This month’s briefing covers President Trump’s executive orders, as well as the EU Commission’s decision not to proceed with the AI Liability Directive. Meanwhile, an advocacy organization’s lawsuit alleges Meta’s ad...more
The UK government has launched a public consultation on proposed measures to combat ransomware — a growing cyber threat with serious economic and security implications — and seeks input from businesses, cybersecurity...more
Background -
The Digital Operational Resilience Act (DORA), a European Union (EU) regulation that is set to transform how financial entities and their information technology (IT) service providers manage operational risks,...more
This month we cover developments involving the Federal Trade Commission, the Centers for Medicare & Medicaid Services, the Financial Stability Board, the California Privacy Protection Agency, the Colorado Division of...more
The UK government has recently announced that it plans to introduce a Cyber Security and Resilience Bill (Bill). The Bill seeks to update the 2018 Network and Information Security Regulations, which implemented the European...more
10/18/2024
/ Cybersecurity ,
EU ,
Financial Institutions ,
Financial Services Industry ,
Legislative Agendas ,
Life Sciences ,
New Legislation ,
New Regulations ,
Pharmaceutical Industry ,
Privacy Laws ,
Regulatory Agenda ,
UK
A week before the EU’s AI Act comes into force on August 1, the White House announced that U.S. agencies have completed all actions required by President Biden’s AI Executive Order to date. Meanwhile, the Republican Party...more
In May of this year, the UK Government passed the Digital Markets, Competition and Consumers Act (DMCC) into law. The DMCC is wide-ranging and covers three key areas: consumer law, digital markets, and merger and antitrust...more
7/24/2024
/ Antitrust Division ,
Consumer Protection Laws ,
Corporate Counsel ,
Digital Markets Strategy ,
Enforcement ,
EU ,
Fake Reviews ,
Mergers ,
Prepayments ,
Privacy Laws ,
Subscription Services ,
UK ,
UK Competition and Markets Authority (CMA)
The European Union Artificial Intelligence Act (the AI Act) was published on 12 July 2024 in the European Union Official Journal and will enter into force on August 1, 2024. The AI Act is one of the most keenly anticipated...more
The long-awaited European Union Artificial Intelligence Act (the AI Act) is nearing implementation following its adoption by the European Council yesterday (21 May 2024). This signals the completion of the final major stage...more
Open insurance is a trend gaining traction throughout the global insurance industry. Similar to open banking, it involves the industry moving to a connected data ecosystem powered by open application programming interfaces...more
On 1 April 2024, the UK and US signed a memorandum of understanding on the science of AI safety. This partnership is the first of its kind and will see the two countries work together to assess risks and develop safety tests...more
The United Nations unanimously adopts a landmark resolution mapping a path for international cooperation on AI, and the Financial Stability Oversight Council announces a two-day conference exploring the benefits and risks of...more
The long-awaited proposed AI Act, once enacted, will be a comprehensive cross-sectoral regulatory framework for artificial intelligence (AI). Its aim is to regulate the development and use of AI by providing a framework of...more
New York’s Department of Financial Services releases proposed guidance on AI and other data sources in insurance underwriting and pricing — and you’ll note plenty of influence from Colorado’s governance regulation and the...more
In Thaler v Comptroller-General of Patents, Designs and Trade Marks [2023] UKSC 49, the UK Supreme Court ruled that AI cannot be an ‘inventor’ for the purposes of UK patent law. The ruling concludes a series of appeals from...more
While the focus of attention in the world of AI has been the EU AI Act: EU AI Act Agreed – Discerning Data in recent weeks, there have also been some other noteworthy legislative developments. On 22 November 2023, the...more
12/18/2023
/ Artificial Intelligence ,
Cybersecurity ,
Data Management ,
EU ,
Intellectual Property Protection ,
New Legislation ,
New Regulations ,
Regulatory Agenda ,
Regulatory Requirements ,
Technology Sector ,
UK
Late on Friday (December 8th), the European Union Commission, Parliament and Council concluded its “trilogue” negotiations for the EU Artificial Intelligence Act. The summary below is based on the information available to...more
The NAIC adopts a landmark framework outlining regulatory expectations for the use of AI by insurers. Meanwhile, a California agency proposes regulations for the use of automated decisionmaking technology by businesses, and...more
Day 1: The Bletchley Declaration -
On the first day of the summit, 28 countries and the EU signed the Bletchley Declaration (“Declaration”). The Declaration establishes an internationally shared understanding of the risks...more
11/10/2023
/ Artificial Intelligence ,
China ,
EU ,
Regulatory Agenda ,
Regulatory Requirements ,
Risk Assessment ,
Risk Management ,
Safety Standards ,
Technology Sector ,
Testing Requirements ,
UK ,
United Nations ,
United States
President Biden has signed an executive order aimed at increasing AI security, protecting Americans’ privacy, and advancing equity and civil rights, among other goals. Meanwhile, the Senate held a second AI Insight Forum, and...more
On 19 September 2023, the UK Parliament passed the Online Safety Bill (“OSB”). The OSB aims to protect individuals from illegal online content and focuses on the protection of children by requiring the removal of content that...more
10/18/2023
/ Compliance ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Enforcement ,
Extraterritoriality Rules ,
General Data Protection Regulation (GDPR) ,
New Legislation ,
Online Platforms ,
Online Safety for Children ,
Popular ,
Privacy Laws ,
Regulatory Agenda ,
Regulatory Reform ,
Regulatory Requirements ,
Risk Management ,
UK
On 10 July 2023, the European Commission adopted its long-awaited adequacy decision for the EU-U.S. Data Privacy Framework (the DPF). With immediate effect, the adequacy decision provides a new lawful basis for transfers from...more
7/14/2023
/ Data Privacy ,
Data Protection ,
Data Security ,
EU ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
European Commission ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
SCC ,
Standard Contractual Clauses ,
US-EU Safe Harbor Framework
The European Parliament approves a revised draft of the EU AI Act, Senate Majority Leader Chuck Schumer lays out plans for groundbreaking AI legislation in the U.S., and the FTC issues a warning that companies who ignore...more
On 22 May 2023, the Irish Data Protection Commission (DPC) issued Meta Platforms Ireland Limited (Meta Ireland) with a EUR 1.2 billion (approximately 1.3 billion U.S. dollar) fine for breaches of the GDPR with respect to...more
On 4 May 2023, the European Court of Justice (CJEU) delivered its highly anticipated judgement in Österreichische Post (Case C-300/21) on a crucial issue: the extent to which data subjects affected by a breach of the GDPR...more
5/16/2023
/ Compensation ,
Court of Justice of the European Union (CJEU) ,
Damages ,
Data Breach ,
Data Collection ,
Data Retention ,
EU ,
General Data Protection Regulation (GDPR) ,
Infringement ,
Personal Data ,
UK