Ensure compliance with cybersecurity obligations: Entities should review and enhance their cybersecurity measures, designate a cybersecurity officer, and establish protocols for incident reporting and ...

Implement robust data protection measures: Organizations should ensure encryption, limited access, data minimization, and DPIAs when establishing internal reporting channels. What legislative decree ...

On November 25, 2025, the European Banking Authority (EBA) published updates to the Digital Operational Resilience Act's (DORA) Reporting Framework 4.0.The updates were:the Data Point Model (DPM) 2.0, ...

Summary: PIPEDA and the Privacy Act 1985 (the Privacy Act) are the main statutes regulating privacy and data protection at a federal level in Canada. PIPEDA only ...

Data Protection Leader is the bi-monthly magazine from OneTrust DataGuidance featuring interviews with some of privacy's top voices as well as expert insight and analysis on trending topics in data ...

Ensure compliance with new PDPA amendments: Private entities should review and update their data protection practices to align with the new requirements set by the PDPC. Frequently Asked Questions ...

China's new AI content labeling rules, effective September 1, 2025, require internet information service providers to label AI-generated content explicitly and implicitly to enhance transparency and ...

Continue Your Research. Join Now. Get 7 days of unlimited articles and feature access. No credit card necessary.

Integrate AI Act Requirements: MedTech organizations should integrate AI Act obligations into existing MDR/IVDR, data protection, and data governance structures to ensure comprehensive compliance.

Taiwan's 2024 Draft Artificial Intelligence Basic Act aims to address AI's socio-economic impacts and legal challenges by establishing principles like sustainable development, human autonomy, and ...

Usually, one topic tends to dominate discussion in privacy over the course of a calendar year. In 2021 it was the fallout from the Schrems II case, in 2022 it was US state privacy laws, but in 2023 ...

On March 11, 2024, the Norwegian data protection authority (Datatilsynet) announced that Grindr's legal action regarding the validity of the Norwegian Privacy Appeals ...