Information security

Copyright © 2025 LexisNexis

Information security has become a business-critical issue. It is not something you can tackle in isolation, as there are obvious overlaps with cyber security and data protection.

Identifying what information you hold

There are a number of management tools you can use to identify what information you hold and are legally responsible for, such as an information audit.

An information audit is a process through which you:

  1. identify and consider all of the information you hold (or are responsible for), and

  2. consider how and why the information is processed

To undertake an effective audit, you need to consider each class of information you hold

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

Existing user? Sign-in TAKE A FREE TRIAL
Powered by Lexis+®
Latest Risk & Compliance News

NCA secures first UK convictions for breaches of Russian sanctions

The National Crime Agency (NCA) has secured the UK’s first convictions for breaches of Russian linked financial sanctions. The former Russian-appointed Governor of Sevastopol, Dmitrii Ovsiannikov, and his brother, Alexei Ovsiannikov, were found guilty at Southwark Crown Court of multiple breaches of financial sanctions and money laundering. Despite being sanctioned since 2017, Dmitrii relocated to London and acquired a British passport in January 2023.  He attempted to open a bank account and purchase a luxury car with funds transferred by his wife, but his accounts were frozen upon discovery of his sanctioned status. Alexei facilitated these breaches by purchasing the car in 2023 and providing funds for private school fees for Dmitrii’s children in 2024. Dmitrii was convicted on eight counts of breaching Russian financial sanctions and two counts of money laundering, while Alexei was found guilty of two counts of sanctions breaches. The Crown Prosecution Service and NCA intend to pursue proceeds of crime proceedings to recover the illegally obtained cash and assets.

The UK’s approach to modern slavery

Risk & Compliance analysis: When the UK’s Modern Slavery Act 2015 (MSA 2015) passed into law it was viewed as a world-leading piece of legislation. That the UK is now looking to bring in bigger penalties for non-compliance with it is a clear sign that the world has moved on since the Act’s introduction. Dr Angelika Hellweger, legal director at Rahman Ravelli considers the UK’s current approach to modern slavery.

Risk & Compliance weekly highlights—10 April 2025

This week's edition of Risk & Compliance weekly highlights includes the European Commission's updated Model Contractual Clauses for AI Procurement and the applicability of the EU's AI rulebook, a Legal Services Threat Assessment Report by OFSI, the Serious Fraud Office's new fraud prevention powers and covert tactics to address self-reporting declines and an analysis of the UK’s current approach to modern slavery.

Insolvency Service publishes new guidance on director disqualification sanctions

The Insolvency Service has published a new guidance outlining the implementation of director disqualification sanctions under section 3A of the Sanctions and Anti-Money Laundering Act 2018. The guidance details how sanctions ban individuals from directing UK companies or foreign companies with UK connections, unless licensed. Enforcement responsibilities lie with the Insolvency Service, with breaches carrying penalties of up to two years imprisonment. The rules apply across all UK nations under the Company Directors Disqualification Act 1986 and equivalent Northern Ireland legislation.

View Risk & Compliance by content type :
News
Practice notes
Precedents
Q&As

Popular documents

Information and security audit questionnaire for outsourcing service provider

Information and security audit questionnaire for outsourcing service providerPlease complete, sign and date this questionnaire. You should then return the completed questionnaire to [insert details of relevant person within customer organisation] at [insert address].Name of [prospective] outsourcing

Micklefield clauses

Micklefield clausesWhat is a Micklefield clause?It is common for employee share plans to provide that, on termination of employment (or when an employee is given or receives notice of termination of employment), subsisting share awards will be forfeited and subsisting share options will lapse.It is

What is the difference between an appeal and a review?

What is the difference between an appeal and a review?What is an appeal?An appeal in insolvency proceedings is no different to an appeal in normal litigation. An appeal will be allowed only if the appeal court is satisfied that the decision of the lower court was 'wrong' or 'unjust because of a

Financial clean break orders in family proceedings

Financial clean break orders in family proceedingsDuty of the court to consider a clean breakAlthough there is no presumption in favour of there being a financial clean break between parties on divorce, the court is under a duty to consider whether it would be appropriate to exercise its powers so
Information and security audit questionnaire for outsourcing service provider

Information and security audit questionnaire for outsourcing service provider

Information and security audit questionnaire for outsourcing service providerPlease complete, sign and date this questionnaire. You should then return the completed questionnaire to [insert details of relevant person within customer organisation] at [insert address].Name of [prospective] outsourcing

Micklefield clauses

Micklefield clauses

Micklefield clausesWhat is a Micklefield clause?It is common for employee share plans to provide that, on termination of employment (or when an employee is given or receives notice of termination of employment), subsisting share awards will be forfeited and subsisting share options will lapse.It is

What is the difference between an appeal and a review?

What is the difference between an appeal and a review?

What is the difference between an appeal and a review?What is an appeal?An appeal in insolvency proceedings is no different to an appeal in normal litigation. An appeal will be allowed only if the appeal court is satisfied that the decision of the lower court was 'wrong' or 'unjust because of a

Financial clean break orders in family proceedings

Financial clean break orders in family proceedings

Financial clean break orders in family proceedingsDuty of the court to consider a clean breakAlthough there is no presumption in favour of there being a financial clean break between parties on divorce, the court is under a duty to consider whether it would be appropriate to exercise its powers so