Ana Hadnes Bruder

Ana Hadnes Bruder

Mayer Brown

Contact
View Bio
RSS

Latest Publications

Share:

The Online Safety Act Enters Phase 2

The UK's Online Safety Act (the "Act") is a transformative piece of legislation and is introducing extensive online safety obligations for user-to-user services, search services and pornography platforms. The Act encompasses...more

8/5/2025  /  Fines , New Legislation , Online Platforms , Online Safety for Children , Pornography , Regulatory Requirements , Risk Assessment , UK , Websites

EU AI Act News: Rules on General-Purpose AI Start Applying, Guidelines and Template for Summary of Training Data Finalized

Obligations relating to general-purpose artificial intelligence (“GPAI”) models under the EU AI Act enter into force on 2 August 2025. Ahead of this deadline, the European Commission (the “Commission”) has published a suite...more

8/1/2025  /  AI Act , Artificial Intelligence , Copyright , Disclosure Requirements , EU , Machine Learning , New Regulations , Regulatory Oversight , Regulatory Requirements , Transparency

Reform of the GDPR in the UK

On 19 June 2025 the Data (Use and Access) Act (the "DUA Act") received Royal Assent and became law in the UK, having been passed by the UK Parliament on 11 June 2025. The DUA Act principally reforms the General Data...more

7/7/2025  /  Data Privacy , Data Protection , International Data Transfers , New Legislation , Personal Data , Privacy Laws , Regulatory Reform , Regulatory Requirements , UK , UK GDPR

The Data (Use and Access) Act

On 19 June 2025 the Data (Use and Access) Act (the "DUA Act") received Royal Assent and became law in the UK, having been passed by the UK Parliament on 11 June 2025....more

7/7/2025  /  Artificial Intelligence , Copyright , Data Protection , General Data Protection Regulation (GDPR) , International Data Transfers , Machine Learning , New Legislation , Privacy and Electronic Communications Regulation 2003 (PECR). , Privacy Laws , Regulatory Reform , UK

Copyright and Generative AI

On 19 June 2025 the Data (Use and Access) Act (the "DUA Act") received Royal Assent and became law in the UK, having been passed by the UK Parliament on 11 June 2025. The DUA Act principally reforms the General Data...more

7/7/2025  /  Algorithms , Copyright , Copyright Litigation , Intellectual Property Protection , Proposed Legislation , Regulatory Reform , Transparency , UK

EU AI Act: Ban on Certain AI Practices and Requirements for AI Literacy Come Into Effect

The first requirements under the EU Artificial Intelligence (AI) Act come into effect on February 2, 2025, banning the use of AI systems that involve prohibited AI practices and requiring providers and deployers of AI systems...more

2/7/2025  /  Artificial Intelligence , Data Protection , Employee Training , EU , Facial Recognition Technology , Innovative Technology , Machine Learning , Professional Development , Regulation , Regulatory Requirements , Risk Management , Technology Sector

Applying the Enterprise Risk Mindset to AI

Artificial intelligence (AI) and other emerging technologies have the potential to revolutionize the financial industry. At the same time, its use introduces new risks that need to be anticipated and addressed. This paper...more

1/24/2025  /  Algorithms , Artificial Intelligence , Cybersecurity , Data Privacy , Data Protection , Emerging Technologies , Employment Discrimination , Financial Institutions , Financial Services Industry , Innovative Technology , Machine Learning , Regulatory Agenda , Risk Assessment , Risk Management

Cybersecurity in the Financial Sector: EU’s Digital Operational Resilience Act Takes Effect

Beginning 17 January 2025, the Digital Operational Resilience Act (DORA) will apply to almost all EU financial entities, including banks, insurers and reinsurers, brokers , payment and electronic money institutions,...more

1/20/2025  /  Cryptoassets , Cybersecurity , Data Security , Digital Operational Resilience Act (DORA) , EU , Financial Institutions , Financial Services Industry , Information and Communication Technology (ICT) , Information Technology , Regulatory Requirements , Risk Management

New EU Cyber Rules (NIS2) Take Effect; Implementing Rules Adopted

On 17 October 2024, the European Commission adopted the first Implementing Regulation under the Network and Information Security 2 Directive (EU) 2022/2555 (NIS2), focusing on digital infrastructures and services. The...more

10/21/2024  /  Cloud Computing , Cyber Incident Reporting , Cybersecurity , Data Centers , Data Protection , EU , European Commission , Incident Response Plans , Infrastructure , Member State , New Regulations , Online Marketplace , Regulatory Requirements , Risk Management

New EU Cyber Rules: Implementation of NIS2 in the EU Member States

The Network and Information Security 2 Directive (EU) 2022/2555 ("NIS2") entered into force on 16 January 2023. NIS2 sets cyber rules for organizations whose services are considered essential or important for maintaining...more

8/5/2024  /  Compliance , Cybersecurity , Data Protection , Data Security , EU , EU Directive , European Commission , Member State , New Legislation , Public Policy , Risk Management

AI, Allocation of Responsibilities and Liability

As the European Union sets the stage for groundbreaking AI regulation, our podcast offers a comprehensive exploration of this landmark legislation. Join us as we dissect the EU AI Act, unpacking its key provisions and...more

8/3/2024  /  Algorithms , Artificial Intelligence , Cybersecurity , Data Protection , Emerging Technologies , EU , Machine Learning , Regulatory Oversight , Technology Sector

Cybersecurity Regulations on the March - Part 2

Mayer Brown Partners Ana Bruder, Justin Herring, and Oliver Yaros focus on cybersecurity risks and regulations in the EU and UK. They explore third-party risks, ransomware incidents, and the impact of AI, while examining how...more

7/25/2024  /  Cybersecurity , Data Privacy , Data Protection , Data Security , EU , EU Data Protection Laws , Risk Management , UK

The Legal Eye on AI: Intellectual Property and Artificial Intelligence

As the European Union sets the stage for groundbreaking AI regulation, our podcast offers a comprehensive exploration of this landmark legislation. Join us as we dissect the EU AI Act, unpacking its key provisions and...more

7/19/2024  /  Algorithms , Artificial Intelligence , Copyright , Copyright Infringement , EU , Innovative Technology , Intellectual Property Protection , Machine Learning

EU AI Act Published: Which Provisions Apply When?

On July 12, 2024, the EU AI Act (EU Regulation 1689/2024) was published in the Official Journal of the European Union. The text of the law is final and will enter into force on August 1, 2024. Its provisions will apply...more

7/17/2024  /  Artificial Intelligence , Automation Systems , Corporate Counsel , EU , EU Directive , Extraterritoriality Rules , Innovative Technology , Machine Learning

AI Governance: Common Grounds and Synergies with Proposed Frameworks Globally

As the European Union sets the stage for groundbreaking AI regulation, our podcast offers a comprehensive exploration of this landmark legislation. Join us as we dissect the EU AI Act, unpacking its key provisions and...more

7/3/2024  /  Anti-Corruption , Artificial Intelligence , Compliance , Corporate Governance , EU , Risk Management , UK

EU AI Act: Deep dive into the obligations under the EU AI Act and How to Prepare for Compliance.

As the European Union sets the stage for groundbreaking AI regulation, our podcast offers a comprehensive exploration of this landmark legislation. Join us as we dissect the EU AI Act, unpacking its key provisions and...more

6/21/2024  /  Artificial Intelligence , Cybersecurity , EU , Innovative Technology , Machine Learning , Regulatory Agenda , UK

EU AI Act: Do I need to worry about it?

As the European Union sets the stage for groundbreaking AI regulation, our podcast offers a comprehensive exploration of this landmark legislation. Join us as we dissect the EU AI Act, unpacking its key provisions and...more

6/18/2024  /  Artificial Intelligence , Cross-Border , Cybersecurity , Data Management , Environmental Social & Governance (ESG) , EU , Innovative Technology , Intellectual Property Protection , Machine Learning , Risk Management

EU AI Act Adopted

On May 21, 2024, the last missing approval for the EU AI Act was given by the European Council. The text of the law is final and will be published in the coming days. Here we summarize key points as well as note potential...more

5/23/2024  /  Algorithms , Artificial Intelligence , Automation Systems , Cybersecurity , Data Privacy , EU , Innovative Technology , Machine Learning , New Regulations , Regulatory Reform , Regulatory Requirements

Cybersecurity Regulations on the March

Join us on the latest episode of Financial Services Focus as Justin Herring, Jeff Taft and Ana Bruder discuss key cyber threats facing the financial services industry, including third-party risks, sophisticated ransomware,...more

5/15/2024  /  Cyber Threats , Cybersecurity , Data Protection , Financial Institutions , Financial Regulatory Reform , Financial Services Industry , Ransomware , Risk Management

UK GDPR and the Price of Non-Compliance: ICO Issues New Guidance on Calculating Fines

The Information Commissioner's Office (the "ICO") has clarified the methods it will use to calculate the fines it will issue for breaches of data privacy law in the UK by publishing its latest Data Protection Fining Guidance...more

4/26/2024  /  Compliance , Data Privacy , Data Protection , Enforcement , Fines , General Data Protection Regulation (GDPR) , Information Commissioner's Office (ICO) , Noncompliance , UK

The Global AI Regulatory Maze: Impacts on Tech Transactions & Governance

In this episode, we explore the ever-evolving realm of AI regulation and how it's reshaping technology transactions and internal governance worldwide. Join host Julian Dibbell and guests Ana Bruder, Arsen Kourinian, and...more

4/18/2024  /  Artificial Intelligence , Corporate Governance , Cross-Border , Cybersecurity , EU , Innovative Technology , Intellectual Property Protection , IP License , Legislative Agendas , Machine Learning , Popular , Privacy Laws

Key forthcoming EU legislation on Cybersecurity, Artificial Intelligence, Data and Digital Markets

NETWORK AND INFORMATION SECURITY 2 DIRECTIVE (NIS2) - WHO WILL BE IN SCOPE? Operators of essential and important services across various sectors including energy, transport, banking, health, medical devices, chemicals...more

3/14/2024  /  Artificial Intelligence , Cybersecurity , Data Management , Digital Marketplace , Digital Services , EU , Extraterritoriality Rules , FinTech , Information Security , Information Technology , Innovative Technology , Network Security , Popular

EU Data Act: New Rules On Data Sharing And Portability Of Cloud Services Now In Force

The EU Data Act came into force on January 11, 2024. The Data Act is part of the European Commission’s data strategy released in February 2020 and obliges manufacturers of connected products to make use-related data available...more

3/12/2024  /  Cloud Computing , Connected Items , Data Management , Data Processors , Data Protection , Data-Sharing , EU , EU Data Protection Laws , Manufacturers

EU Cyber Legislation Puts Emphasis on Board Responsibility

What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial...more

3/8/2024  /  Compliance , Cybersecurity , Data Breach , Due Diligence , EU , European Commission , Financial Services Industry , Information Technology , Liability , Member State , Policies and Procedures , Risk Mitigation , Supply Chain , Third-Party Service Provider

EDPB Provides Guidance On Determining A 'Main Establishment' And The 'One-Stop-Shop' Mechanism

The opinion was issued in response to a request by the French Data Protection Authority and provides guidance on the conditions for determining a controller's main establishment where that controller has establishments in...more

2/29/2024  /  Cybersecurity , Data Breach , Data Protection , Data Protection Authority , European Data Protection Board (EDPB) , France , General Data Protection Regulation (GDPR) , International Data Transfers , Lead Supervisory Authority , New Guidance , Personal Data , Regulatory Requirements
27 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide