About Information Law
Lexis®+ Information Law is an online practical guidance product for contentious and non-contentious lawyers dealing with Data Protection, Confidential Information, Privacy, Cybersecurity and Freedom of Information issues.
Data protection
Get a good background to data protection law and view practical guidance focused on data protection matters for commercial transactions. See also our UK GDPR compliant pro-party clauses for use in commercial agreements.
Confidential Information
Protect trade secrets and know-how using the law of confidentiality. Get information and a set of pro-party confidentiality agreements here.
Key information law developments
View a range of trackers to enable horizon scanning and monitoring of key developments. The trackers are maintained - making them useful for keeping up-to-date and for business development.
Lexis+® Information Law
It’s our online practical guidance product for contentious and non-contentious lawyers dealing with Data Protection, Confidential Information, Privacy, Cybersecurity and Freedom of Information issues.
Our Information Law Experts
Adam Gillert
Hamish Corner
Anthony Taylor
Hazel Grant
Nicola Fulford
Latest Information Law News
The Department for Science, Innovation and Technology (DSIT) released results on 5 March 2025 from a pilot of its new Cyber Governance Code of...
Welcome to this week’s edition of the Information Law weekly highlights, a hand-picked summary of news analysis, updates and new content related to...
The Department for Science, Innovation and Technology (DSIT) has commissioned research to map and evaluate existing best practices for managing risks...
The Department for Science, Innovation and Technology (DSIT) has published its response to the consultation on the Code of Practice for Software...
The European Commission has initiated a process to enable free and safe data flows between the EU and the European Patent Organisation (EPO) by...
Latest Information Law Practice Notes
Data protection negotiation guide—controller: processor—prior consultation with the ICOThis Practice Note forms part of the Data Protection...
DeedsUnder English law, legally binding agreements can be made orally, in writing or by deed.This Practice Notice considers the circumstances in which...
Children and data protection law—the age appropriate design code (children’s code)The UK data protection authority, the Information Commissioner’s...
The UK General Data Protection Regulation (UK GDPR)This Practice Note provides a summary of the UK GDPR regime. For a higher-level introduction to UK...
Brexit—applicable law and jurisdiction—consumer contracts and disputes [Archived]ARCHIVED: This Practice Note has been archived and is not...
Latest Information Law Precedents
Policy—social media (short form)FORTHCOMING CHANGE: The Information Commissioner’s Office (ICO) has published draft guidance on keeping employment...
Policy—social mediaFORTHCOMING CHANGE: In December 2023 the Information Commissioner’s Office (ICO) published draft guidance on keeping employment...
Privacy policy—general commercial organisation—customer-facingWe take your privacy very seriously. Please read this privacy policy carefully as it...
UK GDPR—2022 standard contractual clauses (SCCs) for the transfer of personal data outside the UK—International Data Transfer Agreement (IDTA) In...
UK GDPR—2022 standard contractual clauses (SCCs) for the transfer of personal data outside the UK—Addendum to 2021 EU SCCsIn briefChapter V (Transfers...
Latest Information Law Q&As
Featured Information Law content
The UK General Data Protection Regulation (UK GDPR)—Navigator
The UK General Data Protection Regulation (UK GDPR)—NavigatorThis Practice Note serves as a reference guide to the Retained Regulation (EU) 2016/679...
Managing a breach of confidentiality or information security
Managing a breach of confidentiality or information securityMany companies and government bodies (such as HMRC) have been exposed to loss of...
Are recorded conversations between lay people legal and can they be used in legal proceedings?
What are the differences between joint controllers and controllers in common under the GDPR? What is the difference in liability if a party is a joint controller with another, compared to where the parties are controllers in common?
The Information Commissioner’s Office (ICO)
The Information Commissioner’s Office (ICO)The Information Commissioner’s Office (ICO) is the UK’s independent regulator designed to uphold...
Privacy law—misuse of private information
Privacy law—misuse of private informationThe tort of misuse of private information is focused on ‘the protection of human autonomy and dignity—the...
Data protection, privacy and confidential information case law tracker
Data protection, privacy and confidential information case law trackerThis Practice Note tracks noteworthy High Court, Court of Appeal and Supreme...
Is someone’s voice personal identifiable information under GDPR? If someone is to do a voice over for content of some training for a business, would a consent form be needed?
Introduction to the EU GDPR and UK GDPR
Introduction to the EU GDPR and UK GDPRThis Practice Note provides a high-level introduction to the EU’s General Data Protection Regulation,...
Key definitions under data protection law
Key definitions under data protection lawThis Practice Note provides further guidance on key definitions used in the EU’s General Data Protection...
UK GDPR—extra-territorial reach
UK GDPR—extra-territorial reachThis Practice Note discusses the territorial scope of the regime established by the United Kingdom General Data...
Letter of claim—breach of confidence
Letter of claim—breach of confidence[Insert name and address of recipient]Dear [insert organisation name],[Name of client] and confidential...
Confidential information, privacy and injunctions
Confidential information, privacy and injunctionsThis Practice Note deals with the general principles of obtaining an injunction relating to...
What does IP completion day mean for Information Law? [Archived]
What does IP completion day mean for Information Law? [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.11 pm (GMT) on 31...
List of data protection clauses and agreements for commercial transactions and personal data processing and sharing
List of data protection clauses and agreements for commercial transactions and personal data processing and sharingThis Practice Note is a...
Can a company cap its liability for breach of its data protection obligations under a contract?
The UK General Data Protection Regulation (UK GDPR)
The UK General Data Protection Regulation (UK GDPR)This Practice Note provides a summary of the UK GDPR regime. For a higher-level introduction to UK...
Trade secrets and confidential information—protection and enforcement
Trade secrets and confidential information—protection and enforcementThis Practice Note sets out the protection available for trade secrets and...
Associated legal terms
‘Confidential Information’—one-way—pro-discloser
means all information of a confidential nature (in whatever form) which relates to the Purpose and is received or acquired (whether directly or indirectly) by [Party B][, its Authorised Persons][ or its Affiliates] including: (a) any know-how, trade secrets, financial, commercial, technical, tactical or strategic information of any kind; (b) all information produced, developed or derived from information disclosed pursuant to this Agreement; (c) all information agreed to be, or marked as, confidential; (d) the information specified in Schedule [insert Schedule number] to this Agreement; (e) any information [Party B][, its Affiliates][ or [its OR their ]Authorised Persons] knows, or could reasonably be expected to know, is confidential; and (f) [the terms and existence of this Agreement.] but excluding any information which: (a) is, or was already known or available to [Party B], otherwise than pursuant to or through breach of any confidentiality obligation owed to [Party A]; (b) is, or becomes, in the public domain other than through any breach of this Agreement (save that any publicly available information shall be classified as Confidential Information where it is compiled in a form that is not in the public domain); (c) is disclosed to [Party B] without any obligation of confidence to [Party A] by a third party who is not itself under or in breach of any obligation of confidentiality; (d) is developed by or on behalf of [Party B] in circumstances where the developing party has not had direct or indirect access to the information disclosed, provided that [Party B] provides satisfactory evidence of the same to [Party A]; (e) [Party A] agrees in writing does not constitute Confidential Information.
European Union (Withdrawal) Act 2018
An Act to repeal the European Communities Act 1972 and make other provision in connection with the withdrawal of the United Kingdom from the EU.
Joint controller
Defined under the EU GDPR and UK GDPR as one of two or more controllers that jointly determine the purposes and means of the processing of personal data.
CONTACT US
