On February 11 2025, the European Commission (the EU Commission) released its 2025 work programme in which it published its AI and privacy initiatives for 2025 (the Work Programme) in order to boost competitiveness, enhance...more
2/27/2025
/ AI Act ,
Artificial Intelligence ,
Data Privacy ,
Data Protection ,
EU ,
European Commission ,
General Data Protection Regulation (GDPR) ,
Privacy Laws ,
Regulatory Agenda ,
Regulatory Requirements ,
Technology Sector
On January 21 2025, the Council of the European Union (Council) announced its decision to adopt the Regulation of the European Parliament and of the Council on the European Health Data Space (EHDS).
As we have previously...more
1/29/2025
/ Data Privacy ,
Data Protection ,
Data Security ,
EU ,
Health Care Providers ,
Healthcare ,
Member State ,
Patient Privacy Rights ,
Personal Data ,
Privacy Laws ,
Regulatory Agenda
On December 17 2024, the European Data Protection Board (EDPB) issued Opinion 28/2024 addressing data protection aspects of processing in the context of AI models. This Opinion was requested by the Irish Data Protection...more
On November 14 2024, the Constitutional Court of Chile approved Bill No. 11144-07, regulating the protection and processing of personal data and creating the Personal Data Protection Agency, and Bill No. 11092-07, regulating...more
On 1 July 2024, the European Commission (the ‘Commission’) announced its preliminary findings in an investigation of a leading social media platform, concluding that its ‘pay or consent’ advertising model implemented in the...more
7/23/2024
/ Advertising ,
Consent ,
Corporate Counsel ,
Data Privacy ,
Data Protection ,
Digital Markets Strategy ,
EU ,
European Commission ,
European Economic Area (EEA) ,
Pay or Play ,
Privacy Laws ,
Social Media ,
Technology Sector
The French supervisory authority (CNIL) asked for public comments on its draft recommendation on data security in relation to processing that presents particularly high risks to individuals or to the public interest (the...more
9/15/2023
/ CNIL ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Protection Authority ,
Data Security ,
France ,
General Data Protection Regulation (GDPR) ,
Risk Management
On 10 July 2023, the European Commission adopted the adequacy decision for the EU-U.S. Data Privacy Framework (DPF). This decision enables the free flow of personal data from the EU and three EEA countries (Iceland,...more
Within the past year, a number of countries around the world, including the United States, United Kingdom, France, and The Netherlands have initiated regulatory inquiries and developed new strategies for the purpose of more...more
4/25/2023
/ Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
EU ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
NIST ,
Popular ,
UK
The Italian supervisory authority (Garante) issued an urgent order against Luka Inc. (Luka), a US-based developer and operator of the online app “Replika” (Replika), an artificial intelligence (AI) chatbot on 2 February 2023....more
The U.S. National Institute of Standards and Technology (NIST) of the U.S. Department of Commerce published its AI Risk Management Framework (AI RMF) on 26 January 2023, a guidance document for organisations designing,...more
2/9/2023
/ Artificial Intelligence ,
Cybersecurity ,
Data Privacy ,
Information Technology ,
Innovative Technology ,
Machine Learning ,
NIST ,
OECD ,
Online Platforms ,
Popular ,
Risk Management
On 2 December 2021, the Court of Justice of the European Union (CJEU) published the Advocate General’s (AG) opinion in case C-319/20 (Facebook Ireland) (the AG Opinion) relating to the issue of whether Member State law may...more
On 24 November 2021, the DCMS announced a new bill that would require manufacturers, importers and distributors of digital tech products (including physical shops and online retailers) to ensure that consumer...more
On 22 October 2021, the UK government’s Department for International Trade announced that the G7 countries (Canada, France, Germany, Italy, Japan, the UK and the US) had agreed a set of Digital Trade Principles at the G7...more
On 15 September 2021, the UN Office of the High Commissioner for Human Rights (OHCHR) published a report, “The right to privacy in the digital age”, that analyses how artificial intelligence (AI), through the use of...more
On 22 September 2021 the UK Government published its promised National Artificial Intelligence (AI) Strategy, coming on the back of a raft of related plans, strategies and roadmaps, such as 2020’s National Data Strategy, the...more
Regulators, courts and law enforcement authorities in the U.S. (and other jurisdictions around the globe) have an insatiable appetite for access to data held by a range of companies, including in particular financial...more
9/16/2015
/ Best Practices ,
Cloud Computing ,
Data Privacy ,
Data-Sharing ,
EU ,
EU Data Protection Laws ,
Financial Institutions ,
Government Investigations ,
Internet Retailers ,
Internet Service Providers (ISPs) ,
Law Enforcement ,
Risk Management ,
Telecommunications ,
Umbrella Agreement