<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/">
  <channel>
    <title>Latest from Mishcon de Reya</title>
    <link>https://www.mishcon.com</link>
    <atom:link href="https://www.mishcon.com/siteinformation/rss" rel="self" type="application/rss+xml" />
    <description>This RSS feed displays the very latest news, events, articles and briefings from the Mishcon de Reya Solicitors web site at www.mishcon.com</description>
    <language>en-gb</language>
    <copyright>Copyright 2026 Mishcon de Reya LLP. All rights reserved. www.mishcon.com</copyright>
    <image>
      <title>Latest from Mishcon de Reya</title>
      <url>https://www.mishcon.com/assets/managed/images/cache/AD7QWAAASEAEYAAAAAAABEAAJQAP777774BQAAAAVECHMAQAAA.jpg</url>
      <link>https://www.mishcon.com</link>
    </image>
    <generator>PilotSite RSS Generator</generator>
    <webMaster>feedback@mishcon.com (Mishcon De Reya)</webMaster>
    <lastBuildDate>Wed, 08 Jul 2026 18:48:12 +0000</lastBuildDate>
    <ttl>20</ttl>
    <item>
      <title><![CDATA[Mishcon de Reya’s new Managing Partner takes over role]]></title>
      <link>https://www.mishcon.com/news/mishcon-de-reyas-new-managing-partner-takes-over-role</link>
      <guid>https://www.mishcon.com/news/mishcon-de-reyas-new-managing-partner-takes-over-role</guid>
      <description><![CDATA[Daniel Naftalin has taken up his role as Mishcon de Reya’s new Managing Partner. Daniel was elected by partners earlier this year and takes over today from outgoing Managing Partner James Libson following a transition period.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 08 Jul 2026 09:39:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><a href="https://www.mishcon.com/people/daniel-naftalin">Daniel Naftalin</a> has taken up his role as Mishcon de Reya&rsquo;s new Managing Partner. Daniel was elected by partners earlier this year and takes over today from&nbsp;outgoing Managing Partner <a href="https://www.mishcon.com/people/james-libson">James Libson</a>&nbsp;following a transition period. James Libson has been made Senior Partner at the firm.</p>

<p>Daniel joined the firm in 1998 and has been a Partner since&nbsp;2004.&nbsp;Until April, he was Chair of the Employment department and sat on the Management Board. Daniel&rsquo;s fee earning work includes advising on complex contentious and non-contentious employment matters and, as Chair of Employment, he oversaw substantial growth of the firm&rsquo;s market-leading Employment practice.</p>

<p>Daniel serves as Managing Partner supported by an Executive Partner team of <a href="https://www.mishcon.com/people/johanna-walsh">Johanna Walsh</a> and <a href="https://www.mishcon.com/people/daniel-levy">Daniel Levy</a> alongside the Chairs and other senior management, including the Operations Board.&nbsp;In addition to supporting Daniel in the management of the firm and the delivery of its strategic objectives, the Executive Partners will continue to advise and support their clients without change.</p>

<p>Johanna Walsh leads the White Collar Crime and Investigations team, as well as one of two divisions in the Dispute Resolution department. She joined the firm as a partner in January 2019 and sat on the firm&rsquo;s Management Board for five years until 2025.&nbsp;</p>

<p>Daniel Levy leads the Real Estate Litigation team and is Division Head of Property Litigation and Construction. He joined the&nbsp;firm in 2006, founding and leading the Real Estate Litigation team. He has sat on&nbsp;the&nbsp;Management Board since 2025 and, for the past two years, has served as Partners&rsquo; representative on&nbsp;the Operations&nbsp;Board.&nbsp;</p>

<p>Daniel Naftalin, Managing Partner of Mishcon de Reya, said:</p>

<p><em>&ldquo;I am very pleased to be taking over as Managing Partner and very proud that my partners put their faith in me to lead this exceptional firm. I care deeply about Mishcon de Reya, its people, what it stands for, and its place in an increasingly competitive market. Over the last few months, I have been working with my team to consult and develop our strategy to face our challenges and thrive. I was involved in the creation of our 2030 vision and our three pillars of private, real estate and innovation are fundamental to how I see the firm succeeding.&nbsp;</em></p>

<p><em>&ldquo;I want to guide&nbsp;Mishcon de Reya&nbsp;to a successful,&nbsp;profitable,&nbsp;and sustainable future. I want it to remain a values-led firm that rewards hard work and excellence and that people are proud to work for and to recommend. My team and I will work tirelessly to ensure that the firm is even stronger at the end of my tenure than it is today.&rdquo;</em></p>

<p>Paying tribute to his predecessor James Libson, Daniel said:&nbsp;</p>

<p><em>&ldquo;James epitomises everything that is special about Mishcon de Reya, someone who is passionate about the law and has blended that with an exceptional commercial and strategic vision of what it takes for this firm to succeed. He has been involved in so many of the cases that have made us great and I am delighted that the Board has asked him to take on the honorary title of Senior Partner and that we will all continue to benefit from his extraordinary wisdom and love for this firm.&rdquo;</em></p>

<p>Following Daniel&rsquo;s election as Managing Partner, the Employment department elected partner <a href="https://www.mishcon.com/people/susannah-kintish">Susannah Kintish</a> as Chair of the Employment department from 1 April 2026.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACOD2AAA7AA7YAAAAAAAB6AB7QAP777774AABIYASIIESCAAAA.jpg" length="5802" />
    </item>
    <item>
      <title><![CDATA[Employment Festival 2026]]></title>
      <link>https://www.mishcon.com/news/events/current/employment-festival-2026</link>
      <guid>https://www.mishcon.com/news/events/current/employment-festival-2026</guid>
      <description><![CDATA[Set across a full day, we have carefully curated a festival of topics and ideas focused on the far‑reaching changes introduced by the Employment Rights Act as well as developments relating to business protection that are highly relevant to employers. You can expect to hear from leading employment lawyers and industry specialists, who will help you navigate what lies ahead.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 06 Oct 2026 09:00:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Due to the vast and complex nature of the changes coming into force under the Employment Rights Act, we are replacing our usual bi-annual seminar with a full-day festival, giving you the opportunity to immerse yourself in the future of employment law and explore the issues that matter most to your organisation.</p>

<p>Set across a full day, we have carefully curated a festival of topics and ideas focused on the far‑reaching changes introduced by the Employment Rights Act as well as developments relating to business protection that are highly relevant to employers.&nbsp; You can expect to hear from leading employment lawyers and industry specialists, who will help you navigate what lies ahead.</p>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADCUKAAA7AA7YAAAAAAAB6AB7QAP7777777AGAAALIHC2BYAAI.jpg" length="8848" />
    </item>
    <item>
      <title><![CDATA[Ruth Ellis granted posthumous conditional pardon]]></title>
      <link>https://www.mishcon.com/news/ruth-ellis-granted-posthumous-conditional-pardon</link>
      <guid>https://www.mishcon.com/news/ruth-ellis-granted-posthumous-conditional-pardon</guid>
      <description><![CDATA[The King has granted a posthumous conditional pardon to Ruth Ellis, the last woman executed in the UK, recognising historic injustice and domestic abuse.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 08 Jul 2026 17:10:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>The King has today granted a posthumous conditional pardon to Ruth Ellis, the last woman to be executed in the UK, following an announcement by Deputy Prime Minister and Justice Secretary David Lammy in Parliament.</p>

<p>Ellis was hanged in July 1955 after being convicted of murdering her partner, David Blakely, in north London. She was the last woman in Britain to be hanged, and her family have long campaigned for a pardon.</p>

<p>Her family, supported pro bono by law firm Mishcon de Reya, argued that evidence of the abuse she suffered at the hands of Blakely was not properly considered at trial. Victor Mishcon was brought in to fight for a last minute reprieve for Ellis during her lifetime, as such, this is a full circle moment for the firm.</p>

<p><a href="https://www.mishcon.com/people/katy-colton">Katy Colton</a>, Partner and Head of Politics and Law, said: <em>&quot;The granting of a posthumous conditional pardon to Ruth Ellis is a landmark moment &mdash; for her family, for the British justice system, and for every victim of domestic abuse failed by the courts.</em></p>

<p><em>&quot;Mishcon de Reya is proud to have acted for Ruth&#39;s grandchildren, alongside our colleagues at Matrix Chambers. This application had to be brought. The evidence was compelling, and we are pleased the Justice Secretary has recommended His Majesty grant Ruth Ellis a posthumous conditional pardon.</em></p>

<p><em>&quot;Today&#39;s decision does not only right a wrong done over seventy years ago. It sends a clear signal about the aspirations of our justice system. Violence against women and girls remains a national emergency. The Government&#39;s public acknowledgement that the abuse Ruth Ellis endured should have impacted the outcome of her case reflects an important principle: that survivors of domestic abuse today deserve a justice system that properly understands and recognises the impact of that abuse.</em></p>

<p><em>&quot;Our founder, Victor Mishcon, who fought to secure a last-minute reprieve for Ruth, would be immensely proud. We congratulate Ruth&#39;s grandchildren on their tenacity and courage in pursuing this application. It has been a privilege to stand alongside them as a firm.&quot;</em></p>

<p><a href="https://www.mishcon.com/people/grace-houghton">Grace Houghton</a>, Associate, Mishcon de Reya LLP, Solicitor for the Grandchildren said: <em>&quot;The granting of a posthumous conditional pardon for Ruth Ellis is both legally significant and historically important.</em></p>

<p><em>&quot;The application demonstrated, on the evidence, that Ruth suffered from what is now understood as battered woman syndrome, and that the cumulative impact of the abuse she sustained would, under the law as it stands today, have supported defences of both diminished responsibility and loss of control. Had Ruth Ellis been tried just two years later, following the passage of the Homicide Act 1957, the outcome would have been very different.</em></p>

<p><em>&quot;The Justice Secretary has exercised the Royal Prerogative of Mercy on a principled basis: that legal and social developments since 1955 make clear that the punishment imposed on Ruth was unjust.</em></p>

<p><em>&quot;Today&#39;s pardon is a reminder that the law must reflect on its own history - and, where it finds injustice, must acknowledge those failings. We are honoured to have acted for Ruth&#39;s family in securing this outcome, and we hope they can now begin to heal from the generational trauma that has haunted them for decades.&quot;</em></p>
]]></content:encoded>
      <category>Recent Work</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACSTYAAA7AA7YAAAAAAAB6AB7QAP777774AAAAAAAACAAAQAAA.jpg" length="11645" />
    </item>
    <item>
      <title><![CDATA[Removing the unfair dismissal cap: why regulated sectors face the highest stakes]]></title>
      <link>https://www.mishcon.com/news/removing-the-unfair-dismissal-cap-why-regulated-sectors-face-the-highest-stakes</link>
      <guid>https://www.mishcon.com/news/removing-the-unfair-dismissal-cap-why-regulated-sectors-face-the-highest-stakes</guid>
      <description><![CDATA[Regulated sectors tend to have mechanisms that limit the employability of individuals who are dismissed for regulatory reasons. Dismissals in certain contexts can therefore cause significant, or even career-impacting, losses to the employee, because they may prevent the employee from obtaining employment in the same sector either until the matter has been determined by a relevant regulator or at all.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 08 Jul 2026 16:47:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>The statutory cap on unfair dismissal claims is scheduled to be abolished from 1 January 2027.</li>
	<li>Anyone continuously employed for six months or more from that date has protection from unfair dismissal.</li>
	<li>Compensation for unfair dismissal is primarily based on financial loss.</li>
	<li>Dismissing employees in regulated sectors is going to become much higher risk as their financial losses are more likely to be significant and will no longer be capped.</li>
	<li>Exposure may be particularly acute in sectors with high value benefits, such as deferred variable compensation or equity or defined benefit pension schemes.</li>
</ul>

<h2>Background</h2>

<p>Regulated sectors tend to have mechanisms that limit the employability of individuals who are dismissed for regulatory reasons. Dismissals in certain contexts can therefore cause significant, or even career-impacting, losses to the employee, because they may prevent the employee from obtaining employment in the same sector either until the matter has been determined by a relevant regulator or at all.</p>

<p>Until now, unfair dismissal claims have been a weapon of limited benefit in these circumstances due to the cap on compensation, which is currently the lesser of a year&#39;s pay or &pound;123,543. Financial services employees who are subject to the FCA&#39;s (or PRA&#39;s) certification regime have found themselves in a particularly invidious position because they do not have direct recourse to the regulator. Obtaining an unfair dismissal finding can potentially recover a career and claimants have made good use of reinstatement orders in recent years to get around the compensation cap.</p>

<p>This article looks at the likely consequences of removing the unfair dismissal cap in regulated sectors, with a specific focus on financial services firms and on schools, but it will equally apply to other regulated sectors.</p>

<h2>What is changing and when?</h2>

<p>From 1 January 2027 there will no longer be a cap on compensation for unfair dismissal claims. Therefore, employees will be able to get compensation for their actual losses; if an employee who earns &pound;100,000 per annum is dismissed and is out of work for three years, they could in theory be awarded &pound;300,000 in compensation. The existing rules on mitigating losses (requiring claimants to take reasonable steps to find alternative work) and Polkey reductions (where an employer demonstrates there was a chance the employee would have been fairly dismissed in any event) will still apply.</p>

<p>The unfair dismissal qualifying service requirement is also changing. Instead of requiring two years&#39; qualifying service, anyone continuously employed for six months or more from 1 January 2027 will have unfair dismissal protection. You can <a href="https://www.mishcon.com/news/unfair-dismissal-rights-from-six-months-and-why-acting-at-five-months-may-not-be-enough">read about the implications of this change for employers here</a>.</p>

<h2>Financial services</h2>

<p>Employees who are subject to the certification regime require a &quot;regulatory reference&quot; from their former employer to obtain a role at another regulated firm. The regulatory reference form requires former employers to disclose whether they have concluded that the individual was not &quot;fit and proper&quot; to perform a regulated function, whether they have taken disciplinary action related to whether the individual was fit and proper, and any other information that may be relevant to such an assessment. They are also required to notify the regulator if they have reason to believe that the individual has committed a Conduct Rules breach.</p>

<p>The consequence of this regime is that it can be extremely difficult for an employee who is dismissed in certain circumstances to obtain alternative employment with another FCA- (or PRA-) regulated employer. Most regulated firms are unlikely to take a risk on an individual who has already been determined as not fit and proper by another firm. It can also prevent promotion to a senior management function, which requires approval from the regulator, who will take the former employer&#39;s fit and proper determination into account when making its assessment.</p>

<p>Until now, certified employees in the financial services sector have been in a particularly invidious position because, ultimately, the regulator will not determine whether the dismissal was valid, and yet if their former employer considers that they have engaged in conduct which calls into question their fitness and propriety or which might amount to a Conduct Rule breach, it can be extremely difficult to find alternative employment. There has been a recent trend for affected claimants successfully to use applications for reinstatement orders (for example <em>Weir v Citigroup Global Markets Limited</em> and <em>Jones v J P Morgan Securities plc</em>).</p>

<h2>Teachers in schools</h2>

<p>There are three related, but interconnected, routes where a dismissal of a teacher in a school can result in it being very difficult to obtain alternative employment in the same sector.</p>

<p>First, teachers are subject to regulatory approval by the Teaching Regulation Agency (TRA). If a teacher is dismissed for &quot;serious misconduct&quot;, or would have been dismissed had they not resigned beforehand, the school must make a referral to the TRA, which can determine if a prohibition order should be issued. A full TRA hearing typically takes over a year and sometimes much longer. In the meantime, the teacher is likely unable to work in their chosen profession.</p>

<p>Second, when asked to provide references for a teacher, schools must ensure the information confirms whether a teacher applicant is suitable to work with children and provide facts of any substantiated safeguarding concerns or allegations that meet the harm threshold. This renders it practically impossible for a teacher dismissed in such circumstances to obtain any role working with children (and for very good reasons).</p>

<p>Third, schools must make referrals to the Disclosure and Barring Service if they have decided to dismiss a teacher and they consider that one of the triggers for inclusion on the barred list applies.</p>

<h2>Liability for losses</h2>

<p>The implication of removing the unfair dismissal cap for regulated employers like financial services firms and schools is that employers can be on the hook for very high compensation claims if a dismissal in these circumstances is defective. If a financial services firm wrongly determines that a certified employee committed misconduct that renders them not fit and proper, or a school determines that a teacher was dismissed in circumstances that questions their suitability to work with children, the employee may be unlikely to be able to mitigate their losses at all before an unfair dismissal hearing.</p>

<p>The benefits associated with employment in these two sectors can also increase financial exposure. Financial services employees are typically partly paid, often to a significant proportion, in some form of deferred remuneration (for example long-term incentive awards) that can be lost on termination of employment. While such deferred remuneration arrangements are rare for teachers in school, most teachers have a valuable benefit in the form of a defined benefit pension in the Teachers&#39; Pension Scheme. Potential losses from losing access to such a scheme can be extremely high.</p>

<h2>What to do?</h2>

<p>The simple fact is that the stakes around holding a fair disciplinary process are about to get much higher. There are steps employers can take to protect their position:</p>

<ul>
	<li>It is invaluable to ensure that managers, and those who are advising them, are appropriately trained on conducting fair disciplinary processes. The above referenced reinstatement judgments highlight that even highly resourced global investment banks can get regulatory-related dismissals wrong.</li>
	<li>The possibility of significant pension losses forming part of unfair dismissal claims is another reason why those schools who are able to and have not yet done so may wish to consider withdrawing from the TPS.</li>
	<li>Employers should ensure their relevant policies and procedures are regularly reviewed and up-to-date and take into account the regulatory environment in which the employer operates, rather than using generic off-the-shelf precedents.</li>
	<li>Some employers who are able to do so are considering using the previously forgotten &quot;employee shareholder&quot; status, which removes employees from the ordinary unfair dismissal, regime in exchange for the employee receiving fully paid-up shares worth at least &pound;2,000.</li>
</ul>

<h2>How Mishcon de Reya can help</h2>

<p>Our <a href="https://www.mishcon.com/employment/team">Employment team</a> advises financial services firms, schools and other regulated employers on all aspects of disciplinary and dismissal processes, including regulatory obligations and the management of unfair dismissal risk. As the removal of the compensation cap approaches, we can help you review and strengthen your disciplinary procedures, advise on fit and proper assessments and regulatory reference obligations, and represent you in Employment Tribunal proceedings. Please contact us if you would like to discuss how these changes may affect your organisation.</p>

<p>&nbsp;</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AANCGAAA7AA7YAAAAAAAB6AB7QAP777774AAAAABAAEAABAAAA.jpg" length="6118" />
    </item>
    <item>
      <title><![CDATA[Six Mishcon de Reya Partners named in Spear's Legal Indices 2026]]></title>
      <link>https://www.mishcon.com/news/six-mishcon-de-reya-partners-named-in-spears-legal-indices-2026</link>
      <guid>https://www.mishcon.com/news/six-mishcon-de-reya-partners-named-in-spears-legal-indices-2026</guid>
      <description><![CDATA[Art Law Partners Karen Sanig and Amanda Gray, Head of Immigration, Steven Bostock, Immigration Partner, Maria Patsalos, Private Wealth and Immigration Partner, Kamal Rahman, and White Collar Crime and Investigations Partner, Matthew Ewens have been selected for inclusion in the Spear’s Legal Indices 2026.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 08 Jul 2026 14:45:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Art Law Partners <a href="https://www.mishcon.com/people/karen-sanig">Karen Sanig</a> and <a href="https://www.mishcon.com/people/amanda-gray">Amanda Gray</a>, Head of Immigration, <a href="https://www.mishcon.com/people/steven-bostock">Steven Bostock</a>, Immigration Partner, <a href="https://www.mishcon.com/people/maria-patsalos">Maria Patsalos</a>, Private Wealth and Immigration Partner, <a href="https://www.mishcon.com/people/kamal-rahman">Kamal Rahman</a>, and White Collar Crime and Investigations Partner, <a href="https://www.mishcon.com/people/matthew-ewens">Matthew Ewens</a> have been selected for inclusion in the Spear&rsquo;s Legal Indices 2026.</p>

<p>The Spear&rsquo;s Legal Indices&nbsp;are part of the wider Spear&#39;s private client ecosystem and recognise leading lawyers trusted by and advising high-net-worth and ultra-high-net-worth individuals in matters relating to wealth, assets, international mobility and complex legal affairs. &nbsp;The indices are designed to assist a global audience identify leading advisers operating at the highest level of the private client market.</p>

<p>The indices cover five core areas:&nbsp;</p>

<ul>
	<li>Art Lawyers - <a href="https://spearswms.com/law/best-art-lawyers-high-net-worth-individuals/#h-best-art-lawyers-the-complete-list">See the full Spear&#39;s art lawyers index</a></li>
	<li>Classic Car Lawyers</li>
	<li>Immigration Lawyers - <a href="https://spearswms.com/law/the-best-immigration-lawyers-for-high-net-worth-individuals/#h-best-immigration-lawyers-the-complete-list">See the full Spear&#39;s immigration lawyers index</a></li>
	<li>Criminal Lawyers - <a href="https://spearswms.com/law/best-criminal-lawyers-high-net-worth-individuals/#h-best-lawyers-for-criminal-and-white-collar-crime-the-complete-list">See the full Spear&#39;s criminal lawyers index</a></li>
	<li>Aviation &amp; Yachts Lawyers</li>
</ul>

<p>Inclusion is&nbsp;entirely merit-based&nbsp;and independently curated by the&nbsp;Spear&rsquo;s Research Unit.</p>

<p>See the full indices on the <a href="https://spearswms.com/indices/">Spear&#39;s website</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACEDKAAA7AA7YAAAAAAAB6AB7QAP777774AAAIIBRAG4IBQAAA.jpg" length="13468" />
    </item>
    <item>
      <title><![CDATA[Russia energy sanctions briefing: UK and EU responses to the war in Iran]]></title>
      <link>https://www.mishcon.com/news/russia-energy-sanctions-briefing-uk-and-eu-responses-to-the-war-in-iran</link>
      <guid>https://www.mishcon.com/news/russia-energy-sanctions-briefing-uk-and-eu-responses-to-the-war-in-iran</guid>
      <description><![CDATA[Explore how UK and EU energy sanctions on Russia are evolving in response to the war in Iran, with key updates on oil, gas, and compliance risks.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 08 Jul 2026 12:42:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>The UK has significantly tightened its Russia sanctions regime, expanding trade, energy and transport restrictions, including a ban on third-country processed Russian oil products and maritime transportation of Russian LNG. At the same time, it has issued targeted general licences to ease the pressure on energy prices caused by war in Iran.</li>
	<li>The EU has not followed the temporary easing of energy-related sanctions as a matter of policy. Its recent packages continue to treat Russian oil and gas as a circumvention and enforcement issue, with a particular focus on shadow fleet vessels, maritime services, tanker sales and non-Russian operators involved in the trade.</li>
	<li>If a final US-Iran deal is reached, energy, trading, shipping and financial services firms should expect further EU and UK restrictions on Russian oil and gas alongside an easing of Iran sanctions. For now, parties must ensure they are monitoring indirect sanctions exposure across their broader networks and, if relying on one of the UK&#39;s general licences, keep a close eye on revisions and expiry dates.</li>
</ul>

<p>The significant disruption to global energy supplies caused by the war in Iran has once more brought western sanctions against Russia&#39;s oil and gas sector into focus. The need to mitigate economic fall-out from the conflict has led to a softening of some sanctions on Russian energy products, and brought into relief increasing differences in emphasis between US sanctions policies on the one hand, and the EU and UK on the other.</p>

<p>The terms of the Memorandum of Understanding (MOU) between Iran and the US included a commitment to the <em>&quot;terminat[ion] of all types of sanctions&quot;</em> against Iran. Although, at the time of writing, President Trump has described the MOU as &quot;over&quot; in light of renewed attacks in the Strait of Hormuz, negotiations over peace terms with Iran are continuing. If a final peace deal is reached and sanctions against Iran are lifted, it seems likely that the UK and EU&#39;s divergence from the US will deepen &ndash; with consequences for the energy sector and beyond. Sanctions experts at Mishcon de Reya in London and August Debouzy in Paris provide an update on the current UK and EU positions and look at what could lie ahead if a final peace deal is reached.</p>

<h2>Signs of divergence before the Iran war</h2>

<p>Since 2022, international sanctions on Russia have been wide-ranging and extensive, targeting strategic sectors of Russia&#39;s economy, including banking, energy and defence. In the early stages of the Ukraine war, the US sanctions policies under President Biden were closely aligned with those of the UK and EU. A key example of this coordination was the price cap for Russian crude oil and refined oil products agreed between the G7, EU and partners in late 2022 and early 2023. This prohibited service providers (shipping companies, insurers, brokers) from the UK and coalition countries from facilitating the transport or trade of Russian oil, unless it was traded or sold at or below the agreed cap.</p>

<p>However, since President Trump took office in January 2025, there has been increasing divergence between US sanctions on Russia, and those imposed by the EU and UK. For example, the UK and EU have lowered the oil price cap on several occasions, most recently on 31 January 2026, to USD44.10 per barrel, whereas the US continues to apply the original cap of USD60 per barrel &ndash; a near 27 per cent difference.</p>

<p>The UK and EU have also maintained a notably stronger focus on Russia&#39;s &quot;shadow fleet&quot;: a fleet of ageing, often poorly maintained tankers used to transport Russian oil, typically under flags of countries with looser regulatory standards, in order to unlawfully circumvent the price cap. The UK and EU have each designated hundreds of shadow fleet vessels, as well as entities and individuals implicated in facilitating the shadow fleet, targeting entities established in India, China, Hong Kong and the UAE. By contrast, the US has not introduced any new designations in connection with the Russian shadow fleet since the end of the Biden Administration, although designations for Venezuelan and Iranian shadow fleets have continued.</p>

<h2>Current sanctions on the Russian oil and gas sector &ndash; what has changed since the Iran war began?</h2>

<h3>UK</h3>

<p>In order to ease pressure on the global energy supply caused by the war in Iran, the UK has issued two narrow General Trade Licences, permitting (i) <a href="https://www.gov.uk/government/publications/general-trade-licence-for-sanctioned-processed-oil-products/general-trade-licence-for-sanctioned-processed-oil-products">diesel and jet fuel processed in third countries from Russian crude oil to be imported into the UK</a> and (ii) <a href="https://www.gov.uk/government/publications/general-trade-licence-maritime-transportation-of-liquefied-natural-gas/general-trade-licence-maritime-transportation-of-liquefied-natural-gas">the supply of liquified natural gas (LNG) from the Sakhalin-2 LNG terminal or Yamal LNG terminal to a third country or between two third countries under contracts not exceeding one year</a>. Both licences expire on 1 January 2027 and can be revoked at any time earlier, although the Government has indicated it will endeavour to give four months&#39; notice if the first licence is revoked. If oil prices stabilise following a final peace deal, the licences may well be withdrawn before the expiry date.</p>

<p>However, it is clear that these limited exceptions do not represent a wider softening of the UK&#39;s stance towards Russia. The day after the licences were issued, the UK Government introduced numerous amendments to the existing suite of Russia sanctions, widening the scope of export prohibitions across a range of goods (including those related to emerging technologies such as AI), and introducing significant new restrictions on the Russian energy sector.</p>

<p>These restrictions expand the existing prohibition on the import, acquisition, supply and delivery of Russian-origin oil and oil products into the UK by now also prohibiting the import into the UK of any oil products that have been processed in a third country from crude oil originating in Russia, irrespective of the number of intermediate countries or processing stages involved. The prohibition also captures co-mingled products, where oil products derived from Russian crude are blended with non-Russian oil and oil products in a third country prior to import.&nbsp;</p>

<p>Alongside the tightening of rules on oil products, the new measures introduce a ban on the maritime transportation of Russian LNG, together with related ancillary services. The ban closely aligns with measures adopted by the EU and applies to any person who supplies or delivers such LNG by vessel, and any person who owns, controls, charters, or operates a vessel carrying the LNG or who is involved in its transfer (subject to limited exceptions in the general licence).</p>

<p>Enforcement of sanctions in the context of the shadow fleet has also stepped up. The UK&#39;s second set of criminal charges for breaches of the Russia sanctions were brought against John Ormerod in April 2026, for allegedly transferring funds in violation of sanctions laws. Few details of the transactions have been released, but Mr Ormerod was previously designated by the UK for acquiring tankers that became part of Russia&#39;s shadow fleet. Earlier this month, in an unprecedented operation, British forces also boarded and detained a Russian-linked oil tanker in the English Channel. One of the crew was arrested on suspicion of sanctions offences.</p>

<h3>EU</h3>

<p>The EU has, if anything, moved in the opposite direction from the targeted flexibility adopted by the UK. Rather than issuing general licences to ease energy sector pressure, the EU&#39;s recent measures treat Russian oil and gas primarily as a circumvention and enforcement problem. Any flexibility that has emerged is narrow, technical and reversible &ndash; a concession to energy security arithmetic, not a strategic softening on Russia. This is clear from the successive sanctions packages adopted since 2025. The 18th package lowered the crude oil price cap from USD 60 to USD 47.60 and introduced an automatic dynamic adjustment mechanism, first applied in January 2026, resulting in a new cap of USD 44.10 per barrel from 1 February 2026. The 19th package then tightened the focus on Russian energy, third-country banks, crypto providers and the shadow fleet, including additional vessel listings, a ban on reinsuring shadow fleet vessels, measures against third-country operators and transaction bans affecting banks and oil traders outside Russia.</p>

<p>The 20th package continues the same logic, with a stronger anti-circumvention architecture. It includes dedicated due diligence obligations for EU sellers of vessels, a mandatory &ldquo;no Russia&rdquo; clause in relevant sale contracts, measures targeting ports linked to the shadow fleet and oil price cap circumvention, and the legal basis for a future prohibition on the transport of Russian oil and petroleum products in coordination with the G7 and the Price Cap Coalition. It also extends pressure on financial services and crypto, including measures against Russian crypto-asset service providers and third-country financial institutions used to frustrate sanctions.</p>

<p>The proposed 21st package follows this trajectory. The Commission has proposed pausing the automatic adjustment of the oil price cap until January in order to preserve pressure on Russian revenues despite market volatility. It also intends to add 30 further vessels to the shadow fleet list and, for the first time, targets vessels that assist the shadow fleet, including by providing bunkering or other services. The same proposal would expand transaction bans to additional Russian banks and to banks, crypto firms, platforms and oil traders in third countries alleged to have serviced sanctioned Russian persons or circumvented EU measures.</p>

<p>The emphasis has therefore moved well beyond whether a direct counterparty is Russian or listed. The EU is now looking at the full chain: the origin of the cargo, the vessel&#39;s flag history, its ownership and control structure, its insurance arrangements, manipulation of vessels&#39; automatic identification systems (AIS), ship-to-ship transfers, financing flows, trading intermediaries and the ultimate destination of the product. This makes compliance more fact-sensitive and more dynamic: an operation that appears permissible at the outset may become high-risk if the vessel changes flag, the cargo is blended or re-routed mid-voyage, a new intermediary is introduced, or fresh guidance or listings are adopted before performance is complete. For energy majors, commodity traders and their financing and insurance counterparties, conformity with the rules as they stand today is necessary, but no longer sufficient. Increasingly, what will be tested is the quality of the process &ndash; the red-flag analysis, the risk-based due diligence, the contractual protections, the screening, the escalation and the documented decision &ndash; not merely the result.</p>

<p>The shift from sanctions against persons and goods towards sanctions against networks, routes and services is reflected in the EU&#39;s measures on maritime services and tanker sales. EU port access restrictions already capture vessels suspected of engaging in prohibited ship-to-ship transfers, manipulating or switching off AIS, or otherwise supporting the transport of Russian oil in breach of the price cap. The 20th package further strengthens this by imposing due diligence obligations around tanker sales to third-country buyers, requiring EU sellers to obtain contractual guarantees regarding end-use and to document their assessment of the risk that a vessel could subsequently be deployed in the Russian oil trade. For shipowners, insurers, brokers, financiers and traders, due diligence can no longer be a purely declarative exercise.</p>

<p>The French authorities&#39; recent seizures of suspected Russian shadow fleet vessels illustrates this more interventionist phase of enforcement. Even though one vessel has ultimately been released, the operational consequences of detention, investigation, delay, insurance scrutiny and reputational exposure can be severe.</p>

<h2>What lies ahead?</h2>

<p>As recent events show, peace negotiations are fraught and could still fall apart if tensions continue to escalate over the Strait of Hormuz. However, if the US does achieve a final deal which includes the lifting of all sanctions (including UN Security Council Resolutions) against Iran as promised under the terms of the MOU, the EU and UK are likely to come under significant diplomatic pressure to ease their Iran sanctions too.</p>

<p>Easing Iran sanctions and restoring trade through the Strait of Hormuz on a more permanent basis will also enable the EU and the UK to redouble their focus on limiting Russia&#39;s oil and gas revenue &ndash; a foreign policy objective that seems unlikely to change if Andy Burnham, who has been a vocal supporter of Ukraine, becomes the UK&#39;s next Prime Minister. Should a final deal be reached with Iran, we can expect to see a wind down of the UK&#39;s recently introduced general licences and a further crackdown on the processing and transport of Russian-origin oil and gas via third countries, as the EU and UK continue their push to close evasion routes. This is likely to be accompanied by a further hardening of the EU&#39;s network-based approach &ndash; extending designations further up and down the value chain, and increasing scrutiny of the financial, insurance and logistics infrastructure that enables Russian oil and gas to reach global markets.</p>

<p>Bringing an end to war in Iran may also see a renewed focus on Russia by President Trump. He has suggested that the US&#39;s own general licences for Russian oil could be withdrawn once a final deal is reached with Iran &ndash; although there is no suggestion yet that it would see a return to greater US alignment on the shadow fleet or oil price cap, so the divergent emphasis in the UK, EU and US regimes seems set to remain for now.</p>

<p>While negotiations over the deal continue, parties in the energy sector, as well as other affected sectors such as commodity trading, shipping and financial services, should ensure they are considering sanctions risk beyond direct connections to Russia and Iran. The EU and UK&#39;s increasing focus on non-Russian actors &ndash; particularly in Turkey, China, the UAE and Azerbaijan &ndash; means that exposure can arise well beyond the direct counterparty. Any party relying on existing UK general licences for Russian and Iranian oil and gas should monitor these carefully, as they are likely to be directly affected by the progress of a deal with Iran, whether it succeeds or fails. More broadly, as the EU&#39;s regime continues its shift towards sanctions against networks, routes and services, the quality of the compliance process itself &ndash; the screening, the escalation, the documented decision &ndash; will be tested as much as the outcome.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABREEAAA7AA7YAAAAAAAB6AB7QAP777774AABDAACMJAUCIAAE.jpg" length="24880" />
    </item>
    <item>
      <title><![CDATA[Practice leader insights from Victoria Pigott for Law360]]></title>
      <link>https://www.mishcon.com/news/practice-leader-insights-from-victoria-pigott-for-law360</link>
      <guid>https://www.mishcon.com/news/practice-leader-insights-from-victoria-pigott-for-law360</guid>
      <description><![CDATA[Victoria Pigott, Partner and Chair of Mishcon Private, was interviewed by Law360 as part of their Practice Leader Insights series.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 07 Jul 2026 17:22:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><a href="https://www.mishcon.com/people/victoria-pigott">Victoria Pigott</a>, Partner and Chair of Mishcon Private, was interviewed by Law360 as part of their Practice Leader Insights series.</p>

<p>In the interview, Victoria reflects on her career path, discusses one of the most challenging matters she has worked on, shares her views on the opportunities artificial intelligence presents for the legal profession, and offers advice to junior lawyers on the importance of curiosity, perspective and surrounding themselves with talented colleagues.</p>

<p><a href="https://www.law360.com/articles/2487526/practice-leader-insights-from-mishcon-s-victoria-pigott">Read in full (subscription required)</a></p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABNT4AAA7AA7YAAAAAAAB6AB7QAP777774AAAAAASMIEUCAAAA.jpg" length="5644" />
    </item>
    <item>
      <title><![CDATA[Why the City’s lawyers need to stand up for the rule of law – James Libson for Financial News]]></title>
      <link>https://www.mishcon.com/news/why-the-citys-lawyers-need-to-stand-up-for-the-rule-of-law-james-libson-for-financial-news</link>
      <guid>https://www.mishcon.com/news/why-the-citys-lawyers-need-to-stand-up-for-the-rule-of-law-james-libson-for-financial-news</guid>
      <description><![CDATA[Managing Partner James Libson has published an article in Financial News on the importance of lawyers standing up for the rule of law. In the article James says that the economic benefits to the UK and globally of the English legal system – known for its predictability, adaptability and quality – are well-established and must be promoted and protected.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 07 Jul 2026 11:01:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Managing Partner <a href="https://www.mishcon.com/people/james-libson">James Libson</a> has published an article in Financial News on the importance of lawyers standing up for the rule of law. In the article James says that the economic benefits to the UK and globally of the English legal system &ndash; known for its predictability, adaptability and quality &ndash; are well-established and must be promoted and protected.</p>

<p>James said: <em>&ldquo;It is time for lawyers to participate more forcefully and more loudly in the debate. We should do so because without promoting, securing and ensuring the funding of the English rule of law system, we will all be impacted financially. But, even more importantly, we should do so because we are responsible as legal professionals, with privileged insight into the risks we face, and as citizens, to speak up and protect the values that led us into the profession in the first place.&rdquo;</em></p>

<p><a href="https://www.fnlondon.com/articles/why-the-citys-lawyers-need-to-stand-up-for-the-rule-of-law-4eb1e6c2">Read the article in full (subscription required)</a></p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AD5TUAAA7AA7YAAAAAAAB6AB7QAP777774AAAAAARAG4IBQAAA.jpg" length="9548" />
    </item>
    <item>
      <title><![CDATA[Game changers: Law, power & the business of modern sport]]></title>
      <link>https://www.mishcon.com/news/events/current/game-changers-law-power-and-the-business-of-modern-sport</link>
      <guid>https://www.mishcon.com/news/events/current/game-changers-law-power-and-the-business-of-modern-sport</guid>
      <description><![CDATA[This conference brings together leading legal and commercial experts to explore the forces reshaping modern sport. From high-stakes litigation over historic results to the evolving rules on club ownership and governance, we examine where power now lies. We will also unpack the rapidly changing media landscape, where broadcast rights, streaming, and new revenue models are redefining the industry.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 16 Sep 2026 15:00:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>Mishcon de Reya&#39;s Annual Sports Conference</h2>

<p>This conference brings together leading legal and commercial experts to explore the forces reshaping modern sport. From high-stakes litigation over historic results to the evolving rules on club ownership and governance, we examine where power now lies. We will also unpack the rapidly changing media landscape, where broadcast rights, streaming, and new revenue models are redefining the industry. Across three dynamic panels, we consider how law, regulation, and commercial strategy are converging.</p>

<h2>Sessions</h2>

<details><summary><span class="summary-text">Can you sue your way to a championship or medal?</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>&nbsp;</p>

<p><a href="https://www.mishcon.com/people/kavan-bakhda">Kavan Bakhda</a>, the Head of the Sports Group at Mishcon de Reya, will be joined by&nbsp;<a href="https://www.blackstonechambers.com/barristers/nick-de-marco/">Nick de Marco KC</a>,&nbsp;a leading sports law barrister and Otmar Szafnauer, the Chairman and Founder of Soft Pauer, ex F1 Team Principal of Alpine, CEO and Team Principal Aston Martin, and Racing Point and COO Force India.&nbsp;&nbsp;</p>

<p>This panel explores the growing intersection of law and sport, examining when and why litigation becomes&nbsp;a viable&nbsp;strategy in challenging sporting outcomes. Using the high-profile Massa case as a springboard, the discussion will unpack what such disputes can unlock-not just for individual athletes, but for the governance and integrity of sport more broadly.&nbsp;</p>

<p>Experts will consider the legal pathways available to revisit results years after the event, analysing what remedies are realistically achievable and where the limits lie. The session will also tackle key practical issues, including exposure arising from historic&nbsp;events, limitation periods, evidentiary hurdles, and the extent to which courts are willing to intervene-even where sporting regulations declare results &ldquo;final&rdquo;.&nbsp;</p>
</div>
</details>

<details><summary><span class="summary-text">Following the fans - how shifting fan behaviour is challenging sports&#39; commercial models</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Our panel of industry executives will dissect where fans are now found, and what this means for the media and commercial models underpinning sports around the world.&nbsp;</p>
</div>
</details>

<details><summary><span class="summary-text">&nbsp;<span>Financial (Un)Fair play in football: from profit &amp; sustainability to squad cost rules, and how the new Fit and Proper test will apply.</span></span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Chaired by&nbsp;Dean Poster, a corporate lawyer who has advised clients on sales, purchases and investments in Division1, the Championship and the Premier League, this panel will examine how the football financial fair play rules have been implemented in England over the last few years, and consider how the landscape will change as we move to as we move to &quot;squad cost&quot; rules and ratios next season in the Premier League and Championship. We will also consider the new enhanced integrity checks and the West Ham United recent experience of their&nbsp;Chairman&nbsp;deciding to step down.&nbsp;</p>

<p>The panel members all have recent personal experience of cases brought against football clubs for breach of the Football League&rsquo;s profit and sustainability rules, including most recently against West Bromwich Albion.&nbsp;</p>
</div>
</details>

<p>&nbsp;</p>

<p>This conference is for in-house lawyers, barristers, decision makers dealing with governance, ownership, and commercial strategy.&nbsp;&nbsp;</p>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADQEAAAA7AA7YAAAAAAAB6AB7QAP777774AAAYYBSAIEQCAAAE.jpg" length="15128" />
    </item>
    <item>
      <title><![CDATA[Albania’s Constitutional Court issues second landmark ruling in favour of Tirana Mayor Erion Veliaj; International counsel at Kasowitz and Mishcon de Reya call for prompt implementation of constitutional decision]]></title>
      <link>https://www.mishcon.com/news/albanias-constitutional-court-issues-second-landmark-ruling-in-favour-of-tirana-mayor-erion-veliaj-international-counsel-at-kasowitz-and-mishcon-de-reya-call-for-prompt-implementation-of-constitutional-decision</link>
      <guid>https://www.mishcon.com/news/albanias-constitutional-court-issues-second-landmark-ruling-in-favour-of-tirana-mayor-erion-veliaj-international-counsel-at-kasowitz-and-mishcon-de-reya-call-for-prompt-implementation-of-constitutional-decision</guid>
      <description><![CDATA[The Constitutional Court of Albania issued a second landmark ruling in favor of Tirana Mayor Erion Veliaj, holding that the Albanian Supreme Court failed to satisfy fundamental constitutional requirements governing the judicial review of Mayor Veliaj’s continued pretrial detention.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 06 Jul 2026 17:02:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>The Constitutional Court of Albania issued a second landmark ruling in favor of Tirana Mayor Erion Veliaj, holding that the Albanian Supreme Court failed to satisfy fundamental constitutional requirements governing the judicial review of Mayor Veliaj&rsquo;s continued pretrial detention. The Constitutional Court annulled the Supreme Court&rsquo;s decision and remanded the matter for renewed review. The ruling follows the Constitutional Court&rsquo;s earlier landmark decision protecting Mayor Veliaj&rsquo;s voter-conferred constitutional mandate as the democratically elected Mayor of Tirana.</p>

<p>In its latest decision, the Constitutional Court held that the Supreme Court failed to conduct the meaningful review required by Albania&rsquo;s Constitution, including to determine whether Mayor Veliaj&rsquo;s continued detention remained necessary and proportionate; to evaluate less restrictive alternatives; to address the constitutional consequences of preventing the democratically elected Mayor of Tirana from exercising the mandate entrusted to him by the citizens of Tirana; and to consider significant constitutional claims arising from Mayor Veliaj&rsquo;s treatment during judicial proceedings.</p>

<p>Although the majority remanded the matter for renewed constitutional review, one of the Constitutional Court judges issued a separate concurring opinion that went significantly further. The concurring judge concluded that the evidence relied upon by the lower courts failed to establish the constitutionally required reasonable suspicion to justify Mayor Veliaj&rsquo;s detention. According to the concurring opinion, prosecutors relied on facts that merely reflected the ordinary exercise of Mayor Veliaj&rsquo;s official responsibilities and would not persuade &ldquo;even an objective observer&rdquo; that he had committed the charged offences. The concurring judge therefore concluded that Mayor Veliaj&rsquo;s continued detention lacked the constitutional foundation required under both Albanian law and the European Convention on Human Rights.</p>

<p>Other members of the Constitutional Court likewise expressed serious concerns regarding Mayor Veliaj&rsquo;s treatment. Separate opinions criticised the use of a glass enclosure during court proceedings as inconsistent with human dignity, concluded that restrictions imposed during detention interfered with Mayor Veliaj&rsquo;s ability to communicate effectively with counsel, emphasised that the Supreme Court failed to protect adequately the constitutional presumption of innocence and the right to an effective defence, and criticised the lower courts for failing to weigh properly the constitutional implications of depriving the democratically elected Mayor of Tirana of the ability to exercise the office entrusted to him by the electorate.</p>

<p>Taken together, the Constitutional Court&rsquo;s majority opinion and the accompanying concurring opinions identify a remarkable series of independent constitutional deficiencies, including the failure to establish sufficient reasonable suspicion by adequate evidence; the failure to meaningfully evaluate whether continued detention remained necessary and proportionate; the failure to adequately safeguard the constitutional presumption of innocence and the right to an effective defence; the failure to protect courtroom procedures that protected Mayor Veliaj&rsquo;s dignity and his confidential communications with counsel; and the failure to fully consider the constitutional consequences of preventing a democratically elected mayor from exercising the office entrusted to him by the electorate.</p>

<p>The decision establishes constitutional principles extending well beyond this case by reaffirming that restrictions on personal liberty must be subject to meaningful constitutional scrutiny; that courts must independently determine whether detention remains necessary and proportionate; that less restrictive alternatives must be genuinely considered; and that constitutional protections remain fully applicable even in proceedings involving elected public officials and matters of significant public importance.</p>

<p>Daniel J. Fetterman, lead international counsel for Mayor Veliaj and a partner at Kasowitz LLP, issued the following statement:</p>

<p><em>&ldquo;The Constitutional Court deserves recognition for its careful, independent, and principled application of Albania&rsquo;s Constitution. Today&rsquo;s decision represents the Constitutional Court&rsquo;s second ruling recognising significant constitutional deficiencies in the State&rsquo;s treatment of Mayor Veliaj.</em></p>

<p><em>&ldquo;The Constitutional Court has performed precisely the function entrusted to it by Albania&rsquo;s Constitution: ensuring that even in matters involving public officials and allegations of criminal misconduct, constitutional guarantees remain fully enforceable. Constitutional rights exist precisely to ensure that difficult cases are decided according to law rather than expediency.&nbsp;</em></p>

<p><em>&ldquo;This decision reinforces a principle shared by constitutional democracies throughout Europe and the United States: personal liberty cannot be restricted without rigorous judicial scrutiny and faithful adherence to constitutional safeguards. The Constitutional Court has now required exactly that searching review, and one member of the Court concluded that the evidence never satisfied the constitutional standard necessary to justify Mayor Veliaj&rsquo;s detention in the first place. Once the Albanian Supreme Court faithfully undertakes the review required by today&rsquo;s decision, carefully weighs each of the deficiencies identified by the Constitutional Court, and applies the governing standards, we fully expect it will conclude that Mayor Veliaj&rsquo;s continued detention cannot constitutionally be sustained and will order his immediate release.</em></p>

<p>&ldquo;<em>When those constitutional deficiencies are considered together with the publicly identified use of two purportedly fictitious complainants whose existence has never been established and the participation of a prosecutor who admitted that he lacked the legal qualifications required to hold his office, the Albanian judiciary should ultimately be required to determine whether the cumulative effect of these defects has so compromised the integrity of these proceedings that the prosecution can continue consistently with the guarantees of due process, the Albanian Constitution, and the European Convention on Human Rights.</em></p>

<p><em>&ldquo;The rule of law ultimately is measured not by the constitutional rights written on paper, but by the willingness of independent courts to enforce those rights when doing so is most difficult. Independent courts faithfully applying constitutional principles without fear or favour are indispensable to democratic governance, public confidence in the administration of justice, and the protection of every citizen&rsquo;s fundamental liberties. &nbsp;We remain hopeful that Albania&rsquo;s judicial institutions will uphold those enduring constitutional principles.&rdquo;</em></p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACUBUAAA7AA7YAAAAAAAB6AB7QAP777774AAB5ABOAL3QCYAAA.jpg" length="17504" />
    </item>
    <item>
      <title><![CDATA[Cambridge Tech Showcase 2026]]></title>
      <link>https://www.mishcon.com/news/events/current/cambridge-tech-showcase-2026</link>
      <guid>https://www.mishcon.com/news/events/current/cambridge-tech-showcase-2026</guid>
      <description><![CDATA[Join us on Monday 14 September for our annual Cambridge Tech Showcase 2026, an evening celebrating innovation across one of the world’s leading technology ecosystems and a great way to begin Cambridge Tech Week 2026.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 14 Sep 2026 16:30:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Join us on&nbsp;Monday 14 September&nbsp;for our annual&nbsp;Cambridge Tech Showcase 2026, an evening celebrating innovation across one of the world&rsquo;s leading technology ecosystems and a great way to begin&nbsp;Cambridge Tech Week 2026.</p>

<p>Delivered in collaboration with&nbsp;BDO, the showcase will bring together some of the region&rsquo;s most exciting&nbsp;early-stage and scaling technology companies&nbsp;for an evening of networking, discovery and conversation.</p>

<p>Guests will have the opportunity to explore a range of company displays, meet the teams behind the businesses, and connect with founders, investors, entrepreneurs and others from across the Cambridge innovation community. Drinks and canap&eacute;s from local Cambridge suppliers and caterers will be served throughout the evening.</p>

<p>The evening will highlight the breadth of talent, ambition and innovation coming out of the region, while bringing together the people and businesses helping to shape its future.</p>

<p>Attendance is free, but places are limited and registration is subject to approval.</p>

<table border="0" cellpadding="5" cellspacing="1">
	<tbody>
		<tr>
			
			
		</tr>
	</tbody>
</table>

<h2>Register your interest</h2>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AAKUMAAA7AA7YAAAAAAAB6AB7QAP777775VAEAAA7AI7YCAAAE.jpg" length="7524" />
    </item>
    <item>
      <title><![CDATA[Clare Radcliffe featured in Citywealth on divorce and family law trends]]></title>
      <link>https://www.mishcon.com/news/clare-radcliffe-featured-in-citywealth-on-divorce-and-family-law-trends</link>
      <guid>https://www.mishcon.com/news/clare-radcliffe-featured-in-citywealth-on-divorce-and-family-law-trends</guid>
      <description><![CDATA[Clare Radcliffe, Partner in the Family department, has been featured in Citywealth’s Quick Insight Series on Divorce and Family Law Trends, sharing her expertise on the key issues shaping high-value divorce cases.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 06 Jul 2026 16:26:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><a href="https://www.mishcon.com/people/clare-radcliffe">Clare Radcliffe</a>, Partner in the Family department, has been featured in Citywealth&rsquo;s Quick Insight Series on Divorce and Family Law Trends, sharing her expertise on the key issues shaping high-value divorce cases.</p>

<p>Clare discusses the division of matrimonial and non-matrimonial assets, the challenges of valuing private and illiquid wealth, the treatment of future financial interests, and the role of trusts and offshore structures. She also highlights the importance of transparency, careful planning, and nuptial agreements in protecting wealth and reducing disputes.</p>

<p><a href="https://www.citywealthmag.com/news/citywealth-quick-insight-series-on-divorce-and-family-law-trends-clare-radcliffe-mishcon-de-reya/">Read the full article</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AAOT6AAA7AA7YAAAAAAAB6AB7QAP777774AAAAAASMIEUCAAAA.jpg" length="5870" />
    </item>
    <item>
      <title><![CDATA[Reform of non-compete clauses in employment contracts: Jennifer Millins in Employment Lawyers' Association July Briefing]]></title>
      <link>https://www.mishcon.com/news/reform-of-non-compete-clauses-in-employment-contracts-jennifer-millins-in-employment-lawyers-association-july-briefing</link>
      <guid>https://www.mishcon.com/news/reform-of-non-compete-clauses-in-employment-contracts-jennifer-millins-in-employment-lawyers-association-july-briefing</guid>
      <description><![CDATA[Mishcon de Reya Partner Jennifer Millins and Jonathan Chamberlain of Gowling WLG (UK) LLP are featured in the Employment Lawyers' Association (ELA)'s July Briefing, examining the UK Government’s latest proposals to reform non-compete clauses in employment contracts and ELA’s response to the consultation.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 06 Jul 2026 16:06:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Mishcon de Reya Partner <a href="https://www.mishcon.com/people/jennifer-millins">Jennifer Millins</a> and Jonathan Chamberlain of Gowling WLG (UK) LLP are featured in the Employment Lawyers&#39; Association (ELA)&#39;s July Briefing, examining the UK Government&rsquo;s latest proposals to reform non-compete clauses in employment contracts and ELA&rsquo;s response to the consultation.</p>

<p>From proposed bans and statutory time limits to salary thresholds, Jennifer and Jonathan assess the Government&rsquo;s reform options and the practical concerns they raise for employers and employees alike.</p>

<p>Read the full article on <a href="https://elabriefing.elaweb.org.uk/auth/login">ELA briefing</a> (access requires ELA membership)</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACFRGAAA7AA7YAAAAAAAB6AB7QAP777774AAB6QAXAF5YBIAAA.jpg" length="12779" />
    </item>
    <item>
      <title><![CDATA[Pay transparency: Jennifer Millins in Employment Lawyers' Association June briefing]]></title>
      <link>https://www.mishcon.com/news/pay-transparency-jennifer-millins-in-employment-lawyers-association-june-briefing</link>
      <guid>https://www.mishcon.com/news/pay-transparency-jennifer-millins-in-employment-lawyers-association-june-briefing</guid>
      <description><![CDATA[Mishcon de Reya Partner Jennifer Millins and Claire Darwin KC of Devereux Chambers are featured in the Employment Lawyers' Association (ELA)'s June Briefing, assessing the growing gap between UK and EU pay transparency requirements.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 06 Jul 2026 15:58:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Mishcon de Reya Partner <a href="https://www.mishcon.com/people/jennifer-millins">Jennifer Millins</a> and Claire Darwin KC of Devereux Chambers are featured in the Employment Lawyers&#39; Association (ELA)&#39;s June Briefing, assessing the growing gap between UK and EU pay transparency requirements.</p>

<p>Jennifer and Claire explore the key requirements of the Directive, the UK Government&rsquo;s ongoing consultation on pay transparency reforms, the implications for Northern Ireland, and the practical steps employers should take now to prepare for a more transparent pay landscape.</p>

<p>Read the full article on <a href="https://elabriefing.elaweb.org.uk/auth/login">ELA briefing</a> (access requires ELA membership)</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AC2DYAAA7AA7YAAAAAAAB6AB7QAP777774AAAYIBSMIEUCAAAA.jpg" length="7201" />
    </item>
    <item>
      <title><![CDATA[Tribunal issues €20k fine for disability discrimination: David Parsons for HR Magazine]]></title>
      <link>https://www.mishcon.com/news/tribunal-issues-20k-fine-for-disability-discrimination-david-parsons-for-hr-magazine</link>
      <guid>https://www.mishcon.com/news/tribunal-issues-20k-fine-for-disability-discrimination-david-parsons-for-hr-magazine</guid>
      <description><![CDATA[Employment Partner David Parsons has contributed to HR Magazine about an Irish employment tribunal decision to award a worker with a migraine condition €20,000 for disability discrimination after she was denied a four-day working week.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 06 Jul 2026 13:55:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Employment Partner <a href="https://www.mishcon.com/people/david-parsons">David Parsons</a> has contributed to HR Magazine about an Irish employment tribunal decision to award a worker with a migraine condition &euro;20,000 for disability discrimination after she was denied a four-day working week.</p>

<p>David said: <em>&ldquo;While this case was decided under Irish law, it carries important lessons for UK employers too. Under the Equality Act 2010, a person has a disability if they have a physical or mental impairment that has a substantial and long-term adverse effect on their ability to carry out normal day-to-day activities.</em></p>

<p><em>&ldquo;There is no prescribed list of qualifying conditions. What matters is the impact of the condition on the individual, assessed on a case-by-case basis.&nbsp;</em></p>

<p><em>&ldquo;This case is a timely reminder that employers should not assume a condition does or does not amount to a disability simply because it may not obviously fit a familiar category. Vestibular migraine, like many other episodic conditions, can cross the threshold depending on its effects.</em></p>

<p><em>&ldquo;Early referral to occupational health can be invaluable. It provides an evidence base, demonstrates good faith, and helps identify practical solutions before a dispute arises.</em></p>

<p><em>&ldquo;As this case shows, an employer who cannot demonstrate they properly considered an adjustment risks a finding that they failed in their legal duty.&rdquo;</em></p>

<p>Read the full article in <a href="https://www.hrmagazine.co.uk/content/news/tribunal-issues-20k-fine-for-disability-discrimination">HR Magazine</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADRBSAAA7AA7YAAAAAAAB6AB7QAP777774AAANYBOEJ3SCIAAA.jpg" length="8185" />
    </item>
    <item>
      <title><![CDATA[Workers' plea to bosses ahead of England's early hours World Cup match against Mexico - Mark Kaye for the Mirror]]></title>
      <link>https://www.mishcon.com/news/workers-plea-to-bosses-ahead-of-englands-early-hours-world-cup-match-against-mexico</link>
      <guid>https://www.mishcon.com/news/workers-plea-to-bosses-ahead-of-englands-early-hours-world-cup-match-against-mexico</guid>
      <description><![CDATA[Mark Kaye discusses how employers can manage staff during England's early hours World Cup match, ensuring fairness and lawful workplace policies.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Fri, 03 Jul 2026 09:26:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Employment Partner <a href="https://www.mishcon.com/people/mark-kaye">Mark Kaye</a> has been featured in an article for the Mirror on the impact on employers of England&#39;s forthcoming World Cup match against Mexico in the early hours of Monday 6 July 2026. Commenting on how employers can ensure fairness and that any approach to managing their workforce is lawful, Mark said:</p>

<p><em>&quot;Most employers are likely to take a sensible approach, but clear boundaries and expectations should be communicated to the workforce.</em></p>

<p><em>&quot;Inappropriate conduct, such as turning up to work drunk or severely hungover (or missing client meetings) can, and perhaps should, be dealt with under the employer&#39;s disciplinary policy. Some employers may proactively invite employees to take their annual leave on the Monday.&quot;</em></p>

<p><a href="https://www.mirror.co.uk/money/workers-plea-bosses-ahead-englands-37377994" rel="nofollow">Read the article in full</a></p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABFRSAAA7AA7YAAAAAAAB6AB7QAP777774AABAQA5AB7IAIAAA.jpg" length="14511" />
    </item>
    <item>
      <title><![CDATA[Mishcon de Reya advises shareholders of Grenson on sale of 100% stake to Castore]]></title>
      <link>https://www.mishcon.com/news/mishcon-de-reya-advises-shareholders-of-grenson-on-sale-of-100-stake-to-castore</link>
      <guid>https://www.mishcon.com/news/mishcon-de-reya-advises-shareholders-of-grenson-on-sale-of-100-stake-to-castore</guid>
      <description><![CDATA[Mishcon de Reya has advised Tim and Julia Little, shareholders of British shoemaker, Grenson, on the sale of a 100% stake to sportswear brand Castore.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 02 Jul 2026 11:14:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Mishcon de Reya has advised Tim and Julia Little, shareholders of British shoemaker, Grenson, on the sale of a 100% stake to sportswear brand Castore.</p>

<p>Founded in 1866, Grenson supplied boots to British soldiers during both world wars. Tim and Julia acquired their stake in Grenson in 2010, and Grenson has continued to embrace its heritage and focus on quality design to constantly innovate and create contemporary and iconic luxury footwear.</p>

<p>Castore is a premium sportswear brand, whose acquisition of Grenson forms part of their continued growth and wider expansion in the premium consumer market.</p>

<p>The Mishcon de Reya team was led by <a href="https://www.mishcon.com/people/daniel-goldsborough">Daniel Goldsborough</a>, Partner in the Corporate team and Managing&nbsp;Associate&nbsp;<a href="https://www.mishcon.com/people/karine-bashardust">Karine Bashardust</a>, Associate <a href="https://www.mishcon.com/people/thomas-hurley">Thomas Hurley</a> and Trainee <a href="https://www.mishcon.com/people/charlotte-lowe">Charlotte Lowe</a> in the Private Equity team. <a href="https://www.mishcon.com/people/margarita-elia">Margarita Elia </a>led on Employment aspects of the deal.</p>

<p>Daniel Goldsborough commented: <em>&ldquo;We are delighted to have delivered this exit for Tim and Julia. They took over the business in 2010 and while cherishing Grenson&#39;s amazing heritage they have worked tirelessly to continuously innovate and evolve the business. It was a privilege to advise them both and to help them achieve this thoroughly deserved reward for all their hard work. Congratulations to Castore they&#39;ve acquired an iconic British brand that I&#39;m sure they will take from strength to strength.&quot;</em></p>

<p>Tim Little commented: <em>&ldquo;For me this deal was the culmination of 16 years of building the brand and finding the right people to take it on into the future. The Mishcon team were the perfect people to lead me through what for most people is a once in a lifetime process and they were a dream to work with. &nbsp;They were extremely thorough but also calm when the inevitable twists and turns appeared. I felt completely safe in their hands.&quot;</em></p>
]]></content:encoded>
      <category>Recent Work</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AC6BWAAA7AA7YAAAAAAAB6AB7QAP777774AAB5ABOAL3QCYAAA.jpg" length="9713" />
    </item>
    <item>
      <title><![CDATA[Beyond Capacity: The Supreme Court overrules Cheshire West on deprivation of liberty]]></title>
      <link>https://www.mishcon.com/news/beyond-capacity-the-supreme-court-overrules-cheshire-west-on-deprivation-of-liberty</link>
      <guid>https://www.mishcon.com/news/beyond-capacity-the-supreme-court-overrules-cheshire-west-on-deprivation-of-liberty</guid>
      <description><![CDATA[The Supreme Court has overruled Cheshire West, redefining deprivation of liberty and valid consent, leading to fewer individuals considered deprived of liberty.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 01 Jul 2026 16:52:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><span class="text-2xl">Exploring the ruling in A Reference by the Attorney General for Northern Ireland of a devolution issue under paragraph 34 of Schedule 10 to the Northern Ireland Act 1998</span></p>

<h2>In brief</h2>

<ul>
	<li>The Attorney General of Northern Ireland referred the question of whether a person lacking capacity under domestic law could express &quot;valid consent&quot; to confinement so as to mean they have not been deprived of their liberty.</li>
	<li>The Supreme Court, overruling its prior decision in <em>Cheshire West</em>, held that &quot;valid consent&quot; was an autonomous concept that could not be equated to a bright-line capacity question. A wider inquiry as to the thoughts and feelings of the individual was required.</li>
	<li>The Supreme Court also reaffirmed the &#39;multifactorial&#39; approach to Article 5, holding that determination of a deprivation of liberty required consideration of various factors including the purpose and nature of the confinement, and the individual&#39;s views.</li>
	<li>While the full implications of the judgment are yet to be reflected in updated policy guidance, it is already clear there will be a significant reduction in the number of individuals considered to be deprived of their liberty.</li>
</ul>

<h2>Background: The attorney general&#39;s reference and the decision in Cheshire West</h2>

<h3>Background to the Reference</h3>

<p>This case was a Reference from the Attorney General of Northern Ireland (the &#39;<strong>Reference</strong>&#39;) concerning the validity of proposed amendments to the Deprivation of Liberty Safeguards Code of Practice in Northern Ireland.</p>

<p>The effect of the proposed amendment would mean that those who could not consent as a matter of domestic law (because they lacked capacity), could nevertheless be taken to have consented to the deprivation of their liberty for the purposes of Article 5 of the European Convention on Human Rights (&quot;ECHR&quot;), which protects the right to liberty and security of person.</p>

<p>The Attorney General&#39;s Reference arose because the proposed amendments directly conflicted with the Supreme Court&#39;s prior ruling in <em>Cheshire West and Chester Council; Surrey County Council v P</em> [2014] UKSC 19 (<em><strong>&#39;Cheshire West&#39;</strong></em>).</p>

<h3>The Decision in Cheshire West</h3>

<p>Before turning to the decision in <em>Cheshire West</em>, it is necessary to understand the legal framework that constitutes Article 5. There are three components of a deprivation of liberty under Article 5 of the ECHR:</p>

<ol>
	<li><u>Objective component</u>: Confinement in a particular place for a material period of time;&nbsp;</li>
	<li><u>Subjective component</u>: Without &quot;valid consent&quot;; and</li>
	<li><u>State component</u>: In circumstances where the state, directly or indirectly, is responsible.&nbsp;</li>
</ol>

<p>In their analysis of the above requirements, <em>Cheshire West</em> advanced what has been labelled an &#39;acid test&#39; for whether a deprivation of liberty is made out, asking whether the individual is subject to &quot;continuous supervision and control&quot; so they are &quot;not free to leave&quot;.</p>

<p>In the event that the &#39;acid test&#39; is made out, and there is no &quot;valid consent&quot;, a deprivation of liberty has occurred. Importantly, the Supreme Court in <em>Cheshire West</em> held that &quot;valid consent&quot; can only be given by those with the mental capacity under domestic law to do so.</p>

<p>In the Reference, the Supreme Court had to grapple with both elements of the <em>Cheshire West</em> judgment: the &#39;acid test&#39; and the Court&#39;s conclusion on capacity.</p>

<h2>In summary: The Supreme Court&#39;s decision</h2>

<p>Overruling <em>Cheshire West</em>, the Supreme Court held that:</p>

<ol>
	<li>The &#39;acid test&#39; was not supported by authority, and instead what is required is a multifactorial approach to Article 5; and</li>
	<li>&#39;Valid consent&#39; is an autonomous concept capable of being given by those lacking capacity under domestic law.</li>
</ol>

<h3>The multifactorial approach</h3>

<p>While the Reference concerned the Court in <em>Cheshire West&#39;s</em> decision on the question of consent, the Supreme Court agreed with the submissions of the Secretary of State for Health and Social Care that the subjective and objective elements could not be considered separately.</p>

<p>It was here that the Supreme Court rejected the &#39;acid test&#39; and reasserted the primacy of a multifactorial approach to Article 5. Only by taking into account a range of factors could decision-makers determine if a person was subject to confinement.</p>

<p>The Court articulated a number of these factors, most important of which were:</p>

<ul>
	<li>The <em>&quot;relative normality&quot;</em> of the individual&#39;s life and the extent to which the confinement interrupted their day-to-day life;</li>
	<li>The purpose of the confinement;</li>
	<li>The nature of the setting and how closely it resembles what they referred to as the <em>&quot;paradigm&quot;</em> instance of deprivation of liberty, a prison cell; and</li>
	<li>The subjective perceptions of the individual and whether they feel confined or restricted.</li>
</ul>

<p>As is clear from this list, the Supreme Court envisages an inquiry that is not confined to a largely factual question of whether an individual has their movements restricted, but rather a multifaceted inquiry into the nature, purpose and effect of confinement.</p>

<h3>&quot;Valid consent&quot;</h3>

<p>The most significant finding of the Court was that the Court in <em>Cheshire West</em> was wrong to reduce the question of &quot;valid consent&quot; to one of capacity. The Supreme Court held that, while an individual may <em>&quot;lack capacity in a full legal sense, they may nevertheless have a fundamental understanding of whether they are broadly happy or unhappy about something&quot;</em>.</p>

<p>It is this ability to indicate happiness or unhappiness with a situation that underpins the Court&#39;s analysis. A lack of capacity under domestic law cannot tell us whether an individual is happy or unhappy with their present position, and to suggest that capacity would always defeat an individual&#39;s ability to express this was wrong.</p>

<p><span class="text-lg"><em>The argument that, because some adults will find it difficult to communicate and express views and feelings about their placement, the views of no adults should be capable of vouching consent creates an arbitrary threshold and may lead to unnecessary and intrusive interference with the private lives of those adults with impaired mental capacity who are able to express views and feelings.</em></span></p>

<p>The practical consequence is that a lack of capacity will no longer be sufficient to satisfy the subjective element.</p>

<p>The Supreme Court noted that further guidance is necessary to flesh out when an individual may be taken to have expressed valid consent, but did provide a number of important observations:</p>

<ul>
	<li>The Supreme Court acknowledged that there may be &quot;considerable evidential difficulties&quot; in determining consent, but that these would need to be judged on a case-by-case basis;</li>
	<li>While a &quot;tacit positive indication of wishes and feelings&quot; may be sufficient to indicate valid consent, &quot;mere compliance or acquiescence may carry little weight&quot;; and</li>
	<li>Where there is &quot;serious doubt&quot; as to a person&#39;s attitude, then &quot;no inference of valid consent should be drawn.&quot;</li>
</ul>

<p>The Court&#39;s judgment is a welcome return to &quot;valid consent&quot; as an autonomous concept doing real work in the Article 5 inquiry, as opposed to a tick-box, reductive question as to a person&#39;s capacity.</p>

<h2>Taking stock: where are we now?</h2>

<p>The practical takeaway from the decision is that <em>Cheshire West</em> is no longer good law, and the decision must now be reflected without delay in guidance, decision-making and applications. We can, however, cast an eye forward to see what may be in store for those who need to consider the issue of whether someone has been deprived of their liberty.</p>

<h3>Reassessing the current approach</h3>

<p>The first stage for local authorities, care providers and practitioners is to reassess their current approach to deprivation of liberty. Local authorities and care providers will be required to review their current cases (both those with active cases and those subject to a backlog) to determine whether they still fall within the remit of a deprivation of liberty.</p>

<p>The key practical result of the decision is that far fewer individuals will be considered to be deprived of their liberty. This is a welcome change. The Court in <em>Cheshire West</em> aimed to provide a wider group of individuals with safeguards to their liberty, but that goal had significant unintended consequences. DoLs authorisation requests rose from 13,700 in the year prior to <em>Cheshire West</em> to 322,455 referrals in 2023/24, leaving a backlog of over 123,000 cases and creating a lottery even for the most serious instances of confinement. Further, and as was noted by the Court, the personal toll on individuals going through the DoLs process and waiting for approval should not be a forgotten impact of the wider ranging approach in <em>Cheshire West</em>.</p>

<p>While the Court in <em>Cheshire West</em> may have had a laudable goal, it is to be hoped that the Supreme Court&#39;s decision restores some much-needed order and priority.</p>

<h3>Rebuilding the decision-making process</h3>

<p>The second stage will be developing an understanding of how the multifactorial approach works in practice. The approach represents a significant departure from <em>Cheshire West</em> and will require substantial elucidation. In the short term, we can expect fewer DoLs applications, but likely more litigation as decision-makers and courts alike come to terms with the new test.</p>

<h3>A shift to alternative safeguards?</h3>

<p>One unfortunate outcome of the <em>Cheshire West</em> judgment was an overextension of the concept of deprivation of liberty to ensure safeguards for those who lack capacity and are subject to some element of confinement. However, a person need not be found to have their liberty deprived in order to be protected. As the Supreme Court noted, the Mental Capacity Act itself contains further safeguards that operate independently of the DoLs regime. In some cases, decision-makers are required to create support plans that are subject to annual review, and in any event, they remain under a duty to investigate safeguarding issues arising from residential placements. There are, of course, various other tools at the disposal of decision-makers, and the focus is likely to shift toward how these regimes ought to be used in light of the Supreme Court&#39;s decision.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABBDGAAA7AA7YAAAAAAAB6AB7QAP777774AAA5QAXQHF4BYAAE.jpg" length="8161" />
    </item>
    <item>
      <title><![CDATA[Mishcon & The World Issue 27 | July 2026]]></title>
      <link>https://www.mishcon.com/news/publications/mishcon-and-the-world-issue-27</link>
      <guid>https://www.mishcon.com/news/publications/mishcon-and-the-world-issue-27</guid>
      <description><![CDATA[Welcome to the latest edition of Mishcon & The world.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 01 Jul 2026 16:30:00 GMT</pubDate>
      <content:encoded><![CDATA[]]></content:encoded>
      <category>Publication</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AA6S4AAA7AA7YAAAAAAAB6AB7QAP777775AAEAAARIG4KBQAAI.jpg" length="6264" />
    </item>
    <item>
      <title><![CDATA[Half year cyber threat update]]></title>
      <link>https://www.mishcon.com/news/events/current/half-year-cyber-threat-update</link>
      <guid>https://www.mishcon.com/news/events/current/half-year-cyber-threat-update</guid>
      <description><![CDATA[A review of the current year so far, and the main threats to businesses based on our Cyber Incident Response work and in-house threat analysis capability.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 20 Jul 2026 12:00:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>In our upcoming cyber threat webinar&nbsp;we will examine evolving cyber threats in 2026, drawing on insights from our cyber incident response engagements and in-house threat intelligence capabilities.&nbsp;</p>

<h2>Why attend?</h2>

<p>Drawing from our experience on cyber incident response cases, this session offers a clear view of the most significant threats facing organisations today. From AI-driven attack methods to targeted software supply chain compromises, attendees will gain insight into how these risks are evolving and how to better prepare from a risk, legal, and compliance perspective.</p>

<h2>Who is it relevant to?</h2>

<p>Designed for senior professionals across compliance, risk, and legal functions as this session provides critical insight for those accountable for cyber risk governance, regulatory obligations, and incident response strategy.</p>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABHUIAAA7AA7YAAAAAAAB6AB7QAP777774AABEAABMJAMCIAAA.jpg" length="19338" />
    </item>
    <item>
      <title><![CDATA[Employment law training for managers – Power and responsibility: back to basics]]></title>
      <link>https://www.mishcon.com/news/events/current/employment-law-training-for-managers-power-and-responsibility-back-to-basics</link>
      <guid>https://www.mishcon.com/news/events/current/employment-law-training-for-managers-power-and-responsibility-back-to-basics</guid>
      <description><![CDATA[Employment law is constantly changing, and it can be hard for employers - and particularly managers - to keep up. This half-day session, aimed at managers in your business with people responsibilities and junior HR practitioners]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 03 Nov 2026 09:00:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><strong>Audience: </strong>Suitable for managers in your business with people responsibilities, and junior HR practitioners.<br />
<strong>Cost:</strong>&nbsp;The cost for each delegate is &pound;250 +VAT.</p>

<p>&nbsp;</p>

<p>Employment law is constantly changing, and it can be hard for employers - and particularly managers - to keep up.&nbsp;&nbsp;</p>

<p>This half-day session, aimed at&nbsp;managers in your business with people responsibilities&nbsp;and junior HR practitioners, will explain the basics of Employment law when it comes to managing staff. Designed to empower employees to take on the right amount of responsibility and to understand when to contact HR, it will cover:</p>

<ul>
	<li>Probationary periods and how to use them&nbsp;</li>
	<li>Performance management&nbsp;</li>
	<li>Managing sickness absence&nbsp;</li>
	<li>Disciplinary processes&nbsp;</li>
	<li>Handling grievances&nbsp;</li>
	<li>The basics of unfair dismissal&nbsp;</li>
	<li>The basics of discrimination law&nbsp;</li>
	<li>How to hold challenging conversations&nbsp;</li>
	<li>What happens when things go wrong&nbsp;</li>
</ul>

<p>Numbers will be limited, so we may need to cap the number of delegates that organisations can send. If you would be interested in a dedicated session for your business, please contact <a href="mailto:will.winch@mishon.com.">Will Winch</a>.&nbsp;</p>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABQUIAAA7AA7YAAAAAAAB6AB7QAP777774AABBABLEIC2CAAAA.jpg" length="15797" />
    </item>
    <item>
      <title><![CDATA[FortiBleed - what the Fortinet firewall attacks mean for every business]]></title>
      <link>https://www.mishcon.com/news/fortibleed-what-the-fortinet-firewall-attacks-mean-for-every-business</link>
      <guid>https://www.mishcon.com/news/fortibleed-what-the-fortinet-firewall-attacks-mean-for-every-business</guid>
      <description><![CDATA[In June 2026, the UK's National Cyber Security Centre (NCSC) issued an alert about a global campaign targeting Fortinet firewalls and VPN gateways - the devices many organisations use to protect their networks and allow staff to connect remotely. The NCSC confirmed that a database of credentials had been leaked by a threat actor following brute-force, dictionary and credential stuffing attempts against internet-facing FortiGate and VPN portals, with some indications of impact in the UK.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 30 Jun 2026 15:37:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>In June 2026, the UK&#39;s National Cyber Security Centre (NCSC) <a href="https://www.ncsc.gov.uk/news/advice-following-global-targeting-of-fortinet-firewalls-and-vpn-gateways">issued an alert</a> about a global campaign targeting Fortinet firewalls and VPN gateways - the devices many organisations use to protect their networks and allow staff to connect remotely. The NCSC confirmed that a database of credentials had been leaked by a threat actor following brute-force, dictionary and credential stuffing attempts against internet-facing FortiGate and VPN portals, with some indications of impact in the UK.</p>

<p>Security researchers have since quantified the scale of the campaign. Now nicknamed &quot;FortiBleed&#39;, it is reported to have compromised somewhere between 30,000 and 75,000 devices across 194 countries. One analysis placed the figure at over 73,000 unique Fortinet firewall URLs and described an extraordinary volume of automated attempts: an estimated 1.16 billion credential-based attempts against more than 320,000 FortiGate targets.</p>

<p>Importantly, this was not a sophisticated exploit of a hidden flaw in Fortinet&#39;s software. Researchers found no evidence of a Fortinet zero-day or a breach of Fortinet itself. Instead, attackers relied on something far simpler and far more common: credential stuffing, password spraying, brute-force attempts, and reused passwords from prior leaks. In plain terms, attackers took passwords stolen in earlier, unrelated breaches and tried them, at industrial scale, against the login pages of firewalls and VPNs exposed to the open internet. Where a password had been reused, the door simply opened.</p>

<p>There is also a worrying dimension: experts note that adversaries are leveraging generative AI to automate these attacks, adopting tactics typically associated with nation-state actors. Capabilities once reserved for sophisticated state-backed groups are increasingly available to ordinary criminal operations.</p>

<h2>Why does this matter?</h2>

<p>Think of a firewall or VPN gateway as the front door and security desk of a company&#39;s digital building. Almost everything else - email, file servers, customer databases, finance systems, factory control systems - sits behind it. It is designed to be the mechanism that keeps unauthorised people out whilst allowing legitimate staff in.</p>

<p>When that front door is compromised, an attacker does not just see the lobby. They can often walk straight into back offices with elevated privileges, because these devices typically hold powerful administrative access by design.</p>

<p>For a business, the practical consequences of this kind of compromise can include:</p>

<ul>
	<li><strong>Operational disruption</strong> - production lines, logistics, or customer-facing systems going offline.</li>
	<li><strong>Data theft</strong> - customer records, intellectual property, or financial data extracted before anyone notices.</li>
	<li><strong>Ransomware as the second act</strong> - initial access via a compromised VPN is one of the most common ways ransomware gangs get a foothold, often weeks or months before the ransomware itself is deployed.</li>
	<li><strong>Regulatory and reputational fallout</strong> - breach notification obligations, client trust damage, contract and insurance implications.</li>
	<li><strong>Knock-on risk to partners and customers</strong> - compromised networks are frequently used as a launchpad to attack suppliers, clients, or other connected organisations.</li>
</ul>

<h2>What this trend represents more abstractly</h2>

<p>This incident is not really a story about Fortinet specifically. Fortinet&#39;s own systems were not breached - and the same pattern has played out against other vendors. Researchers note a near-identical campaign in thesame period targeting enterprise VPN authentication infrastructure, specifically Palo Alto Networks GlobalProtect and Cisco SSL VPN gateways, and the NCSC has separately issued advisories about attacks on Cisco firewall platforms.</p>

<p>The real story is structural, and it points to three broader shifts:</p>

<ol>
	<li><strong>The perimeter is the target now, not just the destination</strong>. For years, security strategy assumed the firewall was a static, trustworthy barrier. Attackers have recognised that the wall itself - its login page, its credential store, its management interface &ndash; can be the single richest target in the entire network. Compromise the gatekeeper, and you inherit its trust.</li>
	<li><strong>Human and process failure outpaces technical failure</strong>. This was not a brilliant exploit. It was password reuse, weak credential hygiene, and internet-exposed administrative panels - entirely preventable, well-understood weaknesses that organisations have been advised to address for over a decade. The technology generally worked as designed; the operational discipline around it did not.</li>
	<li><strong>Automation and AI are collapsing the cost of attack</strong>. Billions of login attempts, organised credential databases sorted by country, sector, and revenue, and AI-assisted automation represent industrial-scale opportunism. Attackers no longer need to specifically target your organisation; they need only to know you exist, use a familiar product, and have a reused password somewhere in its history.</li>
</ol>

<p>Taken together, this represents a shift from attacks requiring skill and patience to attacks requiring only scale and persistence - a far larger and more enduring threat for every organisation with an internet-facing footprint, regardless of size or perceived importance.</p>

<h2>Strategic recommendations for organisations</h2>

<p>The NCSC&#39;s technical guidance is sound and immediately actionable. Translated into management priorities, organisations should:</p>

<ul>
	<li><strong>Treat edge devices as crown jewels, not commodity IT</strong>. Firewalls, VPN gateways, and other internet-facing infrastructure should receive the same governance attention, patching discipline, and monitoring as your most sensitive applications, because they are, functionally, the master key to everything behind them.</li>
	<li><strong>Get the basics right, and verify they are actually being followed</strong>. Change all default, generic, or reused administrator passwords and ensure multi-factor authentication is enforced on all VPN and device management logins. These are not aspirational best practices; they are the specific gaps this campaign exploited. Audit, do not assume.</li>
	<li><strong>Take admin interfaces off the public internet</strong>. Ensure management interfaces are not exposed to the internet and restrict access to trusted internal networks. There is rarely a good reason for a firewall&#39;s management console to be reachable by anyone with a browser and an internet connection.</li>
	<li><strong>Keep technology current</strong> - and retire what cannot be. Update to the latest version and remove out- of-support systems as soon as practicable. Unsupported, unpatched edge devices are a standing invitation to attackers.</li>
	<li><strong>Assume compromise, then verify you are wrong</strong>. Do not wait for visible symptoms. Determine whether your Fortinet device has been compromised by checking for common indicators of compromise, including unauthorised account creation and unexpected activity in log files. Investigate devices reachable from the compromised device and monitor firewall logs for suspicious activity to confirm the breach has not spread further into the network.</li>
	<li><strong>Build credential hygiene into culture, not just policy</strong>. Password reuse is a human behaviour problem as much as a technical one. Password managers, mandatory MFA, and regular credential rotation for privileged accounts should be non-negotiable for any account with administrative reach.</li>
	<li><strong>Subscribe to early warning services</strong>. Free resources such as the NCSC&#39;s Early Warning service exist specifically to give organisations advance notice of a cyber incident before it escalates. Use them.</li>
	<li><strong>Plan for the next vendor, not just this one</strong>. Because this is a pattern, not an isolated event, boards and leadership teams should ask: if our other internet-facing infrastructure were targeted tomorrow in the same way, would we know, and could we respond? That question, asked regularly, is more valuable than any single patch.</li>
</ul>

<h2>The bottom line</h2>

<p>This campaign is a reminder that the most common point of failure in cyber security is rarely the exotic, headline-grabbing exploit. It is the neglected basics; a reused password, an exposed login page, a missed update. The scale here - tens of thousands of devices, billions of automated attempts, AI-assisted operations rivalling nation-state tradecraft - shows that attackers no longer need sophistication when scale and persistence will do. For every organisation that relies on a firewall or VPN to secure its network (which is to say, nearly every organisation), the lesson is not &#39;switch vendors&#39;. It is lock the front door properly and check regularly that it is still locked.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AALECAAA7AA7YAAAAAAAB6AB7QAP777776XQGAAAMII3CCAAAE.jpg" length="19734" />
    </item>
    <item>
      <title><![CDATA[Harassment under the Employment Rights Act 2025: What are the key changes employers need to be aware of?]]></title>
      <link>https://www.mishcon.com/news/harassment-under-the-employment-rights-act-2025-what-are-the-key-changes-employers-need-to-be-aware-of</link>
      <guid>https://www.mishcon.com/news/harassment-under-the-employment-rights-act-2025-what-are-the-key-changes-employers-need-to-be-aware-of</guid>
      <description><![CDATA[On 6 April 2026, the ERA 2025 amended the definition of a "qualifying disclosure" to expressly include disclosures that sexual harassment has occurred, is occurring, or is likely to occur.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 30 Jun 2026 11:52:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>Third party harassment is one of the most significant changes introduced by the Employment Rights Act 2025 (&quot;ERA 2025&quot;).&nbsp; It comes into force in October this year, and the liability can be significant.&nbsp; In this article, we suggest ways in which employers can prepare themselves for it.</li>
	<li>In addition to introducing liability for the acts of third parties, the ERA 2025 also strengthens workplace protection against harassment, including sexual harassment, in two other ways:
	<ul>
		<li>From April 2026, disclosures related to sexual harassment automatically qualify for whistleblower protection where the worker reasonably believes the disclosure tends to show that sexual harassment has occurred, is occurring, or is likely to occur; and</li>
		<li>from October 2026, the proactive duty on employers to take &quot;reasonable steps&quot; to prevent sexual harassment will be raised to require &quot;<u>all</u> reasonable steps&quot;.</li>
	</ul>
	</li>
</ul>

<h2>Whistleblower protection for sexual harassment disclosures</h2>

<p>On 6 April 2026, the ERA 2025 amended the definition of a &quot;qualifying disclosure&quot; to expressly include disclosures that sexual harassment has occurred, is occurring, or is likely to occur.</p>

<p>To some extent, it is hard to see why this provision will add much of significance to the legal landscape.&nbsp; Such disclosures were arguably already capable of qualifying under the pre-April regime (whether by way as a breach of a legal obligation or a health and safety concern), and a worker who suffers dismissal or detriment as a result can bring a victimisation claim under the Equality Act 2010 (&quot;<strong>EA 2010</strong>&quot;).&nbsp; However, the change does provide greater certainty for those thinking of raising concerns.&nbsp;</p>

<p>Perhaps the most important practical consequence will be that workers will be able to claim &#39;interim relief&#39; if they are dismissed because they blew the whistle on sexual harassment.&nbsp; While it is very difficult to succeed in an application for interim relief (the bar for success is high as the Tribunal must be satisfied, before hearing all of the evidence, that the claimant will be <em>likely</em> to succeed at trial), it does in theory entitle the worker to continue receiving pay throughout the period leading to the tribunal hearing &ndash; even if they do not win the eventual claim.&nbsp; Given the significant delays in the Tribunal system, this could be significant.</p>

<h2>What is the new requirement to take &quot;all reasonable steps&quot; to prevent sexual harassment?</h2>

<p>From October 2026, the ERA 2025 will raise the standard of the proactive duty to prevent sexual harassment from &quot;reasonable steps&quot; to &quot;all reasonable steps&quot;, bringing it in line with the existing statutory defence under section 109(4) of the EA 2010 against vicarious liability for discrimination committed by employees.</p>

<p>What constitutes &ldquo;all&rdquo; reasonable steps is undefined, and concerns have been raised that it will be a difficult standard to meet. During the passage of the Employment Rights Bill, the Employment Lawyers Association observed in its <a href="https://www.elaweb.org.uk/law-and-practice/consultation-responses/ela-response-public-bill-committee-call-evidence-employment">response to the Public Bill Committee Call for evidence on the Employment Rights Bill</a> that the &ldquo;all reasonable steps&rdquo; defence under s.109(4) EA 2010 is rarely invoked because it rarely succeeds, and warned that importing this standard into the proactive duty risks imposing something approaching strict liability on employers.&nbsp; The government has the power to specify in Regulations what steps will satisfy the duty, though those Regulations are not expected until 2027/28 (in other words, at least a year after the duty has come into force).</p>

<p>That said, some commentators are not convinced that this change to the law will actually make much difference in practice.&nbsp; It would be a bold employer who suggests that they escaped liability for failing in their duty to prevent sexual harassment because they took one step to combat it, when (say) three other obvious steps were also open to them but were ignored.</p>

<p>Where does this leave employers? Satisfying the standard in practice will depend on the specific circumstances of each employer including their size, sector, resources and working environment and courts are likely to take a fact-sensitive, contextual approach. Employers should have already conducted a proper risk assessment in accordance with the EHRC&#39;s existing technical guidance and will have identified what steps should be taken to address the risks that are identified.&nbsp; Provided employers do this, they should be relatively well placed to answer any claim.&nbsp;</p>

<p>In the meantime, a breach of the proactive duty already carries the risk of a compensation uplift of up to 25% in any related tribunal proceedings, a significant commercial incentive to take proactive steps now rather than await regulatory guidance.</p>

<h2>Employers&#39; liability for third party harassment</h2>

<p>While the first two changes described above should not, in our view, create much in the way of additional burdens for employers, from October 2026, the ERA 2025 will impose liability on employers who fail to take &quot;all reasonable steps&quot; to prevent third parties from harassing their employees in the course of their employment. &nbsp;In other words, an employer will be held liable for the actions of a third party in very much the same way as it would be liable for the actions of one of its own employees.</p>

<p>Third-party liability is not completely new. For a period until 2013, the law imposed liability under a &quot;three strikes&quot; rule, requiring at least two prior incidents of which the employer was aware, before liability would attach. The ERA 2025 reintroduces third-party liability without an incident threshold.&nbsp; The only way of avoiding this liability is for the employer to show that it had taken &quot;all reasonable steps&quot; to prevent the harassment.</p>

<p>&quot;Third parties&quot; will mean a person other than the employer or one of its employees. The category is therefore broad, extending beyond the obvious examples of customers, clients and suppliers to include members of the public, delivery drivers, visitors, contractors and even those who share an office building or workspace, such as co-tenants.</p>

<p>Significantly, this duty also extends to harassment related to all relevant protected characteristics (e.g. race, religion and sexual orientation) under the EA 2010, not just sexual harassment.</p>

<p>This will prove particularly challenging for employers in customer-facing sectors such as retail, hospitality and professional services, as well as other sectors where staff regularly interact with third parties over whom employers have limited control.</p>

<h2>How should employers prepare for the introduction of third party harassment?</h2>

<p>Employers will need to be proactive to ensure that they are in the best position to prevent and, if necessary, defend claims.&nbsp; Relevant steps include the following.</p>

<ul>
	<li>Ensuring that the &#39;tone from the top&#39; is clear.&nbsp; Senior leadership engagement with measures that employers implement will be helpful in ensuring compliance.&nbsp; Reports to the board on complaints data and buy-in for staff training and sponsorship of any new policy by a senior officer will all contribute to an anti-harassment culture.</li>
	<li>Carrying out risk assessments to identify the contexts in which employees may be exposed to harassment, including by third parties, and the steps needed to mitigate those risks.</li>
	<li>Reviewing and updating harassment, whistleblowing, and grievance policies to reflect the new standards.</li>
	<li>Reviewing lone working and remote working arrangements, as third party harassment risks may be harder to detect and respond to in these situations.</li>
	<li>Providing staff training so that employees can identify and report harassment, including by third parties, and managers are equipped to respond appropriately, with training refreshed periodically.</li>
	<li>Strengthening reporting channels to ensure they are accessible, confidential, and cover third-party incidents as well as internal complaints, and ensuring employees are aware of the applicable whistleblowing protections.</li>
	<li>Considering anti-harassment signage, and establishing clear procedures for managing or excluding third parties who harass employees.</li>
	<li>Reviewing contracts and terms of business with third parties to include express provisions dealing with harassment by the counterparty&#39;s employees or agents, which include the ability to terminate the agreement for cause if the conduct is sufficiently serious or persistent.</li>
	<li>Keeping records of risk assessments, policy reviews, and training.</li>
</ul>

<p>Further guidance on preparing for the upcoming changes can be found on our <a href="https://www.mishcon.com/employment-rights-act-hub#selectable/opening">ERA Hub</a>.</p>

<h2>How can Mishcon de Reya help?</h2>

<p>Our Employment team has extensive experience advising on complex workplace issues, including harassment and whistleblowing. We can help you to conduct risk assessments, review and update policies and procedures, and design and provide <a href="https://www.mishcon.com/academy/courses/employment-law-training-for-your-organisation">tailored training programmes</a>. If you would like to discuss what the ERA 2025 changes mean for your organisation, please contact a member of the <a href="https://www.mishcon.com/employment-rights-act-hub">Employment team</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AAKEKAAA7AA7YAAAAAAAB6AB7QAP777774AABDAACMJAUCIAAE.jpg" length="14020" />
    </item>
    <item>
      <title><![CDATA[New priority offences under the Online Safety Act: what tech companies need to do now]]></title>
      <link>https://www.mishcon.com/news/new-priority-offences-under-the-online-safety-act-what-tech-companies-need-to-do-now</link>
      <guid>https://www.mishcon.com/news/new-priority-offences-under-the-online-safety-act-what-tech-companies-need-to-do-now</guid>
      <description><![CDATA[In December 2025, the UK Government elevated two offences to "priority" status under the Online Safety Act 2023 (OSA), encouraging or assisting serious self-harm , and cyberflashing.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 30 Jun 2026 11:48:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>In December 2025, the UK Government elevated two offences to &quot;priority&quot; status under the Online Safety Act 2023 (<strong>OSA</strong>), encouraging or assisting serious self-harm , and cyberflashing.</li>
	<li>The necessary changes to the risk framework constitute &quot;significant changes&quot; under the OSA, requiring providers to promptly review and update their Illegal Content Risk Assessments, content moderation policies, and content judgement processes to address the risks of the two new harm categories, including revised risk factors.</li>
	<li>In addition to the updated documents published by Ofcom, amendments to the illegal content Codes of Practice will be implemented separately. Providers should also anticipate further regulatory updates in autumn 2026, alongside policy development in relation to the additional new offences and priority offences introduced through the Crime and Policing Act 2026.</li>
</ul>

<h2>Introduction</h2>

<p>Ofcom has published a <a href="https://www.ofcom.org.uk/online-safety/illegal-and-harmful-content/statement-new-priority-offences-serious-self-harm-and-cyberflashing">statement</a> on new priority offences under the Online Safety Act 2023 (<strong>OSA</strong>), providing guidance to tech companies as to the steps they will now need to take in relation to reviewing and updating their<a href="https://www.mishcon.com/news/online-safety-act-what-you-need-to-know-about-illegal-content-risk-assessments"> Illegal Content Risk Assessments (<strong>ICRAs</strong>)</a> and taking appropriate steps to comply with Ofcom&#39;s updated risk assessment requirements. Providers should now review and update their ICRAs, content moderation policies, and compliance positions across the two new harm categories, and continue to monitor Ofcom&#39;s programme of regulatory updates.</p>

<h2>The new priority offences</h2>

<p>In December 2025, the Government created two new &#39;priority offences&#39;: encouraging or assisting serious self-harm, and cyberflashing. Both were previously non-priority offences. The recategorisation means that regulated online service providers have specific duties in relation to them.</p>

<h3>Suicide and self-harm</h3>

<p>Ofcom has combined the pre-existing offence of encouraging or assisting suicide with the new offence of encouraging or assisting serious self-harm into a single harm category, and has updated its Risk Assessment Guidance and the Illegal Content Codes of Practice (<strong>Codes</strong>) to reflect this. The effect of this change is that providers will need to assess the risk of both harms and assign an overall risk level to &#39;suicide and self-harm&#39;. Further, they will need to take account of relevant measures that specifically apply to suicide content or services at medium or high risk of encouraging or assisting suicide which will now apply to self-harm content and relevant services. However, whilst the offences have been combined in this way, services will be expected to reflect the differences in how the two harms manifest when carrying out their duties.</p>

<p>Ofcom has updated the User-to-User Risk Profile to include the risk factors most strongly associated with suicide and self-harm and added a reference to self-harm in the Search Risk Profile. The Register of Risks suicide and self-harm chapter has also been updated to include additional evidence on how these types of harms manifest online.&nbsp;</p>

<h3>Cyberflashing</h3>

<p>Cyberflashing has been added as a new, standalone category of illegal harm. The offence under section 66A of the Sexual Offences Act 2003 covers the intentional sending of a photograph or film of genitals for the purpose of causing alarm, distress or humiliation, or for the purpose of obtaining sexual gratification, with recklessness as to whether alarm, distress or humiliation would be caused.</p>

<h2>What this means for in-scope service providers</h2>

<p>The changes to the risk framework constitute &quot;significant changes&quot; within the meaning of the OSA, triggering the specific legal obligation for providers to review and update their ICRAs, to assess the risks of the new kinds of illegal harms on their service. In particular, providers should now do the following (noting that Ofcom recommends that providers do this as soon as practicable after publication of its statement):</p>

<ul>
	<li>Consult the updated Guidance: including the <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/updates/risk-assessment-guidance-and-risk-profiles.pdf?v=419947">Risk Assessment Guidance and Risk Profiles</a>, <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/updates/register-of-risks.pdf?v=419946">Illegal Harms Register of Risks</a>, <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/updates/illegal-content-judgements-guidance.pdf?v=419967">Illegal Content Judgements Guidance (ICJG)</a>, and <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/updates/record-keeping-and-review-guidance.pdf?v=420034">Record-keeping and Review Guidance</a>, all of which have been published alongside Ofcom&#39;s statement.</li>
	<li>Update ICRAs: this will involve assessing the risks of suicide and self-harm as a combined harm category, assigning a single overall risk level, and separately assessing the risks of cyberflashing on the service.</li>
	<li>Review content moderation and illegal content judgement processes: the ICJG provides updated guidance on how to assess whether content amounts to either offence.</li>
	<li>Consider the updated risk factors: the updated Risk Profiles include new risk factors directly associated with functionalities such as direct messaging, group messaging, and recommender systems. Providers should consider whether these features increase the likelihood of illegal self-harm or cyberflashing content appearing on their service and reflect this in their risk assessments.</li>
	<li>Consider the updated Codes: as soon as they complete the Parliamentary process and come into force, providers will need to adopt the safety measures set out in the Codes or use other effective measures. Ofcom has published the draft consolidated versions of the <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/statement-new-priority-offences-serious-self-harm-and-cyberflashing/draft-consolidated-version-of-u2u-code.pdf?v=419962">User-to-User Code</a> and the <a href="https://www.ofcom.org.uk/siteassets/resources/documents/online-safety/information-for-industry/illegal-harms/statement-new-priority-offences-serious-self-harm-and-cyberflashing/draft-consolidated-version-of-search-code.pdf?v=419960">Search Code</a>.</li>
	<li>Update record-keeping: to reflect the evidence base required for assessing both suicide and self-harm (as a combined category) and cyberflashing separately.</li>
</ul>

<h2>AI-generated content</h2>

<p>Ofcom has confirmed that it is not yet incorporating generative AI into the Risk Profiles or Register of Risks as a specific risk factor, pending a more comprehensive review. However, existing Code measures already apply to AI-generated content shared by users on user-to-user services, and to GenAI services that fall within the scope of the Act. Providers should therefore already be treating harmful AI-generated content as subject to their existing obligations.</p>

<h2>Next steps</h2>

<p>Ofcom has already published updated versions of the Risk Assessment Guidance and Risk Profiles, Illegal Harms Register of Risk, ICJC and Record Keeping and Review Guidance.&nbsp;</p>

<p>The amendments to the Codes are subject to parliamentary process and will therefore come into force once that process is complete.</p>

<p>More broadly, Ofcom has confirmed that it expects to publish its decisions on user control measures (from its April 2025 Consultation) and additional safety measures (from its June 2025 Consultation) in autumn 2026. Separately, further updates are anticipated following the Crime and Policing Act 2026, which introduces a number of additional new offences and priority offences. Ofcom is scoping the policy work required to respond, and providers should expect further updates to the regulatory framework in due course.</p>

<p>If you require assistance navigating these changes, or understanding the obligations on service providers, please contact a member of our <a href="https://www.mishcon.com/services/the-online-safety-act/team">Online Safety team</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACMUAAAA7AA7YAAAAAAAB6AB7QAP777774AAAYIBSMIEUCAAAA.jpg" length="11401" />
    </item>
    <item>
      <title><![CDATA[Are women and minority ethnic group leaders held to a higher standard: Jennifer Millins on The Glass Cliff Podcast]]></title>
      <link>https://www.mishcon.com/news/are-women-and-minority-ethnic-group-leaders-held-to-a-higher-standard-jennifer-millins-on-the-glass-cliff-podcast</link>
      <guid>https://www.mishcon.com/news/are-women-and-minority-ethnic-group-leaders-held-to-a-higher-standard-jennifer-millins-on-the-glass-cliff-podcast</guid>
      <description><![CDATA[Women and ethnic minority professionals are disproportionately appointed to senior roles during times of crisis, volatility or reputational risk. This phenomenon, known as "The Glass Cliff", sees women and ethnic minority professionals in positions of heightened exposure, where the margin for error is slim, the scrutiny intense and the risk of failure and blame are high.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 30 Jun 2026 11:47:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Women and ethnic minority professionals are disproportionately appointed to senior roles during times of crisis, volatility or reputational risk. This phenomenon, known as &quot;The Glass Cliff&quot;, sees women and ethnic minority professionals in positions of heightened exposure, where the margin for error is slim, the scrutiny intense and the risk of failure and blame are high.</p>

<p>Following on from an in-person event in February 2026, Partner <a href="https://www.mishcon.com/people/jennifer-millins">Jennifer Millins</a> joined the Glass Cliff Podcast with Emma Sangeelee (Partner, CM Murray LLP), Sophie Williams (Author of The Glass Cliff and former global executive at Netflix), and Kevin Hogarth (Partner, PSFI LLP and Board Adviser, Executive Coach and NED) to discuss:</p>

<ul>
	<li>What the glass cliff is - and how societal and often unconscious discrimination shapes leadership outcomes</li>
	<li>Why underrepresented leaders are more likely to be appointed into roles during periods of organisational crisis</li>
	<li>The structural and cultural dynamics behind these appointments, including unequal access to progression, sponsorship and high-profile opportunities</li>
	<li>How unconscious bias shapes decision-making</li>
	<li>The risks for individuals, including scrutiny, limited support and the potential for disproportionate blame when things go wrong</li>
	<li>Practical signs to look out for when considering a senior role</li>
	<li>The role of sponsorship, organisational support and active leadership in improving outcomes</li>
</ul>

<p><a href="https://www.ifseanetwork.com/thought-leadership/glass-cliff-podcast">Watch or listen to the full discussion</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACAT6AAA7AA7YAAAAAAAB6AB7QAP777774AAAFYBSMIEUCAAAA.jpg" length="11428" />
    </item>
    <item>
      <title><![CDATA[UPC's "long-arm" jurisdiction reaches beyond its territory: Fujifilm v Kodak]]></title>
      <link>https://www.mishcon.com/news/upcs-long-arm-jurisdiction-reaches-beyond-its-territory-fujifilm-v-kodak</link>
      <guid>https://www.mishcon.com/news/upcs-long-arm-jurisdiction-reaches-beyond-its-territory-fujifilm-v-kodak</guid>
      <description><![CDATA[The Unified Patent Court Court of Appeal's decision of 2 June 2026 in Fujifilm v Kodak provides a detailed answer to a key question in UPC litigation: can the UPC adjudicate infringement of a European patent validated in a country that is not a party to the UPC Agreement (UPCA), e.g., the UK, and if so, on what terms? The answer is yes, and the court has now set out precisely how such jurisdiction works.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 30 Jun 2026 11:19:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>The Unified Patent Court (<strong>UPC</strong>) Court of Appeal&#39;s decision of 2 June 2026 in <em><a href="https://www.unifiedpatentcourt.org/sites/default/files/files/api_order/Decision 312%2C 333%2C 880 and 882-final 2 June signed %28P%29.pdf">Fujifilm v Kodak</a></em> provides a detailed answer to a key question in UPC litigation: can the UPC adjudicate infringement of a European patent validated in a country that is not a party to the UPC Agreement (<strong>UPCA</strong>), e.g., the UK, and if so, on what terms? The answer is yes, and the court has now set out precisely how such jurisdiction works.</p>

<h2>In brief</h2>

<ul>
	<li>The UPC can hear cases involving patents in countries outside the UPC system, including the UK, provided the defendant is domiciled in an EU Member State.</li>
	<li>Such a defendant cannot ask the UPC to hand the case to a non-EU court on the basis that it would be a more convenient forum.</li>
	<li>If the UPC finds infringement, it can grant relief that covers non-UPC countries, subject to those countries&#39; own courts having the final say on validity of the patent designated in their territory. The Court of Appeal has set out a process by which the UPC should exercise its jurisdiction.</li>
</ul>

<h2>Background</h2>

<p>Fujifilm sued three German-domiciled Kodak companies before the Mannheim Local Division alleging infringement of various designations of a European patent covering lithographic printing plate precursors. The claim included both the German and UK designations. Kodak objected to the UPC having jurisdiction in relation to the UK designation. As we discussed in <a href="https://www.mishcon.com/news/fujifilm-v-kodak-upc-grants-first-injunction-covering-the-uk">our article in July 2025</a>, the Mannheim Local Division accepted jurisdiction and found infringement of both designations, granting the first UPC injunction covering the UK.</p>

<p>The UPC Court of Appeal has now reversed the infringement findings but has also confirmed the court did have jurisdiction in relation to the UK, articulating rules that will govern how the UPC approaches non-UPC designations.</p>

<h2>Does the UPCA confine the UPC to its own territory?</h2>

<p>Kodak&#39;s argument here was textual: <a href="https://www.epo.org/en/legal/up-upc/2022/upca_34.html">Article 34 UPCA</a> provides that UPC decisions cover the territory of those Contracting Member States for which a European patent has effect. Kodak argued this was an implicit limit to the court&#39;s jurisdiction.</p>

<p>The Court of Appeal rejected that reading. Article 34 addresses the scope of decisions as a default rule but says nothing about the limits of jurisdiction. Article 3(c) UPCA, which brings European patents validated outside the UPC territory within <em>&quot;matter governed by&quot;</em> the Agreement, pointed firmly in the other direction. The provision Kodak relied on was about what decisions cover, not about what the court can hear.</p>

<p>The UPC&#39;s jurisdiction derived from the <a href="https://eur-lex.europa.eu/eli/reg/2012/1215/oj/eng">Brussels Recast Regulation</a> (the EU regulation governing cross-border jurisdiction between Member State courts). Under Article 4 of Brussels Recast, defendants domiciled in a Member State should be sued there. All three Kodak entities were domiciled in Germany, which resolved that basic jurisdictional question. Under the &quot;Owusu principle&quot;, a court with jurisdiction cannot decline it on the ground that a non-Member State court would be more appropriate (known as <em>&quot;forum non conveniens&quot;</em>). That principle has been embedded in EU private international law since 2005, and the Court of Appeal applied it in this case.</p>

<p>Meanwhile, the CJEU&#39;s February 2025 ruling in <a href="https://www.mishcon.com/news/bsh-v-electrolux-implications-of-cjeu-decision-on-cross-border-patent-litigation"><em>BSH Hausger&auml;te v Electrolux</em> </a>reinforced this approach in the patent context: Article 24(4) of the Brussels Recast Regulation, which confers exclusive jurisdiction on the courts of the granting state for patent validity proceedings, did not apply to third-state courts such as those of the UK post-Brexit. No competing exclusive jurisdiction existed that could displace the UPC.</p>

<h2>Limits to exercising jurisdiction</h2>

<p>While confirming it had jurisdiction, however, the Court of Appeal drew a clear distinction between the <em>existence</em> of that jurisdiction and its <em>exercise</em>. A court hearing infringement of a patent validated in another country must apply both the law of that country and international law principles, including comity. On that basis, the Court of Appeal set out a structured framework covering the likely scenarios where non-UPC designations are involved and validity is disputed, as follows.</p>

<table border="0" cellpadding="15" cellspacing="1">
	<thead>
		<tr>
			<th scope="col"><span class="text-surface">Scenario</span></th>
			<th scope="col"><span class="text-surface">Fact pattern</span></th>
			<th scope="col"><span class="text-surface">Outcome</span></th>
		</tr>
	</thead>
	<tbody>
		<tr>
			<td>Scenario I</td>
			<td>A freestanding revocation action against a non-UPC designation.</td>
			<td>The UPC has no jurisdiction and must say so.</td>
		</tr>
		<tr>
			<td>Scenario II</td>
			<td>
			<p>Where a UPC-territory patent is found <strong>invalid (but would have been infringed if valid)</strong> and infringement proceedings also rely on a non-UPC designation, the patentee should first be offered the opportunity to withdraw its non-UPC claim.</p>
			If the patentee declines to do so, the outcome turns on whether the non-UPC designation country is in an EU Member State or signatory to the Lugano Convention.</td>
			<td>
			<p>For designations in EU Member States or Lugano Convention countries, the UPC cannot itself assess validity. It should give the defendant an opportunity to file a revocation action before the relevant national court, and should generally stay its own infringement proceedings until that national proceeding concludes. If the defendant does not bring such a national revocation action within <em>&quot;an appropriate period of time&quot;</em>, the UPC should assume the patent valid and proceed to determine the infringement action on that basis.</p>

			<p>For designations in states outside both regimes, e.g., the UK, the infringement action should be dismissed, unless there are specific reasons not to do so (e.g., if there are different claims involved which the UPC considers to be valid).</p>
			</td>
		</tr>
		<tr>
			<td>Scenario III</td>
			<td>Where a UPC-territory patent is found <strong>valid and infringed</strong> in infringement proceedings which also rely on a non-UPC designation.</td>
			<td>
			<p>The UPC may issue conditional orders covering the non-UPC designation, subject to the <strong>condition subsequent</strong> that the competent national court does not later hold that designation invalid. This mechanism (drawn by analogy from the CJEU ruling in <em>Solvay v Honeywell</em>) allows the UPC to grant meaningful cross-border relief without pre-empting national validity decisions.</p>

			<p>Such an order will become permanent if the national court upholds validity, and will fall away (with a two-month window for consequential relief) if it does not.</p>
			</td>
		</tr>
	</tbody>
</table>

<h2>Joint tortfeasorship</h2>

<p>The judgment also confirms that UPC jurisdiction extends to joint tortfeasor claims. Following its October 2025 ruling in <a href="https://www.mishcon.com/news/upc-update-november-2025"><em>Belkin v Philips</em></a>, the Court of Appeal held that an &quot;infringer&quot; under the UPCA includes a person to whom a third party&#39;s infringing acts are attributable because they acted as an accessory.</p>

<p>The facts of this case show where the limits lie. Fujifilm argued that Kodak Graphic, though not the primary infringer, was liable as a joint tortfeasor for UK infringement. The court accepted jurisdiction but dismissed the claim on the substance. Under UK law, joint tortfeasor liability requires a common design and knowledge of the essential facts making the relevant acts wrongful. Fujifilm had not shown that any Kodak entity possessed the necessary technical knowledge before Fujifilm itself raised the allegation. Corporate control of a manufacturer was not, on its own, sufficient.</p>

<h2>What does this decision mean for UPC strategy?</h2>

<p>For patentees with European patents extending into non-UPC territories, the conditional order route opens a path to pan-European relief through a single UPC action, without waiting for national proceedings to conclude. The condition subsequent is a real constraint, but the trade-off is clear: timely and geographically broad relief from the UPC, with national courts retaining the final word on the validity of their own patents.</p>

<p>For defendants, the possibility of avoiding the UPC&#39;s jurisdiction on the basis of <em>&quot;forum non conveniens&quot;</em> has been shut down. Where the defendant is EU-domiciled, the UPC will hear the case. The more productive line of defence lies in challenging the substance: validity of the non-UPC designation, the UPC-territory patent itself, and, as this case shows, whether the right defendant has actually been identified and sued at all.</p>

<p><em>Fujifilm v Kodak</em> is a significant marker in the UPC&#39;s development. The Court of Appeal has read the jurisdictional framework broadly but carefully, providing some limits to the exercise of that jurisdiction.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADQUEAAA7AA7YAAAAAAAB6AB7QAP777774AAAYIBSMIEUCAAAE.jpg" length="20911" />
    </item>
    <item>
      <title><![CDATA[In conversation with Mary Phillip]]></title>
      <link>https://www.mishcon.com/news/tv/in-conversation-with-mary-phillip</link>
      <guid>https://www.mishcon.com/news/tv/in-conversation-with-mary-phillip</guid>
      <description><![CDATA[In our latest ‘In conversation with’ session, the Mishcon Academy were joined by Mary Phillip, former professional footballer and one of the most respected figures in the women’s game.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Mon, 29 Jun 2026 15:06:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>In our latest &lsquo;In conversation with&rsquo; session, the Mishcon Academy were joined by Mary Phillip, former professional footballer and one of the most respected figures in the women&rsquo;s game.</p>

<p>In a thoughtful discussion, Mary reflected on her career in football, the importance of teamwork and encouragement, and the role sport can play in building confidence and resilience. She also spoke about living with MS, sharing how her diagnosis shaped her outlook and the way she approaches challenge and change.</p>

<p>The session gave us the chance to hear a thoughtful and personal perspective on resilience, change and the importance of encouragement.</p>
]]></content:encoded>
      <category>TV</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABPEKAAA7AA7YAAAAAAAB6AB7QAP777774AAA2AARUD4OAYAAI.jpg" length="9922" />
    </item>
    <item>
      <title><![CDATA[Mishcon de Reya recognised in Planning Resource’s Planning Law Survey]]></title>
      <link>https://www.mishcon.com/news/mishcon-de-reya-recognised-in-planning-resources-planning-law-survey</link>
      <guid>https://www.mishcon.com/news/mishcon-de-reya-recognised-in-planning-resources-planning-law-survey</guid>
      <description><![CDATA[We are pleased to announce that Mishcon de Reya’s Planning team, headed by Anita Rivera, ranked 6th in the UK in the latest Planning Resource Planning Law Survey.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Fri, 26 Jun 2026 15:50:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>We are pleased to announce that Mishcon de Reya&rsquo;s Planning team, headed by <a href="https://www.mishcon.com/people/anita-rivera">Anita Rivera</a>, ranked 6th in the UK in the latest <a href="https://www.planningresource.co.uk/planning-lawyers">Planning Resource</a> Planning Law Survey.</p>

<p>This recognition reflects the pace and ambition of a team that continues to grow in the scale, complexity and profile of the work we are delivering for clients.</p>

<p>In addition, <a href="https://www.mishcon.com/people/ian-ginbey">Ian Ginbey</a> has maintained his 3rd place ranking among the UK&rsquo;s leading planning solicitors.</p>

<p>The survey, which is peer‑led and independently assessed, is a strong endorsement from across the development and planning community.</p>

<p>See the survey on the <a href="https://www.planningresource.co.uk/planning-lawyers">Planning Resource website</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AA2RAAAA7AA7YAAAAAAAB6AB7QAP777774AAA3YA5AB7IAIAAA.jpg" length="18213" />
    </item>
    <item>
      <title><![CDATA[Further allegations emerge around Information Commissioner’s resignation - Jon Baines comments for The Times]]></title>
      <link>https://www.mishcon.com/news/further-allegations-emerge-around-information-commissioners-resignation-jon-baines-comments-for-the-times</link>
      <guid>https://www.mishcon.com/news/further-allegations-emerge-around-information-commissioners-resignation-jon-baines-comments-for-the-times</guid>
      <description><![CDATA[Jon Baines, Senior Data Protection Specialist at Mishcon de Reya, has been quoted in The Times in an article regarding the resignation of the Information Commissioner.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Fri, 26 Jun 2026 14:58:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><a href="https://www.mishcon.com/people/jon-baines">Jon Baines</a>, Senior Data Protection Specialist at Mishcon de Reya, has been quoted in The Times in an article regarding the resignation of the Information Commissioner. The article gives further details of the circumstances surrounding the resignation and reports further allegations against Mr Edwards.&nbsp;</p>

<p>Jon said questions remained about &ldquo;how long Mr Edwards&rsquo; behaviour was known about, and by whom, both at the ICO and in government&rdquo;.</p>

<p>He said: &ldquo;If it was known about, why and how was it tolerated, and might it have impacted on decisions made by him and those working for him?&rdquo; Baines added that he intended to write to Dame Chi Onwurah, chair of the science, innovation and technology committee, to suggest that MPs examine the matter.</p>

<p>He said the committee had previously been given reassurance by Paul Arnold, the deputy commissioner and chief executive, about governance and leadership arrangements at the ICO during Edwards&rsquo; absence, but added that &ldquo;a great deal has come to light since then that needs proper scrutiny&rdquo;.</p>

<p><a href="https://www.thetimes.com/article/0f7e0061-afc3-4909-bc6b-413774bf33b0">Read the article in full</a> (subscription required)</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ABOD6AAA7AA7YAAAAAAAB6AB7QAP777774AAAAAASMIEUCAAAA.jpg" length="5714" />
    </item>
    <item>
      <title><![CDATA[‘There’s a nervousness about what is to come’- partners across the City brace for yet another PM – Katy Colton for Legal Business]]></title>
      <link>https://www.mishcon.com/news/theres-a-nervousness-about-what-is-to-come-partners-across-the-city-brace-for-yet-another-pm-katy-colton-for-legal-business</link>
      <guid>https://www.mishcon.com/news/theres-a-nervousness-about-what-is-to-come-partners-across-the-city-brace-for-yet-another-pm-katy-colton-for-legal-business</guid>
      <description><![CDATA[Katy Colton has commented for Legal Business on the prospect of a new prime minister on business and the legal industry.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 16:30:00 GMT</pubDate>
      <content:encoded><![CDATA[<p><a href="https://www.mishcon.com/people/katy-colton">Katy Colton</a> has commented for Legal Business on the prospect of a new prime minister on business and the legal industry.</p>

<p>Katy commented that the outgoing Prime Minister Keir Starmer&rsquo;s tenure had seen a <em>&ldquo;failure to understand the consequences of his policies on businesses.</em></p>

<p><em>&ldquo;Two years ago felt different. Labour did court the business community, but now the general sense among my clients &ndash; and financial services more widely &ndash; is that they were not supported, and that there was a failure to understand the full consequences of certain taxation policies on businesses.&rdquo;</em></p>

<p>Katy also said the business community is yet to be fully convinced by Burnham&rsquo;s vision of &lsquo;Manchester-ism&rsquo;.</p>

<p><em>&ldquo;There is still a nervousness about what is to come,&rsquo; she said.</em></p>

<p><em>&ldquo;As mayor of Manchester, there was a sense Burnham was trying to embrace and understand the importance of capital influx into the region. But at the Makerfield election he focused on local issues &ndash; and kept his powder dry as to his policies as a PM, so his approach to the business community more broadly is still unclear &ndash; and a lack of certainty is never good for the market.&rdquo;</em></p>

<p><a href="https://www.legalbusiness.co.uk/law-firms/theres-a-nervousness-about-what-is-to-come-partners-across-the-city-brace-for-yet-another-pm/">Read the full article</a> (subscription required)</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADICCAAA7AA7YAAAAAAAB6AB7QAP777774AAA6IBRAG4IBQAAA.jpg" length="11866" />
    </item>
    <item>
      <title><![CDATA[Sports update: June 2026]]></title>
      <link>https://www.mishcon.com/news/sports-update-june-2026</link>
      <guid>https://www.mishcon.com/news/sports-update-june-2026</guid>
      <description><![CDATA[A Premier League Independent Disciplinary Commission has ruled in Burnley v Everton that Everton must pay Burnley £26 million in damages plus £9 million in interest, finding that Everton's breach of the Profit and Sustainability Rules (PSR) materially contributed to Burnley's relegation at the end of the 2021/22 season.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 12:58:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>Burnley v Everton: a landmark development in club-to-club liability for financial rule breaches</h2>

<h2>In brief</h2>

<ul>
	<li>A Premier League Independent Disciplinary Commission has ruled in&nbsp;<em>Burnley v Everton</em>&nbsp;that Everton must pay Burnley &pound;26 million in damages plus &pound;9 million in interest, finding that Everton&#39;s breach of the Profit and Sustainability Rules (PSR) materially contributed to Burnley&#39;s relegation at the end of the 2021/22 season.</li>
	<li>The decision is significant because it establishes that financial rule breaches can give rise not only to sporting sanctions (such as points deductions) imposed by the governing body, but also to private compensation claims brought by competitor clubs who can demonstrate they suffered identifiable loss as a result of the breach.</li>
	<li>The ruling carries wider implications for clubs, investors, insurers, and governing bodies, as it increases the financial exposure associated with regulatory non-compliance and suggests that breaches of financial rules may increasingly attract substantial liability, though its ultimate effect depends on the outcome of <a href="https://www.evertonfc.com/news/2026/june/10/club-statement/">Everton&#39;s appeal</a>.</li>
</ul>

<h2>Background</h2>

<p>The claim arose from Everton&#39;s breach of the Premier League&#39;s PSR framework at the end of the 2022/23 season. Everton was subsequently sanctioned by the Premier League for exceeding the permitted financial thresholds but, because of delays in hearing the case, the points deduction imposed in relation to the club&#39;s financial misconduct were only applied in the 2023/24 season. Burnley contended that Everton&#39;s overspending had enabled it to obtain a sporting advantage during the 2021/22 season and that, absent that breach, Everton would have been relegated instead of Burnley. Burnley therefore sought compensation for the financial losses flowing from its relegation, including the loss of Premier League revenues and associated commercial opportunities. The central issue before the Commission was one of causation. Burnley was required to establish that Everton&#39;s breach was not merely a technical regulatory infringement but that it had materially contributed to Burnley&#39;s relegation and the losses that followed.</p>

<h2>The Commission&#39;s findings</h2>

<p>The Commission accepted Burnley&#39;s case. Applying the civil standard of proof, it concluded that, on the balance of probabilities, Burnley would have avoided relegation had Everton not committed the relevant PSR breach. Having found a sufficient causal connection between Everton&#39;s regulatory breach and Burnley&#39;s losses, the Commission awarded Burnley damages of &pound;26 million together with interest. Everton has publicly announced that it has appealed the decision and has criticised the Commission&#39;s conclusions on both factual and legal grounds. The appeal is expected to be heard later this year. Nevertheless, unless overturned on appeal, the decision represents a material development in the legal consequences that may follow breaches of football&#39;s financial regulations.</p>

<h2>Why the decision matters</h2>

<p>The significance of the decision extends beyond the immediate parties. Historically, breaches of league financial regulations have primarily been addressed through sanctions imposed by the relevant governing body, such as points deductions, fines, transfer restrictions or other sporting penalties. The Everton decision demonstrates that regulatory sanctions may not be the only consequence. A club that can establish that it has suffered identifiable loss as a result of another club&#39;s breach may also be able to pursue a private claim for compensation.</p>

<p>The decision therefore introduces an additional layer of risk for clubs operating close to the limits of the regulatory framework. Financial rule breaches may now expose clubs not only to action by competition organisers but also to potentially substantial claims from competitors who can demonstrate loss arising from those breaches. That is particularly the case given that most financial breaches cover multiple seasons, with any sporting sanction only applied in a following season. That means that even where a sporting sanction is applied as punishment by regulators, that is unlikely to be an adequate remedy for a club that has suffered as a result of the breach when it occurred.</p>

<p>The case is also notable because it reflects a willingness by football tribunals to engage with complex questions of sporting causation. Determining whether a particular regulatory breach altered the outcome of an entire football season is inherently difficult. The Commission&#39;s willingness to conclude that causation could be established on the balance of probabilities in this case may encourage similarly affected clubs to consider whether compensation claims are available in future cases.</p>

<h2>Wider implications</h2>

<p>The longer-term implications of the decision remain uncertain and will depend in part on the outcome of Everton&#39;s appeal. However, the ruling is likely to be closely examined by clubs, investors, insurers and governing bodies alike. For clubs, the decision increases the potential financial exposure associated with regulatory breaches. For investors and owners, it highlights the possibility that liabilities arising from historic compliance failures may continue long after the underlying conduct occurred. For governing bodies, it raises important questions about the interaction between regulatory enforcement mechanisms and private compensation claims.</p>

<p>Whatever the outcome of the appeal process, the decision represents a significant development in football regulation. It suggests that breaches of financial rules may increasingly be viewed not only as matters for sporting discipline, but also as conduct capable of giving rise to substantial civil liability where another club can demonstrate that it has suffered loss as a result.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADVUKAAA7AA7YAAAAAAAB6AB7QAP777774AABJICSIIESCAAAE.jpg" length="13776" />
    </item>
    <item>
      <title><![CDATA[AI Act transparency obligations: Code of Practice and draft Guidelines]]></title>
      <link>https://www.mishcon.com/news/ai-act-transparency-obligations-code-of-practice-and-draft-guidelines</link>
      <guid>https://www.mishcon.com/news/ai-act-transparency-obligations-code-of-practice-and-draft-guidelines</guid>
      <description><![CDATA[On 2 August 2026, four categories of obligations relating to transparency for certain AI systems become applicable under Article 50 of the EU AI Act. Each of the obligations apply to different types of AI systems or their outputs, and impose obligations on providers of relevant AI systems, as well as deployers.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 11:49:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>On 2 August 2026, four categories of obligations relating to transparency for certain AI systems become applicable under Article 50 of the EU AI Act. Each of the obligations apply to different types of AI systems or their outputs, and impose obligations on providers of relevant AI systems, as well as deployers.</li>
	<li>On 10 June 2026, the European Commission published the final version of its <a href="https://digital-strategy.ec.europa.eu/en/policies/code-practice-ai-generated-content">Code of Practice on Transparency of AI-Generated Content</a>. The Code is a voluntary tool setting out practical steps that both providers and deployers of in-scope AI systems placed on the market in the EU can take in order to demonstrate compliance with their respective transparency obligations.</li>
	<li>The Code must now be assessed for adequacy by the Commission and the AI Board, but providers and deployers should proceed on the basis that this assessment will be completed before 2 August 2026 with no changes being made.</li>
	<li>Separately, the Commission published <a href="https://digital-strategy.ec.europa.eu/en/library/draft-guidelines-implementation-transparency-obligations-certain-ai-systems-under-article-50-ai-act">draft Guidelines on the implementation of the transparency obligations</a> on 8 May 2026, which were open for stakeholder consultation. Once finalised, the Guidelines will be the primary interpretive document for Article 50 as a whole and will complement the Code.</li>
</ul>

<h2>What are the transparency obligations under the EU AI Act and when do they become applicable?</h2>

<p>The rules on transparency in the EU AI Act (found in Article 50) become applicable on 2 August 2026. There are four categories of transparency obligation in Article 50:</p>

<table border="0" cellpadding="15" cellspacing="1">
	<tbody>
		<tr>
			<td><strong>Providers of AI systems that directly interact with natural persons</strong></td>
			<td>must ensure those systems are designed and developed in such a way that users are informed that they are interacting with an AI system e.g., a chatbot or an agent summarising meeting notes (unless this is obvious to a natural person who is reasonably well-informed, observant and circumspect) (Article 50(1)).</td>
		</tr>
		<tr>
			<td><strong>Providers of AI systems that generate or manipulate synthetic images, video, audio or text content</strong></td>
			<td>must implement machine-readable marking in generative AI systems to enable that content to be detected as such (Article 50(2)).</td>
		</tr>
		<tr>
			<td><strong>Deployers of AI systems that expose natural persons to emotion recognition or biometric categorisation systems</strong></td>
			<td>must inform those persons (Article 50(3)).</td>
		</tr>
		<tr>
			<td><strong>Deployers of AI systems that generate or manipulate deepfakes (as defined) or text published to inform the public on matters of public interest</strong></td>
			<td>must disclose that the relevant content has been artificially generated or manipulated (Article 50(4)).</td>
		</tr>
	</tbody>
</table>

<p>
Providers and deployers of open-source AI systems still need to ensure compliance with relevant transparency requirements.</p>

<p>There is one potential carve-out on timing in relation to the marking and detection obligation on providers in Article 50(2). The AI Omnibus proposal (discussed in our article:&nbsp;<a href="https://www.mishcon.com/news/eu-ai-act-simplified-unpacking-the-ai-omnibus-agreement-of-may-2026">EU AI Act simplified? Unpacking the AI Omnibus Agreement of May 2026</a> ) proposes a limited transitional period for providers of generative AI systems that were already placed on the EU market or put into service before 2 August 2026, who will have until 2 December 2026 to comply with the marking and detection obligation. However, the other Article 50 obligations will still all take effect on 2 August 2026 without any transition, including for legacy systems. Generative AI systems newly placed on the EU market from 2 August 2026 must also comply with all four transparency categories from that date.</p>

<h2>What are the consequences of non-compliance with the EU AI Act transparency obligations?</h2>

<p>Non-compliance with Article 50 can attract fines of up to &euro;15 million or 3% of worldwide annual turnover, whichever is higher. Compliance with the Article 50 transparency obligations is therefore a significant legal and commercial priority for both providers and deployers operating in the EU.</p>

<h2>What is the difference between the Code of Practice and the Guidelines?</h2>

<p>The two instruments have a different scope:</p>

<ul>
	<li>The Code addresses only the transparency obligations in Articles 50(2) and 50(4), i.e., providers&#39; marking and detection obligations, and deployers&#39; deepfake and text labelling obligations.</li>
	<li>In contrast, the draft Guidelines address the full scope of Article 50, including additionally: Article 50(1) (re interactive AI systems) and Article 50(3) (re emotion recognition and biometric categorisation systems). Providers and deployers subject to these obligations must look to the Guidelines, not the Code, for practical guidance.</li>
</ul>

<p>The Code is voluntary and does not replace the AI Act or the Guidelines. Where a provider or deployer does not sign the Code, they will need to demonstrate compliance with their transparency obligations through other means after 2 August 2026 (or 2 December 2026 for Article 50(2) in the case of legacy systems). Non-signatories will be assessed individually by national market surveillance authorities and will be expected to benchmark their approach against the Code in any event.</p>

<p>Signing the Code will assist providers and deployers to demonstrate compliance with their transparency obligations, and give them the benefit of a streamlined compliance pathway. Signatories will also be able to participate in Signatory Taskforces, to share practices and advance implementation of marking and labelling requirements.</p>

<h2>What does the Code say? Section 1 &mdash; Providers</h2>

<p>Section 1 of the Code focuses on the obligations of providers who develop an AI system capable of generating synthetic audio, image, video or text content (as set out in Article 50(2)). It details four commitments relating to marking of AI-generated content and related detection mechanisms, including through machine-readable methods that are effective, interoperable, robust and reliable.</p>

<p>Whilst the relevant transparency obligations in the EU AI Act do not apply to them, providers of general-purpose AI (GPAI) models and providers of marking and detection solutions may also choose to sign Section 1. This will facilitate compliance by downstream providers of AI systems built on those models and/or using third-party detection mechanisms. The draft Guidelines encourage providers of GPAI models to implement appropriate transparency measures at the model level, even where they do not formally fall within Article 50.</p>

<p>Section 1 contains the following four commitments by providers, and supporting measures:</p>

<details><summary><span class="summary-text">Commitment 1: Marking of AI-generated or manipulated content</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Signatories commit to implementing a marking solution for AI systems they place on the market in the EU. The commitment is expanded upon through various measures.</p>

<p><em>Machine-readable marking techniques</em></p>

<p>Signatories will implement a marking solution consisting of at least one machine-readable mechanism that is effective, reliable, robust and interoperable. Until a single marking technique meets all four requirements, signatories should adopt a multi-layered marking system (a single layer may still be sufficient in specific cases, for example in closed industrial environments where the risk of deception is low). The Code discusses the use of digitally signed metadata, imperceptible watermarking and optional fingerprinting or logging.</p>

<p><em>Non-removal of markings</em></p>

<p>Signatories should adopt cumulative measures to effect best efforts to preserve metadata markings, including retaining existing metadata markings and not intentionally altering or removing them. Acceptable use policies and terms and conditions should prohibit intentional removal of or tampering with metadata markings, other than for legitimate purposes.</p>

<p><em>Optional measures relating to marking</em></p>

<p>Signatories are encouraged to record richer provenance information and also to adopt optional functionality to allow deployers and other users to directly apply a perceptible label to relevant content, facilitating compliance by downstream deployers with their own labelling obligations.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 2: Detection of markings of AI-generated or manipulated content</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Signatories commit to providing means to enable detection of machine-readable markings, and to present detection results in a clear, distinguishable and accessible manner.</p>

<p><em>Detection mechanisms for markings</em></p>

<p>Detection solutions should be made available as either a public specification allowing any third party to implement a detection mechanism, a piece of software, or a cloud-based service. They should be free (though signatories with fewer than one million monthly users receiving detection requests from a single user exceeding a reasonable threshold may charge a fee).</p>

<p><em>Clear and accessible disclosure of detection results</em></p>

<p>Signatories will ensure that detection results, however generated, are presented in a clear and accessible way to natural persons, and in compliance with applicable accessibility requirements.</p>

<p><em>Optional measures relating to detection</em></p>

<p>As part of their detection solution, signatories may include a forensic detection tool to detect content for which marking has been stripped. They are also encouraged to provide information to deployers to support informed decisions on what marking and detection solutions to use, together with end-user literacy resources.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 3: Measures to meet marking and detection solution requirements</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Signatories commit to ensuring their marking and detection solutions are effective, achieve a high degree of reliability, maintain intended performance levels under varying conditions (including adversarial robustness), and are interoperable. The Code envisages a staged implementation in relation to interoperability.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 4: Testing, Verification and Compliance</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Finally, signatories commit to setting up and maintaining compliance, testing, verification and monitoring processes.</p>
</div>
</details>

<p>&nbsp;</p>

<h2>What does the Code say? Section 2 - Deployers</h2>

<p>Section 2 of the Code focuses on the obligations of deployers of generative AI systems, in particular those who use generative AI systems for professional purposes and who are subject to the transparency obligations in Article 50(4) relating to labelling of: (1) deepfakes; and/or (2) AI-generated or manipulated text published with the purpose of informing the public on matters of public interest (which has not undergone human review or editorial control by a natural or legal person holding editorial responsibility for the content).</p>

<p>There are important limits to deployers&rsquo; relevant transparency obligations. For example, deepfakes in scope comprise images, audio or video content that are AI-generated or manipulated to resemble existing persons, objects, places, entities or events, and which would falsely appear to a person to be authentic or truthful. The draft Guidelines clarify that the test is whether the subject resembles something that can exist or could have existed in reality. For example, simulated persons or events etc that defy the laws of nature or physics (such as humans flying without mechanical aids, dragons or elephants driving cars) would be considered unrealistic and fall outside the scope of the transparency obligation.</p>

<p>The draft Guidelines also confirm that any intent to deceive by the deployer is irrelevant: the test is whether the content would falsely appear authentic to the audience that may be exposed to the content, including vulnerable groups such as children (where the threshold for deception will be lower).</p>

<p>The transparency obligation is attenuated where deepfake content forms part of an <em>evidently</em> artistic, creative, satirical, fictional or analogous work or programme. The draft Guidelines note that this requires that the content&#39;s categorisation as artistic etc is neither potentially unclear nor ambiguous. Commercial usages involving AI-generated deepfakes of celebrities, for example, would not fall within the attenuated exception. Importantly, this &#39;exception&#39; relates only to the form of disclosure; it does not remove the transparency obligation. The AI origin must still be disclosed, but in an appropriate manner that does not hamper the display or enjoyment of the work. This will require a case-by-case assessment of all relevant factors, such as the nature of the work, the audience and context.</p>

<p>The draft Guidelines give as examples of an artistic/fictional work AI-generated special effects in movies such as simulations of actors, de-aging of actors and digital replicas of deceased actors; and AI-generated gaming imagery involving deepfake simulations of existing persons or locations. However, an AI-generated image of a celebrity implying their involvement in an activity, with no fictional, satirical or analogous purpose, would not fall within the category.</p>

<p>Aside from the requirements of the EU AI Act, of course, deployers should consider personality rights, intellectual property, data protection provisions and other appropriate measures (as discussed in our <a href="https://www.mishcon.com/news/when-ai-impersonates-taking-action-against-deepfakes-in-the-uk">article on deepfake regulation</a> in the UK).</p>

<p>Deployers make four commitments in the Code of Practice as follows:</p>

<details><summary><span class="summary-text">Commitment 1: Disclosure of deepfakes and published text</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Deployer signatories commit to ensuring consistent and effective disclosure of the artificial origin of deepfakes or published AI-generated text. In particular, they should use the &#39;EU icon&#39; (or an equivalent icon complying with the Code). Annex 1 to the Code contains representations of optional icons, with examples of specific use cases, and style variations (including accompanying text to capture content that is both fully AI-generated (AI + GENERATED) and partially AI-modified (AI + MODIFIED)).</p>

<p>There is also detailed practical guidance on how to use the icons (or an equivalent label), including design and placement specifications, timing and visibility/audibility of disclosure, and requirements around accessibility measures. The design and placement specification requirements are detailed and deployers should analyse them carefully to ensure compliance.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 2: Internal processes</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Deployer signatories are required to put in place appropriate internal processes to ensure compliance and to publish information on their disclosure solution. They also commit to making proportionate efforts to ensure awareness of the disclosure obligations among their staff and external contractors.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 3: Disclosure for artistic, creative and similar works</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>As noted above, for artistic, creative, satirical, fictional or similar works, the transparency obligation is limited to disclosing the existence of AI-generated or manipulated content in an appropriate manner that does not hamper the display or enjoyment of the work. For example, in a digital context, the icon may be placed outside, but adjacent to, the video or image frame, provided it remains perceivable by the end user without additional engagement.</p>
</div>
</details>

<details><summary><span class="summary-text">Commitment 4: Human review and editorial control for published text</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Media service providers may rely on an exception to the disclosure obligation where AI-generated or manipulated text has undergone human review or editorial control, by applying their existing review and editorial procedures. However, the draft Guidelines construe this exception narrowly: human review must involve deliberate examination of the substance of the content by persons with relevant competence and professional judgement. Superficial, solely formal or procedural checks (such as spell-checking etc) without substantive engagement will not satisfy the exception. Media service providers should therefore assess whether their existing editorial workflows involve substantive review of AI-generated text, and that they can demonstrate the adequacy of their processes if required.</p>

<p>AI agents that are capable of generating texts, such as emails or posts on social media may not always go through human review or editorial control due to their autonomous nature. They are unlikely to benefit from the exception above.</p>
</div>
</details>

<p>&nbsp;</p>

<h3>Analysis on marking and detection obligations</h3>

<p>There are some further points to note in relation to providers/deployers&#39; transparency obligations. First, the draft Guidelines recognise an exception from the requirement to mark and detect AI generated outputs in limited cases of &quot;industrial AI applications&quot; and B2B applications. The exception will cover outputs such as engineering drawings, industrial production workflows, and similar content.&nbsp; However, this exception is narrow and will only apply where two cumulative requirements are met:</p>

<ul>
	<li>The generated output is strictly technical in nature; and</li>
	<li>It is only intended to be perceived by a limited pre-defined number of natural persons acting in a professional capacity within the provider/deployer&#39;s organization. If the output is shared with an external party, such as a customer, supplier or contractor, the full marking obligation will apply.</li>
</ul>

<p>Article 50(2) also contains certain exceptions to providers&#39; transparency requirements. One relates to assistive functions for standard editing. The draft Guidelines distinguish between editing that is exempt from marking obligations and editing that triggers them:</p>

<ul>
	<li>Exempt (standard editing): e.g., grammar correction, spellchecking, format conversions, technical compression, noise reduction; minor cropping, rotating or rescaling; minor colour adjustments; limited sharpening; removing red-eye caused by flash photography etc.</li>
	<li>Marking required (substantive alteration): substantial alterations of content including AI-generated translations and summaries; addition or removal of objects; face alteration; converting black-and-white images to colour; creation of composite images or video clips.</li>
</ul>

<h2>Interactive AI systems and emotion recognition/biometric categorisation systems</h2>

<p>The Code of Practice does not deal with the two other transparency obligations in Article 50, concerning interactive AI systems and emotion recognition/biometric categorisation systems.</p>

<p><strong><em>Article 50(1): Interactive AI systems</em></strong></p>

<p>Providers of AI systems designed to interact directly with natural persons (such as chatbots, AI agents, virtual assistants and AI companions) must inform users that they are interacting with an AI system. This obligation applies from 2 August 2026.</p>

<p>The test is whether it would be obvious to the reasonably well-informed, observant and circumspect natural person that they are directly interacting with an AI system, which will depend upon the nature of the interaction and the composition of the target audience. For example, the draft Guidelines suggest that AI-powered code assistance chatbots available only to professional developers and AI-enabled Non-Playable Characters (NPCs) in video games would meet the obviousness exception. However, AI companion pets, AI systems embedded in immersive environments using realistic avatars, and AI chatbots embedded in online platforms or assistance support tools where users directly interact and receive AI outputs they may perceive as neutral or human generated (including via agentic AI systems) would not.</p>

<p>The draft Guidelines also confirm that certain techniques will not, on their own, satisfy the transparency requirements e.g., disclosures contained only in terms and conditions, machine-readable markings which are not perceivable by users at the point of interaction, unclear or ambiguous signals (e.g., generic references to an &quot;assistant&quot;) or technical or capability-based descriptions (e.g., &quot;this system uses LLMs&quot;). Disclosure protocols will therefore need reviewing and updating in advance of 2 August 2026.</p>

<p><strong><em>Article 50(3): Emotion recognition and biometric categorisation systems</em></strong></p>

<p>Deployers of emotion recognition and biometric categorisation systems must inform all natural persons exposed to the system&rsquo;s operation, at the latest at the time of first exposure, unless an exception applies.</p>

<p>Importantly, this obligation covers all biometric categorisation systems, not just those classified as high-risk. The format for providing the disclosure is flexible, provided it is clear and distinguishable and meets applicable accessibility requirements. The example is given of a centrally placed pop-up onboarding message before a computer game is launched indicating that the player&#39;s face is recorded, capturing their emotions.</p>

<h2>General requirements for all of the transparency requirements</h2>

<p>Article 50(5) is a horizontal provision applying to all of the transparency obligations. It requires that disclosures are made to natural persons in a clear and distinguishable manner at the latest at the time of first interaction or exposure and conform to applicable accessibility requirements. The draft Guidelines provide further insight:</p>

<ul>
	<li>&lsquo;Clear&rsquo; means noticeable and easy to understand, including for people with accessibility needs.</li>
	<li>&lsquo;Distinguishable&rsquo; means easily identifiable as separate from surrounding content and the environment in which it is presented. Disclosures cannot therefore be hidden in terms and conditions, manuals or layered menus.</li>
	<li>&lsquo;First exposure&rsquo; does not focus on just the first viewer but applies to each natural person who encounters the content for the first time. This means, for example, that disclosures in a live broadcast should be made at the beginning of the broadcast and also at later stages.</li>
</ul>

<h2>Interaction with other laws</h2>

<p>The transparency provisions in the EU AI Act focus on how content has been created and its artificial origin. Providers and deployers must also, of course, comply with data protection laws, and other regimes, including intellectual property rights and criminal law regimes. The provisions also facilitate effective implementation of the EU&#39;s Digital Services Act, as very large online platforms (VLOPs) and very large online search engines (VLOSEs) may make labelling tools available to deployers (who may use them to fulfil their labelling obligations). Further, platforms may remove a non-labelled deepfake under the DSA on the basis that it constitutes &#39;illegal content&#39;.</p>

<h2>Next steps for developers and deployers</h2>

<p>To be included in the initial list of signatories to the Code, completed forms must be submitted by <strong>22 July 2026 (6pm CEST)</strong>. Signatories may sign the entire Code, or just Section 1 (providers), Section 2 (deployers), or both, but cannot sign individual commitments within each Section.</p>

<p>More generally, given the approaching compliance date of <strong>2 August 2026</strong> for the majority of the transparency obligations, providers and deployers should prioritise:</p>

<ul>
	<li><strong>Scope assessment:</strong> Identify all AI systems in use and determine which Article 50 obligations apply.</li>
	<li><strong>Chatbot etc disclosures:</strong> Review all customer-facing AI interfaces and consider whether disclosure design changes are required.</li>
	<li><strong>Deepfake and text labelling:</strong> Review content creation and publication workflows and implement the required disclosures, including e.g., through adopting the EU icon.</li>
	<li><strong>Emotion recognition or biometric </strong><strong>categorisation: </strong>identify relevant systems in use and implement the required disclosures, including for systems not classified as high-risk.</li>
</ul>

<h2>How Mishcon can help</h2>

<p>If you would like more guidance on transparency obligations under the EU AI Act, please get in touch with a member of our <a href="https://www.mishcon.com/services/artificial-intelligence-and-machine-learning">AI team</a>. You can also track developments via our <a href="https://www.mishcon.com/ai-resource-centre">AI resource centre</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADUUKAAA7AA7YAAAAAAAB6AB7QAP777774AAAKQDOAEDQBAAAA.jpg" length="7873" />
    </item>
    <item>
      <title><![CDATA[Agentic AI and cybersecurity: legal obligations and regulatory risks under UK and EU laws]]></title>
      <link>https://www.mishcon.com/news/agentic-ai-and-cybersecurity-legal-obligations-and-regulatory-risks-under-uk-and-eu-laws</link>
      <guid>https://www.mishcon.com/news/agentic-ai-and-cybersecurity-legal-obligations-and-regulatory-risks-under-uk-and-eu-laws</guid>
      <description><![CDATA[Explore legal obligations and cybersecurity risks of agentic AI under UK and EU laws, including the EU AI Act, CRA, GDPR, NIS2, and DORA.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 09:38:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In brief</h2>

<ul>
	<li>Agentic AI has created new legal and cybersecurity challenges. Unlike conventional AI, agentic AI acts autonomously across systems and executes tasks without human approval at each step, meaning that providers and deployers face legal and cybersecurity obligations under multiple overlapping EU and UK frameworks - including the EU AI Act, the Cyber Resilience Act, GDPR, NIS2, and DORA - depending on what the agent does, where it operates, and who uses it.</li>
	<li>Agents are vulnerable to novel threats such as prompt injection, excessive agency, privilege escalation through tool chains, and oversight evasion. There is no single international standard currently covers all applicable EU legal requirements, leaving providers to operate within an incomplete and still-evolving compliance landscape.</li>
	<li>Compliance must be built into the architecture of the agent, not bolted on. Practical steps include mapping the agent&#39;s external actions to identify which laws apply, implementing strict access controls and permissions, building structural constraints, and incorporating monitoring and audit trails to detect and log anomalous behaviour.</li>
</ul>

<p>AI is no longer just a tool that answers questions. The next wave - agentic AI - acts autonomously, executing tasks, and interacting with real systems on behalf of users. For in-house lawyers, product teams and CISOs, this shift creates a new set of legal and security obligations. This article maps out what agentic AI actually is, where the cybersecurity risks lie, and what the regulatory picture looks like today.</p>

<p>For those already navigating this space, or preparing to, the key questions are: which laws apply, what the cybersecurity obligations actually require, and how to build compliance into the architecture of the agent itself.</p>

<h2>What Is agentic AI and how does it differ from conventional AI?</h2>

<p>Most people are familiar with AI assistants that respond to prompts. An agentic AI system does something fundamentally different: it breaks a given goal into sub-tasks, and plans, decides, and executes them, often without a human approving each step. It can interact with the outside world to complete the tasks and connect to databases and browsers, learning from what it encounters.</p>

<h2>Legal obligation to apply cybersecurity measures to agentic AI</h2>

<p>For providers and deployers of agentic AI, the first question is: which cybersecurity laws actually apply? The answer depends on what the agent does, where it operates, and who uses it. The sections below set out the primary legal frameworks currently in force or coming into force across the EU and UK.</p>

<p>Providers and deployers of agentic AI with high impact are likely to be subject to legal requirements to apply cybersecurity measures in the EU and the UK mainly focused on the risks posed to users or those external to the provider of the AI agent. This is different to enterprise-level security that CISOs are used to handling, where the focus is on protecting the organisation. Therefore, it is likely that compliance efforts with the legal requirements around cybersecurity of AI agents will become a collaboration between product engineers, in-house lawyers and in-house CISO teams.</p>

<h2>EU AI Act</h2>

<p>If the AI agent is used in the EU, it could be subject to the EU AI Act depending on the agent&#39;s intended purpose and foreseeable use. For AI agents classified as &#39;high-risk&#39; there are strict cybersecurity requirements to apply before they can be used in the EU to ensure safety, robustness and resilience against attacks throughout their lifecycle (Article 15).&nbsp; More specifically:</p>

<ul>
	<li>Prevent data manipulation and data vulnerabilities</li>
	<li>Maintain logging</li>
	<li>Ensure resilience against adversarial attacks</li>
</ul>

<p>For general-purpose AI models that enable agents, Article 55 of the EU AI Act creates obligations where systemic risk is present, i.e. AI systems with computational capabilities capable of producing harm on societal level. These obligations include model evaluation, adversarial testing, incident reporting to the AI Office, and cybersecurity measures.</p>

<p><em>Key milestones:</em> Rules for high-risk AI apply from 2 August 2026 (potentially could be moved to 2 December 2027 due to the proposed EU Digital Omnibus, as discussed in our recent article: <a href="https://www.mishcon.com/news/eu-ai-act-simplified-unpacking-the-ai-omnibus-agreement-of-may-2026">EU AI Act simplified? Unpacking the AI Omnibus Agreement of May 2026</a>).</p>

<h2>EU Cyber Resilience Act (CRA)</h2>

<p>The CRA covers products with digital elements, including standalone software placed on the market with network connectivity, which means most AI agents fall within its scope. The CRA&#39;s essential requirements focus on cybersecurity: protecting against unauthorised access, manipulation, and disruption.</p>

<p>The CRA and the AI Act apply in parallel; however, if providers of AI agents comply with the requirements of the CRA they are deemed compliant with Article 15 of the EU AI Act if they are classified as high-risk AI systems.</p>

<p>Key milestones: vulnerability reporting obligations under the CRA apply from September 2026; full CRA conformity is required by December 2027.</p>

<h2>Other laws that may also apply</h2>

<p>Additionally, there may be security obligations under other laws that apply depending on what the AI agent touches or the entity using it. A useful diagnostic (not exhaustive):</p>

<table border="0" cellpadding="15" cellspacing="1">
	<thead>
		<tr>
			<th scope="col"><span class="text-surface">If the agent...</span></th>
			<th scope="col"><span class="text-surface">Then consider...</span></th>
		</tr>
	</thead>
	<tbody>
		<tr>
			<td>
			<p>processes personal data (names, emails, financial records, health information)</p>
			</td>
			<td>
			<p>GDPR (both UK and the EU) - near-universal obligation, including the obligation to implement technical and organisational measures to ensure the security of personal data processing (confidentiality, integrity, availability, and resilience of processing systems and services &ndash; Article 32)</p>
			</td>
		</tr>
		<tr>
			<td>
			<p>is a smart device or a connected product</p>
			</td>
			<td>
			<p>Revised Product Liability Directive (EU) &ndash; safety-relevant cybersecurity requirements apply to manufacturers or distributors</p>
			The Product Security and Telecommunications Infrastructure Act 2022 (UK) &ndash; obligation to apply minimum security requirements apply to manufacturers of connectable (or &#39;smart&#39;) products</td>
		</tr>
		<tr>
			<td>
			<p>is used by an entity providing essential or important services</p>
			</td>
			<td>
			<p>NIS2 Directive (EU) &ndash; obligation to apply cybersecurity measures to prevent any significant disruptions to services</p>
			Updates to NIS Regulation 2018 (UK) are expected to follow NIS2 in late 2026 or early 2027</td>
		</tr>
		<tr>
			<td>
			<p>is used by a regulated financial entity for credit or trading</p>
			</td>
			<td>
			<p>DORA (EU) - obligation to protect ICT systems that support critical or important functions from security vulnerabilities and risks</p>
			OpRes rules (UK rules similar to DORA) &ndash; obligation to maintain systems that support important business services so that they withstand impacts of disruption through cyber security failures</td>
		</tr>
	</tbody>
</table>

<h2>How do you comply with these requirements?</h2>

<p>The European Commission has mandated the development of technical standards to support compliance with the EU AI Act and the CRA. There is no legal obligation to apply these standards but they have been specifically created to help businesses comply with the requirements of European legislation. As such, companies that apply them are &#39;presumed to be compliant with the legal requirements&#39;.</p>

<p>The key standards are:</p>

<p><strong>&#39;prEN 18282 &ndash; Quality management system for EU AI Act Regulatory Purposes&#39; </strong>is a standard designed for providers of high-risk AI systems.</p>

<p><strong>M/606 technical standard</strong> supporting compliance with the CRA (products with digital elements, e.g. software).</p>

<p>Unfortunately, these are still in draft form. There are other international guidance documents that The EU Agency for Cybersecurity (ENISA) encourages to use to demonstrate compliance with the EU legislation, such as EN ISO/IEC 27002 (information security controls) that ENISA identified as relevant and covering six out of 13 cybersecurity requirements under CRA.</p>

<p>Currently, according to <a href="https://www.enisa.europa.eu/sites/default/files/2024-11/Cyber Resilience Act Requirements Standards Mapping - final_with_identifiers_0.pdf">ENISA&#39;s CRA Requirements Standards Mapping report</a>, there is no single international standard that would cover all the EU legal requirements around cybersecurity. ISO/IEC FDIS 27090 is a cybersecurity guidance specific to AI systems and addresses AI-specific threat categories including prompt injection (see description below), privilege escalation through tool chains, and adversarial manipulation. However, it is also still in draft form. So, an AI agent provider will struggle to identify which technical standard to follow to demonstrate compliance. The available draft standards can and should be used to demonstrate compliance; however, agentic systems are not fully addressed by those standards or not yet finalised.</p>

<h2>What cybersecurity risks are unique to agentic AI systems?</h2>

<p>The security community has been studying agentic systems closely, and the findings are insightful. Agents introduce a fundamentally different risk surface from conventional applications because they take autonomous actions across systems.</p>

<p>In one <a href="https://arxiv.org/pdf/2604.04604">reported study</a>, agents with shell access, email access, and persistent memory executed destructive system-level actions, complied with requests from non-authorised users, and enabled partial system takeover. This is of concern on many levels, but also demonstrates threats posed by AI agents.</p>

<p>The principal cybersecurity risks that are distinct to agentic AI systems can be summarised as follows:</p>

<ul>
	<li>Prompt injection: an attacker embeds malicious instructions within content the agent processes &mdash; such as a web page, email, or tool output &mdash; causing the agent to act against the user&#39;s intentions while using its own legitimate permissions</li>
	<li>Excessive agency and over-broad permissions: agents are routinely granted access to systems far wider than any individual task requires, creating an unnecessarily large attack surface that amplifies the impact of any compromise</li>
	<li>Privilege escalation through tool chains: as an agent moves between connected tools and systems, it may acquire or exploit permissions beyond those it was originally granted, allowing it to reach sensitive resources outside its intended scope</li>
	<li>Oversight evasion: agents trained on goal-directed objectives can develop strategies to circumvent monitoring systems or misreport their own operational status, making detection of anomalous behaviour significantly harder</li>
</ul>

<h2>What this means in practice</h2>

<p>For in-house lawyers and CISOs, several practical conclusions follow. These practical mitigations are unglamorous and familiar:</p>

<ul>
	<li><strong>Start with an external-action inventory. </strong>The regulatory compliance trigger flows from what the agent does to the world &mdash; what data it processes, what systems it connects to, what decisions it influences. Map that first.</li>
	<li><strong>Cybersecurity measures may be a legal obligation.</strong> Check what laws apply. The CRA and the AI Act apply in parallel. There may be other legal acts that require security measures.</li>
	<li><strong>Build external constraints, not just internal instructions. </strong>Providers of AI agents cannot rely on telling an agent to follow instructions.&nbsp; They need to build them so that it is structurally difficult for an agent to operate outside its intended boundaries. There needs to be monitoring built in also to detect and log it when it tries. Human-in-the-loop should be considered for high-consequence actions.</li>
	<li><strong>Design using existing standards but plan to adapt.</strong> Use available draft standards &mdash; M/606, M/613 drafts, ISO/IEC 27090. Document your decisions clearly. There may still be gaps, but demonstrating good-faith engagement with the available guidance is both prudent and legally defensible.</li>
	<li><strong>Implement access control.</strong> Ensure that permissions and accesses given to an agent are defined, including what data and systems it can access, what capabilities it can use and how it can interact with external systems. Academics <a href="https://arxiv.org/pdf/2604.04604">recommend building constraints</a> so that each tool connection requires authorization, and credentials are only provided for a specific action. One should also build audit trails to track tool connections, data accessed and outcomes produced for compliance purposes.</li>
	<li><strong>Build agentic triggers into detection.</strong> Ensure that it is possible to monitor agentic workflows, and that they can be differentiated from human activity, and that access control rules are also in scope.</li>
</ul>

<h2>How can Mishcon de Reya help?</h2>

<p>We advise providers, deployers, and users of AI agents on the full range of regulatory and cybersecurity compliance obligations arising under the EU AI Act, the Cyber Resilience Act, and intersecting UK and EU legislation. Please get in touch with a member of our <a href="https://www.mishcon.com/services/data-services">Data&nbsp;team</a> to discuss how we can help.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AAJDEAAA7AA7YAAAAAAAB6AB7QAP777774AAAAAA7IG72BQAAE.jpg" length="17465" />
    </item>
    <item>
      <title><![CDATA[Is your family office ready for AI? Key risks and how to mitigate them]]></title>
      <link>https://www.mishcon.com/news/is-your-family-office-ready-for-ai-key-risks-and-how-to-mitigate-them</link>
      <guid>https://www.mishcon.com/news/is-your-family-office-ready-for-ai-key-risks-and-how-to-mitigate-them</guid>
      <description><![CDATA[Family offices are increasingly adopting AI to drive efficiency and enhance investment processes; however, this brings significant legal, regulatory and operational risks, including data protection breaches, loss of privilege and unreliable outputs. We take a look at how Family Offices must therefore implement robust governance, training and safeguards to mitigate these risks and protect both the office and the family from financial, legal and reputational harm.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 09:03:00 GMT</pubDate>
      <content:encoded><![CDATA[<h2>In&nbsp;brief&nbsp;</h2>

<ul>
	<li>AI adoption in family offices is accelerating rapidly, but significant legal and operational risks accompany its use</li>
	<li>Getting it wrong can result in regulatory fines, claims against directors, and reputational damage for both the family office and the family</li>
	<li>Family offices should act now to put appropriate safeguards in place</li>
</ul>

<h2>How&nbsp;are family offices using AI?&nbsp;</h2>

<p>In line with other sectors, we are seeing a marked increase in adoption of generative AI by family offices.&nbsp;<a href="https://www.privatebank.citibank.com/insights/the-family-office-survey">Citibank&#39;s Family Office surveys</a>&nbsp;show growing uptake, with more than a fifth of respondents in their 2025 survey (22%) having automated some operational tasks, up from 13% in 2024.&nbsp; The survey also demonstrates expansion into other applications of AI, with use for portfolio construction or optimization increasing from 6% to 13% and use for investment performance reporting increasing from 6% to 16%.&nbsp; Given the greater adoption of AI more generally, and the improvement in the tools themselves, we can expect to see these numbers increase still further in 2026, with AI being used for ever more sophisticated applications. The commercial appeal is obvious - reducing cost and accelerating key processes - but family offices can be particularly susceptible to the risks of AI adoption by virtue of their structures, and must actively monitor and mitigate the associated risks.</p>

<h2>What are the risks?&nbsp;</h2>

<details><summary><span class="summary-text">Loss of legal privilege</span><br />
<svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Uploading legal advice or other privileged information to AI tools may result in a loss of the protection offered by legal professional privilege. The case law in this area is developing but we have already seen courts in both England (<a href="https://caselaw.nationalarchives.gov.uk/ukut/iac/2026/81"><em>Munir v Secretary of State for the Home Department</em></a>) and the US (<em>United States of America v Bradley Heppner</em>) commenting that uploading privileged material into public AI tools places that information in the public domain, resulting in a loss of confidentiality and thus legal professional privilege (or the analogous attorney-client privilege in the US). There is also a risk even with closed AI tools, that prompts and chat logs may be disclosable in litigation if it is deemed that litigation privilege does not apply (for example, because litigation was not in contemplation at the time).</p>
</div>
</details>

<details><summary><span class="summary-text">Inaccurate output </span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>The risk of AI hallucinations has been widely reported, with generative AI tools confidently presenting factually incorrect data. Staff must be trained on the limitations of AI, and all AI output must be rigorously checked before reliance.</p>
</div>
</details>

<details><summary><span class="summary-text">Data Protection </span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>Family offices routinely handle highly sensitive data. Feeding that data into a public AI tool without proper assessment of data handling practices is likely to breach data protection obligations. Family offices must ensure personal data is processed lawfully with appropriate technical and organisational measures in place. Family offices considering adopting AI may need to undertake a data protection impact assessment, depending upon the risk involved.</p>
</div>
</details>

<details><summary><span class="summary-text">Intellectual Property</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>AI models are trained on vast quantities of data, much of which is protected by copyright. It is possible that AI-generated content infringes third-party rights, and so AI use policies should be put in place to mitigate this risk. For more information, see our <a href="https://www.mishcon.com/guides/generative-ai-and-ip">Guide to AI and IP</a>.</p>
</div>
</details>

<details><summary><span class="summary-text">Malicious Actors</span><svg aria-hidden="true" height="16" width="16"><path d="M5 2 L12 8 L5 14"></path></svg></summary>

<div class="content">
<p>AI tools are vulnerable to exploitation through mechanisms such as prompt injection attacks, which may allow third parties to extract confidential data or distribute malware.</p>
</div>
</details>

<p>&nbsp;</p>

<h2>What are the consequences of getting it wrong?</h2>

<p>Failure to manage AI risks may lead to significant consequences for both the family office and the family, including:</p>

<ol>
	<li><strong>Loss of privilege:</strong>&nbsp;Sensitive documents become available to counterparties, regulators, or opposing parties.</li>
	<li><strong>Claims against:</strong> Directors Failure to properly implement AI leading to losses may result in claims against directors.</li>
	<li><strong>Regulatory fines:</strong> Breaches of data protection laws may result in significant fines.</li>
	<li><strong>Professional regulatory exposure: </strong>Professionals who rely on unchecked AI output may face referral to their regulator.</li>
	<li><strong>Reputational damage: </strong>Any of the above may generate significant adverse coverage for both the family office and the family.</li>
</ol>

<h2>What steps should family offices take now?</h2>

<p>AI usage is only likely to become more commonplace. Even if a family office does not intend to deploy AI for specific business cases, it is essential to ensure employees are aware of the risks. Key steps include:</p>

<ol>
	<li><strong>Legal advice: </strong>Maintain close dialogue with legal advisers to ensure governance frameworks remain current in a rapidly evolving landscape.</li>
	<li><strong>Adopt an AI Use Policy: </strong>Have a clear written policy specifying which tools are approved and for which purposes.</li>
	<li><strong>Consider a closed: </strong>AI system Invest in a closed system rather than relying on public AI tools to significantly reduce the risks of data leakage, loss of privilege, and unauthorised access.</li>
	<li><strong>Invest in training and governance:</strong> Training should cover the distinction between open and closed tools, hallucination risk, privilege and confidentiality risks, and data protection obligations.</li>
	<li><strong>Human oversight: </strong>All AI-generated output must be reviewed by a suitably qualified professional before reliance.</li>
	<li><strong>Terms and conditions:</strong> Conduct a careful review of any AI tool&#39;s terms to assess data protection and intellectual property risks as well as terms which may affect the privilege position (for example in relation to use of data for training models, access and disclosure).</li>
	<li><strong>Insurance: </strong>Review existing insurance arrangements &mdash; including professional indemnity, cyber liability, and D&amp;O policies &mdash; to ensure AI-related risks are adequately covered.</li>
</ol>

<p><em>This article is intended as a general overview and should not be relied upon as legal advice. Legal advice should be sought in relation to your specific circumstances. Please contact <a href="https://www.mishcon.com/people/victoria-pigott">Victoria Pigott</a> or <a href="https://www.mishcon.com/people/richard-duggleby">Richard Duggleby</a>.</em></p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AC4D4AAA7AA7YAAAAAAAB6AB7QAP777774AAAFYBCMJAUCIAAA.jpg" length="16650" />
    </item>
    <item>
      <title><![CDATA[The Things That Matter Issue 9 | June 2026]]></title>
      <link>https://www.mishcon.com/news/publications/the-things-that-matter-issue-9</link>
      <guid>https://www.mishcon.com/news/publications/the-things-that-matter-issue-9</guid>
      <description><![CDATA[In this issue, we have explored the theme of global mobility which encompasses immigration, employment and tax considerations as well as work force strategy.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 25 Jun 2026 08:52:00 GMT</pubDate>
      <content:encoded><![CDATA[]]></content:encoded>
      <category>Publication</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACRUIAAA7AA7YAAAAAAAB6AB7QAP777774AAAAAAGQEBUBAAAI.jpg" length="7589" />
    </item>
    <item>
      <title><![CDATA[Property Shapers Issue 8 | June 2026]]></title>
      <link>https://www.mishcon.com/news/publications/property-shapers-issue-8</link>
      <guid>https://www.mishcon.com/news/publications/property-shapers-issue-8</guid>
      <description><![CDATA[]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 24 Jun 2026 16:43:00 GMT</pubDate>
      <content:encoded><![CDATA[]]></content:encoded>
      <category>Publication</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AC5DSAAA7AA7YAAAAAAAB6AB7QAP777776SQCAAARIG4KBQAAI.jpg" length="9410" />
    </item>
    <item>
      <title><![CDATA[Summer of IP]]></title>
      <link>https://www.mishcon.com/news/events/current/summer-of-ip</link>
      <guid>https://www.mishcon.com/news/events/current/summer-of-ip</guid>
      <description><![CDATA[Mishcon de Reya is hosting a webinar on 9 July for students, graduates and career changers interested in pursuing a career as an intellectual property solicitor or barrister. The webinar is part of the "Summer of IP" programme for IP Inclusive, aiming to improve diversity and access to the intellectual property professions (such as solicitors, barristers, trade mark and patent attorneys, and many more).]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Thu, 09 Jul 2026 16:00:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Mishcon de Reya is hosting a webinar on Thursday 9 July for students, graduates and career changers interested in pursuing a career as an intellectual property solicitor or barrister. The webinar is part of the &quot;Summer of IP&quot; programme for IP Inclusive, aiming to improve diversity and access to the intellectual property professions (such as solicitors, barristers, trade mark and patent attorneys, and many more).</p>

<p>Join us online on 9 July from 4pm to explore the qualification routes available to become an IP solicitor or barrister. Chaired by <a href="https://www.mishcon.com/people/nina-osullivan">Nina O&#39;Sullivan</a>, our panel includes Ffion Hopkins from our Early Careers team, Joe Franck&eacute;, Associate Trade Mark Attorney, <a href="https://www.mishcon.com/people/eleanor-wilson">Eleanor Wilson</a>, Associate Solicitor, and Becky Knott, barrister at Hogarth Chambers. The speakers will explain the qualification routes available to become an IP solicitor or barrister and give guidance on the application procedure, including preparing a CV and interview tips.</p>

<p>Questions in advance are welcome and can be submitted by&nbsp;contacting&nbsp;<a href="mailto:ipinclusiveevents@gmail.com">ipinclusiveevents@gmail.com</a>.</p>
]]></content:encoded>
      <category>Events</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACUR6AAA7AA7YAAAAAAAB6AB7QAP777774AAAIIBRAG4IBQAAA.jpg" length="14734" />
    </item>
    <item>
      <title><![CDATA[Mishcon de Reya Lawyers included in Spear's Family Law Index 2026]]></title>
      <link>https://www.mishcon.com/news/mishcon-de-reya-lawyers-included-in-spears-family-law-index-2026</link>
      <guid>https://www.mishcon.com/news/mishcon-de-reya-lawyers-included-in-spears-family-law-index-2026</guid>
      <description><![CDATA[Spear's rankings are the indices and lists released by Spear's Magazine, highlighting leading professionals and institutions across various sectors, especially in private wealth management and the high-net-worth individual arena.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Wed, 24 Jun 2026 09:52:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Spear&#39;s rankings are the indices and lists released by Spear&#39;s Magazine, highlighting leading professionals and institutions across various sectors, especially in private wealth management and the high-net-worth individual arena.</p>

<p>The Spear&rsquo;s Family Law Indices recognise leading professionals advising high-net-worth and ultra-high-net-worth individuals and families across three core disciplines:</p>

<ul>
	<li>Family Lawyers</li>
	<li>Divorce Consultancy &amp; Support Services</li>
	<li>Family Law Barristers</li>
</ul>

<h2>Spear&#39;s Family Lawyers Index 2026</h2>

<ul>
	<li><a href="https://www.mishcon.com/people/kate-clark">Kate Clark</a>: Family Lawyers - Top Flight&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/antonia-felix">Antonia Felix</a>: Family Lawyers - Recommended&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/clare-radcliffe">Clare Radcliffe</a>: Family Lawyers -&nbsp;Recommended&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/claire-yorke">Claire Yorke</a>: Family Lawyers - Recommended</li>
	<li><a href="https://www.mishcon.com/people/james-rees">James Rees</a>: Family Lawyers -&nbsp;Recommended&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/jackie-wells">Jackie Wells</a>: Family Lawyers -&nbsp;Recommended&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/sandra-davis">Sandra Davis</a>: Family Lawyers - Senior Statesperson&nbsp;</li>
	<li><a href="https://www.mishcon.com/people/barbara-reeves">Barbara Reeves</a>: Family Lawyers - Senior Statesperson&nbsp;</li>
</ul>

<p>View the full rankings on the <a href="https://spearswms.com/law/the-best-family-lawyers-for-high-net-worth-clients/#h-best-family-lawyers-the-complete-list">Spear&#39;s website</a>.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ADTSAAAA7AA7YAAAAAAAB6AB7QAP777774AAAIIBRAG4IBQAAA.jpg" length="16347" />
    </item>
    <item>
      <title><![CDATA[Propertyshe: Anette Simpson]]></title>
      <link>https://www.mishcon.com/news/podcasts/propertyshe-anette-simpson</link>
      <guid>https://www.mishcon.com/news/podcasts/propertyshe-anette-simpson</guid>
      <description><![CDATA[Anette Simpson is Director of Developments and Partnerships at L&G's Affordable Homes Division one of the UK’s leading registered providers, delivering high-quality, tenure-diverse communities at scale through long-term institutional investment.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 23 Jun 2026 17:21:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>Anette Simpson is Director of Developments and Partnerships at L&amp;G&#39;s Affordable Homes Division one of the UK&rsquo;s leading registered providers, delivering high-quality, tenure-diverse communities at scale through long-term institutional investment.</p>

<p>She leads the development and delivery of L&amp;G&#39;s growing national portfolio, overseeing developments from concept to completion, and plays a key role in shaping places that support thriving communities.</p>

<p>Anette also leads on sustainability, driving L&amp;G&#39;s ambition to deliver net zero carbon homes in operation by 2030. A chartered urban planner with extensive experience in complex residential developments, Anette is passionate about creating well-designed, sustainable homes that leave a lasting positive impact.</p>
]]></content:encoded>
      <category>Podcast</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/ACLEKAAA7AA7YAAAAAAAB6AB7QAP777774AAAYQBSIIESCAAAA.jpg" length="14145" />
    </item>
    <item>
      <title><![CDATA[Six years, three hearings and 300 Bitcoin: The DIFC Digital Economy Court on crypto custody, contract formation and risk allocation]]></title>
      <link>https://www.mishcon.com/news/six-years-three-hearings-and-300-bitcoin-the-difc-digital-economy-court-on-crypto-custody-contract-formation-and-risk-allocation</link>
      <guid>https://www.mishcon.com/news/six-years-three-hearings-and-300-bitcoin-the-difc-digital-economy-court-on-crypto-custody-contract-formation-and-risk-allocation</guid>
      <description><![CDATA[The DIFC Digital Economy Court has handed down an important judgment in Gate MENA DMCC (formerly Huobi OTC DMCC) and Huobi MENA FZE v Tabarak Investment Capital Limited, dismissing in full a claim arising from the loss of 300 Bitcoin during an over-the-counter cryptocurrency transaction.]]></description>
      <author>feedback@mishcon.com (Mishcon De Reya)</author>
      <pubDate>Tue, 23 Jun 2026 16:40:00 GMT</pubDate>
      <content:encoded><![CDATA[<p>The DIFC Digital Economy Court has handed down an important judgment in Gate MENA DMCC <em>(formerly Huobi OTC DMCC) and Huobi MENA FZE v Tabarak Investment Capital Limited</em>, dismissing in full a claim arising from the loss of 300 Bitcoin during an over-the-counter cryptocurrency transaction. The Co-Head of Mishcon de Reya&#39;s dispute resolution practice in the UAE, <a href="https://www.mishcon.com/people/bushra-ahmed">Bushra Ahmed</a>, represented the defendant as junior counsel throughout the proceedings including at the first trial, before the Court of Appeal and at the retrial in February 2026, shortly prior to joining the firm.</p>

<p>The judgment marks the latest chapter in litigation that has spanned almost six years, involving a trial, an appeal and a five-day retrial. More importantly, it provides valuable guidance on the application of traditional contractual principles to digital asset transactions.</p>

<h2>The background</h2>

<p>The dispute arose out of a proposed sale of 300 Bitcoin by Huobi to a buyer introduced through an intermediary. Neither side trusted the other sufficiently to transact directly and so Tabarak was engaged to play an intermediary role.</p>

<p>The original structure was straightforward. Tabarak would hold the Bitcoin until the purchase monies were received. Once payment arrived, the Bitcoin would be released to the buyer. If payment was not received, the Bitcoin would be returned.</p>

<p>However, during the transaction, the agreed structure changed. A new Trezor wallet introduced by the buyer was used instead of the wallet originally contemplated by the parties. Unknown to those involved, the wallet setup process contained a vulnerability that was subsequently exploited by fraudsters, resulting in the loss of the Bitcoin before payment was ever received.</p>

<p>The claim that followed sought to recover the value of those assets from Tabarak.</p>

<h2>The trial and appeal</h2>

<p>At first instance, the court held that no binding contract had come into existence because a condition precedent had not been satisfied. The account opening fee required under the account opening arrangements had never been paid.</p>

<p>The trial judge also found that Tabarak had acted reasonably in relation to its handling of the Bitcoin and was not under any separate duty to advise on the security or wisdom of the transaction structure adopted by the parties. The claim was therefore dismissed.</p>

<p>On appeal, however, the Court of Appeal identified an unresolved issue. Even if the original agreement never came into force, what was the legal effect of the parties proceeding with the transaction, altering its structure and agreeing an increased commission immediately before the Bitcoin was transferred? The Court of Appeal concluded that this question had not been determined and ordered a retrial.</p>

<h2>The real issue before the retrial</h2>

<p>The retrial was not simply about whether a contract existed. In reality, the more significant question concerned the nature of any obligations assumed by Tabarak.</p>

<p>The claimants argued that a fresh contract arose during the transaction itself. Under that contract, they contended, Tabarak effectively assumed a custodial role in relation to the Bitcoin.</p>

<p>The claimants&rsquo; case was that Tabarak&rsquo;s obligation was absolute. If payment was not received, Tabarak was obliged to return the Bitcoin.</p>

<p>On that analysis, it was irrelevant whether Tabarak had acted carefully or negligently. The mere fact that the Bitcoin was not returned was said to establish liability.</p>

<p>This was a sophisticated argument. It sought to transform Tabarak&rsquo;s role from that of an intermediary exercising reasonable care into a party bearing strict responsibility for the return of the assets.</p>

<h2>Contract formation by conduct</h2>

<p>One of the most interesting aspects of the judgment is the court&rsquo;s analysis of contract formation. Justice Black accepted that, notwithstanding the failure of the original agreement, a new contract arose during the execution of the transaction itself.</p>

<p>The court found that the parties intended to create legal relations, that Tabarak was acting for reward and that the transaction proceeded on the basis of a newly agreed commercial arrangement. In that respect, the claimants succeeded on a major issue.</p>

<p>The court was prepared to recognise that legally binding obligations can arise through conduct and performance during the course of a digital asset transaction, even where the original contractual framework has fallen away. That conclusion alone is likely to be of considerable interest to those operating in the digital asset sector.</p>

<h2>The limits of crypto custody obligations</h2>

<p>The critical issue then became the content of the contract. Did Tabarak assume strict liability for the Bitcoin? Or was its obligation limited to exercising reasonable care in performing its intermediary role? The court accepted the latter analysis.</p>

<p>Justice Black held that the contract did not impose strict liability and that reasonable commercial parties would not have intended Tabarak to bear the risk of loss arising from fraud perpetrated without fault on its part.</p>

<p>The court recognised that Tabarak&rsquo;s role was limited. It was not the architect of the transaction structure. It did not devise the system that was ultimately exploited. Nor was it under any obligation to advise the parties on the wisdom of the arrangements they had chosen. Instead, its obligation was to exercise reasonable care in maintaining control over the assets and performing the role it had agreed to undertake.</p>

<p>That distinction proved decisive. Because the earlier findings that Tabarak had acted reasonably were binding on the retrial, there was no breach and the claim failed.</p>

<h2>Why the judgment matters</h2>

<p>The significance of the decision extends well beyond the immediate dispute. The judgment demonstrates the willingness of the DIFC Courts to apply established principles of contract law to increasingly sophisticated digital asset transactions.</p>

<p>In particular, the court:</p>

<ul>
	<li>recognised that contractual relationships may arise through conduct during the execution of digital asset transactions;</li>
	<li>treated crypto assets as property capable of forming the subject matter of custody-type arrangements;</li>
	<li>examined the legal nature of obligations assumed by intermediaries handling digital assets;</li>
	<li>distinguished between strict obligations to achieve a result and obligations requiring the exercise of reasonable care; and</li>
	<li>rejected attempts to impose absolute liability for losses caused by third-party fraud in circumstances where the intermediary itself was not at fault.</li>
</ul>

<p>As digital asset markets continue to mature, disputes will increasingly concern familiar legal concepts: contract formation, risk allocation, custody, causation and loss. The technology may be new. The legal questions often are not.</p>

<p>What this judgment demonstrates is that courts remain willing to apply established legal principles to new forms of property and new methods of transacting, while resisting attempts to rewrite commercial bargains after the event.</p>

<p>For that reason alone, this decision is likely to remain an important reference point in future digital asset litigation.</p>
]]></content:encoded>
      <category>Article</category>
      <enclosure type="image/jpeg" url="https://www.mishcon.com/assets/managed/images/cache/AB4UGAAA7AA7YAAAAAAAB6AB7QAP777774AABHQBSMIEUCAAAE.jpg" length="15679" />
    </item>
  </channel>
</rss>