Internet of things (IoT)—data, privacy and cybersecurity issues in the EU

Copyright © 2025 LexisNexis
Produced in partnership with Professor Guido Noto La Diega PhD FHEA Avv of University of Strathclyde
Practice notes

Internet of things (IoT)—data, privacy and cybersecurity issues in the EU

Copyright © 2025 LexisNexis

Produced in partnership with Professor Guido Noto La Diega PhD FHEA Avv of University of Strathclyde

Practice notes
imgtext

This Practice Note focuses on the data protection and privacy implications of the internet of things (IoT) and the data collected by it in the EU.

The following key areas are examined:

  1. What is the internet of things?

  2. Data protection

  3. The identified key themes for concern

  4. Article 29 Working Party opinion on recent developments on the internet of things

  5. Cookies and equivalent tools

  6. Practical actions regarding data protection

  7. Cybersecurity

  8. EU Data Governance Act and EU Data Act

  9. Revised EU Product Liability Directive

  10. EU AI Act

  11. e-Evidence Regulation

For more detailed information on the key commercial issues arising in relation to the IoT, see Practice Note: Internet of Things (IoT)—key legal issues in the EU.

Note that specific issues related to automated vehicles are not covered in this Practice Note, for more information, see Practice Note: Automated vehicles—data, privacy and cybersecurity issues in the EU.

For information on

Guido Noto La Diega
Professor Guido Noto La Diega, PhD FHEA Avv

Professor of Law, University of Strathclyde

Guido Noto La Diega (they/he) is Professor of Law, Technology and Innovation at the University of Strathclyde, Glasgow, where they lead the LLM/MSc Law, Technology and Innovation, as well as the namesake research cluster. Prior to this post, Professor Noto La Diega held the Chair in Intellectual Property and Technology Law at the University of Stirling and previously worked at Northumbria University, Queen Mary University of London, Buckinghamshire New University, and the University of Glasgow. Noto La Diega served as a visiting professor in the US (University of Connecticut), Italy (Università degli Studi di Trento, Università degli Studi di Macerata), Russia (Novosibirsk State University) and Brazil (Universidade Estacio de Sa). After being called to the Bar (Italy, non-practising) and having completed a PhD in Private Law at the Università degli Studi di Palermo under Professor Luca Nivarra, which included a semester spent at the Max Planck Institute for Innovation and Competition (Munich), Noto La Diega migrated to the UK in 2014 becoming a permanent lecturer in 2016, a senior lecturer in 2018, an associate professor in 2020 and a professor in 2023.
Sicily-born and naturalised British, Professor Noto La Diega is a leading expert in EU, UK, and Italian law and technology. A prolific scholar and an award-winning teacher, they are the author or editor of three books and more than 50 law review articles, book chapters, and reports. Noto La Diega is the UK Principal Investigator of the AHRC-DFG-funded project “From Smart Technology to Smart Consumer Law” and previously co-founded and led the Just AI Lab, the Scottish Law and Innovation Network, and the Northumbria Internet & Society Research Group. He is a member of a number of learned society and currently serves on the Research Grants Committee of the Society of Legal Scholars.
Professor Noto La Diega has spoken at events organised by policymakers (World Trade Organization, UK Intellectual Property Office, etc.), professional bodies (European Trade Union Institute, Faculty of Advocates, etc.) and leading research institutions (University of Cambridge, University of Tokyo, etc.). Noto La Diega’s lectures and presentations have spanned over 30 countries on five continents. They are a frequent commentator in the national and international media. Their publications have appeared in English and Italian, and translated into Chinese, Russian, and Korean; they have been cited by the EU Court of Justice's Advocate General, the House of Lords, the UK Intellectual Property Office, the World Economic Forum, the European Parliament, and the Council of Europe, amongst others. Open access to them available on the University of Strathclyde’s Pure.

Read moreRead more
Powered by Lexis+®
Jurisdiction(s):
European Union

Popular documents

What is the difference between an appeal and a review?

What is the difference between an appeal and a review?What is an appeal?An appeal in insolvency proceedings is no different to an appeal in normal litigation. An appeal will be allowed only if the appeal court is satisfied that the decision of the lower court was 'wrong' or 'unjust because of a

Financial clean break orders in family proceedings

Financial clean break orders in family proceedingsDuty of the court to consider a clean breakAlthough there is no presumption in favour of there being a financial clean break between parties on divorce, the court is under a duty to consider whether it would be appropriate to exercise its powers so

Late payment penalties—inheritance tax

Late payment penalties—inheritance taxWhile interest often accrues on overdue tax, the late payment of certain taxes may also attract a penalty. For information on the interest accruing on overdue tax, see Practice Notes: IHT—payment deadlines on death—Interest on IHT and Interest on late paid

Where are misrepresentations made? Jurisdictional traps for the unwary (Bellmare Holdings Ltd v Wells)

Dispute Resolution analysis: The High Court has provided concise guidance as to how misrepresentation should be analysed when considering jurisdictional gateways. Under Article 5(3) of the Lugano Convention, in negligent misstatement cases, the place of the event giving rise to damage is normally