2025 ( SI 2025/1037)—published on 23 September 2025. They revise a range of primary and secondary legislation as a consequence of ECCTA 2023, which scrapped the requirement for companies to maintain their own versions of registers......
Risk & Compliance weekly highlights—16 October 2025 In this issue: Data Protection Sanctions AML, CTF & Counter- Proliferation Financing Cybersecurity Other Risk & Compliance updates this week Daily and weekly news alerts Trackers New and updated content Data Protection When pseudonymised data gets personal ( EDPS v SRB) This appeal considered whether pseudonymised information must always be treated as personal data under the General Data Protection Regulation ( Regulation ( EU) 2016/679). The Court of Justice dismissed the appeal in part, offering guidance on three areas: how pseudonymised data should be classified; what counts as data ‘relating to’ an individual; and the transparency duties when sharing data with third parties. The Court rejected the stance that pseudonymised data is invariably personal in all scenarios. Where effective measures prevent a recipient from re-identifying individuals, and the...
According to an official paper dated 8 October 2025, the European Commission intends to publish guidance on the EU AI Act’s relationship with other digital rules starting in Q3 2026, implying the documents could appear shortly before or after core provisions begin to apply. An annex to the Apply AI Strategy—an effort to accelerate AI uptake in priority industries—states the Commission will ‘develop guidelines on the EU AI Act’s interplay with other Union law from Q3 2026’. The annex outlines timelines for planned AI measure. Some projects are pinned to precise quarters, while others are slated to kick off from a broader window, implying activity may not commence until that point. Overall, the schedule signals a staggered roll-out across actions......
Cyber resilience needs to be built in from the very start, not bolted on after terms are settled. Bringing legal teams into procurement at an early stage allows organisations to set expectations before contracts are concluded, ensuring protections are workable, clear and aligned to supplier practice. This early involvement reduces the likelihood of retrofitting clauses and promotes more integrated risk management. Before the contract lay the groundwork early Effective resilience planning should start before the contract is signed. Legal teams should collaborate with stakeholders to evaluate: applicable laws and frameworks by sector and service where the solution sits within the wider business ecosystem how it connects to other systems—connectivity can pose greater risk than criticality the supplier’s visibility of its own supply chain, including indirect dependencies who holds responsibility for different layers of technology, particularly in cloud...
In this edition: AML, CTF & counter-proliferation financing Lex Talk®Risk & Compliance: a Lexis®Nexis community Daily and weekly news alerts Trackers New and updated content AML, CTF & counter-proliferation financing AML, CTF & counter-proliferation financing Government departments update ECCTA guidance on AML information sharing measures The Home Office, HM Treasury, Ministry of Justice, Companies House, the Serious Fraud Office and the Department for Business and Trade have refreshed guidance on information sharing under the Economic Crime and Corporate Transparency Act 2023. Issued on 3 October 2025, the revised guidance explains how anti-money laundering ( AML) regulated businesses can share customer data, either directly or through third-party intermediaries, in order to prevent, identify and investigate economic crime......
In this issue: Sanctions AML, CTF & counter-proliferation financing Other financial crime Cybersecurity Other Risk & Compliance updates this week Lex Talk®Risk & Compliance: a Lexis®Nexis community Daily and weekly news alerts Trackers New and updated content Sanctions OFSI has imposed a £152,750 penalty on Colorcon Limited, a UK-registered subsidiary of Colorcon Inc. and supplier to the pharmaceutical sector, for breaching the Russia ( Sanctions) ( EU Exit) Regulations 2019. Colorcon’s Moscow office executed 79 payments totalling £128,277.72 to accounts at designated Russian financial institutions, contravening UK measures linked to Russia’s unlawful 2022 invasion of Ukraine. While 44 payments were initially covered by General Licence INT/2022/2055384, the firm failed to meet the licence’s reporting duties and continued transactions after it expired. OFSI assessed the case as serious, pointing to deficient internal controls, delayed...
Polling analysed by Wakefield Research, spanning 5,750 businesses between July 2025 and August 2025, highlighted the intensity of cyberattacks on companies. In total, 30% of participants reported declines in business performance measures—such as share price—after an incident. Meanwhile, 29% of those surveyed said they faced increased expenditure associated with notifying affected customers about the incident. The research indicated that the same proportion also struggled to attract new business in the aftermath of an attack, underscoring the commercial drag that follows. Eddie Lamb, global head of cyber at Hiscox, cautioned that no organisation can afford to underestimate the ramifications of a cyberattack. He stressed that such events do not merely disrupt day‑to‑day operations; they can threaten a company’s very survival......
The High Court ruled earlier in September 2025 that unqualified employees cannot conduct litigation, even under the supervision of a qualified lawyer The High Court’s early September 2025 ruling bars unqualified staff from conducting litigation, even when overseen by a qualified lawyer. The move has unsettled the legality of passing litigation tasks to paralegals and trainees. Victoria Morrison- Hughes, managing director of Integral Legal Costs and vice-chair of the Association of Costs Lawyers, cautioned that the sector is gripped by significant fear, as everyday working practices could now breach the law and leave both employers and employees at risk of committing a criminal offence. She noted the impact is already being felt across the industry, with widespread and growing concern. The decision of 16 September 2025 arose from a dispute between Charles Russell Speechlys LLP and clients Julia Mazur and Jerome Stuart, after the pair failed to...
The EU’s executive reported that Belgium, Denmark, Germany, Estonia, Greece, Italy, Cyprus, Croatia, Poland, Slovakia and Sweden had not ensured access to data on the beneficial ownership of trusts and other entities by the July 2025 cut-off. According to the European Commission, as of now 11 Member States have yet to confirm their full transposition by this initial legal deadline. It added that phasing in the sixth AML directive is crucial to avoiding weaknesses in their financial systems and......
In this issue: Data Protection Sanctions Other Risk & Compliance updates this week Daily and weekly news alerts Trackers New and updated content Data Protection ICO reminds small businesses to protect personal data as cyber-crimes rise The Information Commissioner’s Office ( ICO) has urged small businesses to bolster cyber security in response to a continuing rise in cyber-attacks, with government figures showing 7.7 million incidents in the past year. The ICO underlined that, while some attacks are sophisticated, many organisations still disregard essential controls and basic safeguards. To reduce risks and safeguard personal data, the ICO advises: Regular encrypted backups of data Robust passwords plus multi-factor authentication Vigilance when dealing with phishing emails Secure use of devices and networks Restricted access to sensitive information Proper disposal of obsolete...
International sanctions regimes Sanctions frameworks work best when states act in unison to penalise offenders and when companies intensify their compliance efforts. Yet each nation’s regime develops on its own, making divergence between systems unavoidable. This stems from sanctions serving as instruments of foreign policy, shaped by varied legal architectures, languages and, above all, the political and policy choices of sovereign governments and their institutions. There are many instances where US, EU and UK measures have aligned, split and shifted—sometimes separately, sometimes in co-ordinated fashion—at pivotal moments. These shifts bear on live cross-border disputes and on global businesses throughout the supply chain, impacting suppliers, clients and end users alike. This news analysis offers a concise overview of the distinct regimes, with a particular emphasis on measures targeting Russia. It examines key points of divergence and what they mean for companies and...
In this issue: Data Protection and cybersecurity Sanctions Other Practice Compliance updates this week Daily and weekly news alerts New and updated content Data Protection and cybersecurity ICO dispels myths on storage and access technologies The Information Commissioner’s Office ( ICO) has addressed widespread misconceptions about how the Privacy and Electronic Communications Regulations ( PECR) apply to storage and access technologies, including cookies, tracking pixels and device fingerprinting. It confirmed PECR is not confined to personal data, that what is ‘strictly necessary’ must be judged from the user’s viewpoint, and that consent is required for purposes that are not exempt. The ICO also indicated that a draft impact assessment has been issued and will be finalised after consultation. See: LNB News 12/09/2025 26. EDPB opens consultation on draft guidance on the DSA– GDPR interplay The European Data Protection Board ( EDPB) has...
UK companies face uncertainties in cybersecurity regulation UK businesses remain unsure about forthcoming cyber security rules as lawmakers step up pressure on the government to bring forward the Cyber Security and Resilience Bill as soon as possible, following attacks on high-profile British companies. A draft is anticipated in Parliament within the next few weeks, yet the schedule could shift due to the recent ministerial reshuffle. When challenged by opposition politicians on 9 September 2025 and 10 September 2025, Labour lawmakers speaking for the government declined to give a firm date, stating that new legislation would arrive “when parliamentary time allows”. The Bill is intended to refresh the UK’s cyber security framework to align with the NIS 2 Directive. A policy statement from April 2025 indicates it would bring further sectors and their suppliers into the scope of mandatory regulatory duties, tighten oversight, and raise...
Risk & Compliance weekly highlights—11 September 2025 In this issue: Data protection Sanctions AML, CTF & counter-proliferation financing Other financial crime Other Risk & Compliance updates this week Daily and weekly news alerts Trackers New and updated content Data protection Data ( Use and Access) Act 2025 ( Commencement No 2) Regulations 2025 SI 2025/982: Selected provisions of the Data ( Use and Access) Act 2025 ( DUAA 2025) take effect on 30 September 2025. See LNB News 05/09/2025 23. Data ( Use and Access) Act 2025 ( Commencement No 3 and Transitional and Saving Provisions) Regulations 2025 SI 2025/996: Additional elements of DUAA 2025 begin on 5 September 2025 and 17 November 2025, with transitional and saving measures also provided. See LNB News 05/09/2025 10. ICO finalises updated encryption guidance following...
On 30 July 2025, the Information Commissioner’s Office ( ICO) released refreshed guidance on how ‘profiling tools’ are used within trust and safety workflows by relevant actors. The document clarifies key data protection and privacy issues for those undertaking profiling, to meet obligations under UK data protection legislation and the Online Safety Act 2023 ( OSA 2023). It is aimed at relevant parties engaged in trust and safety functions. Profiling Article 4(4) of the Assimilated Regulation ( EU) 2016/679 ( UK GDPR) describes profiling as any automated processing of personal data employed to assess certain personal facets of an individual, notably a person’s job performance, financial circumstances, health, and other traits or behaviours. Profiling tools are the mechanisms that ingest, analyse, and produce assessments or forecasts about personal characteristics inferred from someone’s data. Organisations deploy these tools chiefly to spot and curb harmful online conduct,...
OPBAS informed the bodies, via a letter dated 8 September, that it had identified scope for improvement after reviewing a sample of suspicious activity reports sent to the National Crime Agency ( NCA). Professional body supervisors ( PBSs) submit SARs, setting out suspected financial crime, to the NCA. These organisations also oversee law and accountancy practices that file their own additional SARs. They include the Association of Chartered Accountants and the Law Society and Solicitors Regulation Authority. OPBAS evaluated the calibre of sample SARs provided by two legal and two accountancy professional body supervisors, which it did not identify, and concluded there was room to enhance their further effectiveness and overall quality......
The meeting followed closely after the DOJ released its new white-collar enforcement strategy in May 2025 and, in June 2025, respectively, its guidance on enforcing the Foreign Corrupt Practices Act ( FCPA), underscoring the SFO’s revitalised drive for assertive corporate enforcement. That direction has been evident since Ephgrave assumed leadership of the SFO in September 2023, publicly pledging to accelerate investigations, and to cultivate influence and leverage through partnerships at home and abroad. Although the SFO and DOJ have long co-operated, the DOJ’s pronouncement suggests a further, welcome step towards Ephgrave’s aim for the SFO to become the preferred, default collaborator in practice. The manual explicitly envisages bringing in suitable foreign law enforcement bodies, including the SFO, at an early stage in investigations and matters touching US interests, where relevant. It instructs that, prior to opening a fresh FCPA case, US...
Risk & Compliance weekly highlights—4 September 2025 In this issue: Data protection Financial sanctions AML, CTF & counter-proliferation financing Other financial crime Cybersecurity Other Risk & Compliance updates this week Lex Talk®Risk & Compliance: a Lexis®Nexis community Daily and weekly news alerts Trackers New and updated content Data protection ICO launches consultation on data protection complaint handling framework The Information Commissioner’s Office ( ICO) has opened a consultation proposing updates to its approach for handling data protection complaints, including a new assessment framework to determine which complaints proceed to investigation. The proposals address rising volumes—42,881 in 2024/25—and align with the Data ( Use and Access) Act, which requires organisations to maintain internal data protection complaint procedures. The framework is intended to channel resources towards higher-risk matters while sustaining oversight of systemic concerns. The...
LLC Eurochem North- West-2 and another company v Societe Generale S. A. and other companies [2025] EWHC 1938 ( Comm) This is a highly important decision for practitioners dealing with international sanctions, as the court delivers a detailed examination of how EU sanctions interface with domestic sanctions authorities in such circumstances. It also provides an in-depth consideration of the notions of ‘ownership’ and ‘control’ for the purpose of sanctions, including where trust arrangements feature, which is not unusual when there is a link to a designated individual. The ruling is likewise of real assistance to those working with performance bonds and related trade finance instruments in the sanctions context. The background facts The relevant parties The dispute stemmed from six on-demand bonds ( Bonds) issued in 2021 and 2022 by Société Générale ( Soc Gen) and ING Bank ( ING) (the Banks) in favour of Euro Chem North-...
Since the failure to prevent fraud offence took effect on the first day of September 2025, there has been sustained debate about the compliance hurdles it will create for businesses and its likely impact on curbing corporate fraud. The offence, set out in section 199 of the Economic Crime and Corporate Transparency Act 2023 ( ECCTA 2023), seeks to make large organisations answerable for fraud carried out by employees, agents, subsidiaries, or others who deliver services for or on the organisation’s behalf; where the conduct was intended to benefit the organisation or its clients. It encompasses various specified predicate fraud offences, as well as aiding, abetting, counselling, or procuring the commission of those offences. Illustrative examples include misleading sales tactics, concealing material information from consumers or investors, and dishonest behaviour in financial markets. The offence only applies where there is a UK...
Popular documents
When evaluating a general damages claim, the practitioner ought initially to refer to the Judicial College Guidelines (JCG)...
This Practice Note This Practice Note reviews mechanisms used in settling litigation. A Tomlin order consists of a consent order paired with a schedule. It operates to stay proceedings on terms that have been agreed. The provisions contained in the schedule may remain confidential. This Practice Note describes the scope of confidentiality attaching to the schedule and sets out how it differs from a standard consent order. Sample wording for a Tomlin order is included, alongside links to precedents, as well as guidance on court approval. It also addresses varying, setting aside and enforcing a Tomlin order, including the considerations the court will take into account when handling applications for each. Further guidance is provided on interpreting and applying the relevant provisions of the CPR; however, some courts and divisions impose very specific requirements for both drafting and approval, and for approaching the schedule and confidentiality issues. Accordingly, you must consider the particular rules and court guide provisions in the forum where your claim is proceeding when drawing up the Tomlin order...
Date [ date ] Parties [ name of Landlord ] [ of OR incorporated in England and Wales (company registration number [ number ]) with its registered office at ] [ address ] (Landlord) [ name of Tenant ] [ of OR incorporated in England and Wales (company registration number [ number ]) with its registered office at ] [ address ] (Tenant) [ [ name of Guarantor ] [ of OR incorporated in England and Wales (company registration number [ number ]) with its registered office at ] [ address ] (Guarantor) ] [ [ name of Mortgagee ] [ of OR incorporated in England and Wales (company registration number [ number ]) with its registered office at ] [ address ] (Mortgagee) ] Definitions Within this Deed, the terms below shall be interpreted as follows: [ Annual Rent • the annual sum reserved under the Lease; ] [ Insurance Rent • the Tenant’s share of the Landlord’s costs of insuring the Property (as set out in the Lease); ] Lease • the lease of the Property dated [ date ], entered into between (1) [ the Landlord OR [ name ...
I, [ name ], of [ address ], solemnly and sincerely state that: [ Matters to be verified, set out in numbered paragraphs ] I make this solemn statement in good conscience, believing it to be true, and pursuant to the provisions of the Statutory Declarations Act 1835. DECLARED at [ details ] this [ day ] day of [ month and year ] Before me ................................................................................ [ signature of the person before whom the declaration is made ] A [ commissioner for oaths OR [ solicitor OR [ insert other qualification ] ] authorised to administer oaths ]...
Discover more from LexisNexis
