사이버·기술법

Computer Misuse — The Computer Misuse Act 1990 creates three tiers of offence: unauthorised access (s.1), unauthorised access with intent to commit further offences (s.2), and unauthorised acts with intent to impair or with recklessness (s.3). Section 3ZA covers acts causing serious damage (max: life imprisonment).

Online Safety — The Online Safety Act 2023 imposes duties of care on user-to-user services and search services. Platforms must take steps to remove illegal content, protect children from harmful content, and provide transparency reports. Ofcom is the regulator.

Electronic Evidence — Digital evidence in court proceedings is governed by the Police and Criminal Evidence Act 1984 (s.69, now repealed), the Civil Evidence Act 1995, and case law on authenticity and admissibility.

E-Commerce — The Electronic Commerce (EC Directive) Regulations 2002 and the Consumer Contracts (Information, Cancellation and Additional Charges) Regulations 2013 govern online transactions, including the 14-day cooling-off period for distance sales.

AI Regulation — The UK approach is sector-specific and principles-based. The Government's AI White Paper (2023) proposed five principles: safety, transparency, fairness, accountability, and contestability. Sector regulators (FCA, Ofcom, CMA, ICO) are developing guidance.

Deepfakes and Intimate Images — The Online Safety Act 2023 criminalises the sharing of intimate images without consent (including deepfakes). The Criminal Justice Bill (if enacted) will create a specific offence of creating sexually explicit deepfakes.

Encryption and Investigatory Powers — The Investigatory Powers Act 2016 provides for the interception of communications and requires telecommunications operators to maintain the ability to remove encryption when served with a technical capability notice.

Blockchain and Crypto — Crypto-assets are regulated by the FCA for anti-money laundering purposes. The Law Commission has recommended treating crypto-tokens as a distinct category of personal property.