Insights

On 8 August, the UK Department for Science, Innovation & Technology (“DSIT”) published a report titled “Emerging technologies and their effect on cyber security” (the “Report”). It examines how the convergence of AI, IoT, Quantum, Edge Computing, Blockchain and other emerging technologies is transforming the cyber threat landscape. We’ve summarised below some of their key findings and takeaways. In the pursuit of growth and efficiencies many companies are considering how to adopt emerging technology into their operational processes, and the Report provides a useful guide as to emerging cyber risks and where the UK Government’s attention is focused as it launches the Cyber Resilience Bill later this year.

On 1 August 2025, the UK’s Arbitration Act 2025 (the “Act”) came into force. It applies to arbitrations and arbitration-related court proceedings commenced on or after that date and reinforces London’s status as a leading hub for international arbitration.

On 11 July 2025, the European Data Protection Supervisor, (“EDPS”), the independent supervisory authority, which oversees the processing of personal data by EU institutions, bodies, offices and agencies, (“EUIs”) confirmed that the European Commission, (“Commission”) has succeeded in bringing its use of Microsoft 365 within the requirements of applicable European data protection rules thanks to additional measures adopted by both the Commission and Microsoft.

The case of Jardine Strategic Limited v Oasis Investments II Master Fund Ltd and 80 others (No 2) (Bermuda) [2025] UKPC 34 addresses significant issues regarding shareholder rights and legal professional privilege in corporate transactions. In particular, the case concerned the Shareholder Rule. This was a principle shareholders relied on to prevent companies from asserting privilege over documents, thus requiring companies to hand privileged documents over to them. On 24 July 2025, the Privy Council unanimously held that the Shareholder Rule no longer applies. Although the case concerned the law of Bermuda, the Privy Council issued a declaration (known as a Willers v Joyce direction) that its decision is binding on English courts as well. In so doing, it overturned an aspect of English law in force for almost 140 years.

Ofcom, the UK’s communications and appointed online safety regulator, is following through on its commitment to protect children online. From 25 July 2025, Ofcom will enforce its Protection of Children Codes of Practice (the “Code”) under the Online Safety Act 2023 - a significant milestone for digital safety in the UK.

On 2 June 2025, the UK Government unveiled its 2025 Strategic Defence Review titled the “Plan for Change for Defence” (the “2025 SDR”), heralding it as the dawn of a new era in British defence and security. Hailed as a landmark by the Prime Minister, the 2025 SDR underscores the urgent need to address daily cyber threats and embrace the rapid evolution of technology that is reshaping the battlefield. It also emphasises both the necessity of and the opportunities that this approach affords to create a new partnership with industry and radically reform procurement, leading to the creation of a “defence dividend” of jobs, wealth and opportunity throughout the UK.

Ransomware attacks have escalated in frequency and sophistication, posing a significant threat to national security and critical national infrastructure (“CNI”). Cybersecurity has emerged as a core pillar of the UK’s national defence strategy, as set out in the recent Strategic Defence Review. The Government has recognised cyber as a crucial area for modern conflict. Ransomware attacks are a significant method of attack, as a form of cybercrime which involves malicious software encrypting data and a ransom demand for its restoration or to prevent its publication. The UK has experienced a notable rise in such incidents, including attacks on Synnovis (an NHS diagnostics service provider) and Southern Water (a water company providing water to a region of the UK), both in 2024.

On June 30, 2025, President Trump issued Executive Order 14312 effectively lifting (or beginning the process of lifting) most of the sanctions on Syria. Executive Order 14312 cites the leadership changes and the policies of the new Syrian government under President Ahmed al-Sharaa as the reasons for the removal of sanctions. On the same day, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) and the Department of State took steps to implement the termination of the program by, among other actions, delisting appropriate individuals and entities from the List of Specially Designated Nationals and Blocked Persons (SDN List). These actions followed the initial sanctions relief provided on May 23, 2025 by OFAC, the Financial Crimes Enforcement Network (FinCEN), and the State Department.

On this 4thof July, Britain was also celebrating. The first country to secure a trade deal with the Trump Administration, the U.K. can indeed celebrate the so-called Special Relationship.

In a previous client alert on a recent Civil Justice Council (“CJC”) report on litigation funding in England and Wales we discussed the issue of whether payment waterfalls providing funders with payment priority are compliant with the Damages-Based Agreements Regulations 2013 (“DBA Regulations”), the issue being a matter to be heard on appeal in June 2025. Funders will be pleased to hear that the answer is “yes”. The Court of Appeal has held that the DBA Regulations focuses on whether a funding agreement determines the amount of a funder’s fees by reference to the damages awarded to the successful litigant. The fact that a funder may receive its fees from the proceeds is not enough in itself for the arrangement to fall under the DBA Regulations.

For the past few years since its official launch, as well as getting to grips with the developing procedures and case law of the Unified Patent Court (UPC), representatives have been using the UPC’s Case Management System (CMS) in its first iteration.

To date the Trump Administration has issued multiple proclamations imposing varying rates of import duties on steel and aluminum and certain derivatives, including construction materials. These measures have added volatility and financial pressures to the construction sector both in the United States and abroad. Most recently, on June 3, 2025, President Donald Trump issued a proclamation under Section 232 of the Trade Expansion Act of 1962, doubling tariffs on imported steel and aluminum from 25% to 50%, effective June 4, 2025. This action aims to counteract the continued influx of lower-priced, excess steel and aluminum imports that, according to the administration, threaten U.S. national security by undermining domestic production capacity. The proclamation notes that while prior tariffs provided some price support, they were insufficient to achieve the necessary capacity utilization rates for sustained industry health and defense readiness. The United Kingdom remains temporarily exempt at the 25% rate until July 9, per the U.S.-U.K. Economic Prosperity Deal.

The UK’s 2025 Strategic Defence Review (SDR)[1] marks a significant shift in national defence policy, emphasising enhanced military readiness and domestic industrial growth. This comprehensive plan is poised to reshape the landscape for defence contractors across the country. This follows the enactment of the UK’s new Procurement Act 2023, which took effect on 24 February 2025, also impacting defence contractors. More information on this can be found in our alert: What Defence Contractors Need To Know About the New UK Procurement Act.

On 2 June 2025 the Civil Justice Council (a UK public body that advises on civil justice and civil procedure) (“CJC”) issued its Review of Litigation Funding Final Report (the “Report”). The CJC has provided comprehensive recommendations on the regulation and reform of litigation funding in England and Wales. The highlight recommendation of the Report is for the UK Government to remove third party litigation funding from the regulations and requirements of the Damages-Based Agreements Regulations 2013 (“DBA Regulations”), reversing the judgment of the Supreme Court in PACCAR.[1] Meanwhile, the UK Court of Appeal has recently endorsed a position that the Competition Appeal Tribunal (“CAT”) may order that third party funders of collective proceedings be paid first from litigation proceeds before claimants according to waterfall provisions in their funding agreements.

The English Court of Appeal has recently handed down a helpful judgment, clarifying the test for breach of duty in cases of alleged negligence by valuers. In short: (i) the valuation must fall outside a reasonable margin of error of the ‘correct’ valuation; and (ii) the valuer must have carried out the valuation in a way that no reasonably competent valuer could have done (the Bolam test).

On 6 May 2025, the UK government announced it had concluded a Free Trade Agreement (FTA) with India. A summary of the deal has been published by the Department for Business and Trade. With widespread uncertainty concerning global trade policy and tariffs, the conclusion of the deal is being celebrated as a triumph.

Earlier this month the National Cyber Security Centre (“NCSC”) hosted CYBERUK, the UK government’s flagship cybersecurity event. On 7 May the NCSC launched their report “Impact of AI on cyber threat from now to 2027” (“Report”), whilst the Department for Science, Innovation and Technology (“DSIT”) published a new voluntary Software Security Code of Practice, (“Code”). Cybersecurity and AI are under the spotlight in the UK. Eyes are also on the recently unveiled US/UK trade agreement and the possibility of a further transatlantic tech-focused agreement to cement prior Technology and Data Partnership discussions to create a US/UK “digital bridge.”

The UK’s new Procurement Act 2023 (the “Act”) took effect on 24 February 2025. More information on this can be found in our alerts: Understanding the UK’s New Procurement Regime in 2025 and Changes to the UK Procurement Regime in 2025: An Introduction to the Debarment List.

On 24 April 2025, the UK Serious Fraud Office (“SFO”) unveiled its new External Guidance on Corporate Co-Operation and Enforcement in relation to Corporate Criminal Offending (the “Guidance”)[1]to enhance corporate compliance, transparency and cooperation in combatting fraud, bribery and corruption in the UK. This comprehensive guidance is critical for both UK-based entities and international companies operating under UK jurisdiction.

The Annual Global Fund Finance Symposium was held in Miami from 26-28 February 2025. The symposium typically brings together all major market participants in fund finance and this year was no exception, with over 2,500 delegates attending.