The European Union's Artificial Intelligence Act ("AI Act") establishes a comprehensive, risk-based regulatory framework including provisions relating to general-purpose AI ("GPAI") models that apply as from 2 August 2025. In...more
8/6/2025
/ Artificial Intelligence ,
Copyright ,
EU ,
European Commission ,
Innovative Technology ,
Machine Learning ,
New Legislation ,
Popular ,
Regulatory Requirements ,
Risk Management ,
Transparency
The EU has introduced Delegated Regulation (EU) 2025/1190, establishing the first harmonized standards for threat-led penetration testing ("TLPT") across the financial sector. The regulation aims to strengthen the cyber...more
7/31/2025
/ Credit Institutions ,
Cybersecurity ,
Digital Operational Resilience Act (DORA) ,
Enforcement ,
EU ,
EU Directive ,
Financial Institutions ,
Financial Services Industry ,
G-SII ,
Harmonization Rules ,
Regulatory Requirements ,
Risk Management ,
Technical Standards
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
6/3/2025
/ Competition ,
Cyber Threats ,
Cybersecurity ,
Data Protection ,
Economic Sanctions ,
EU ,
European Commission ,
Export Controls ,
Geopolitical Risks ,
Healthcare ,
Medical Devices ,
National Security ,
Pharmaceutical Industry ,
Regulatory Requirements ,
Risk Management ,
Russia ,
State Aid ,
Trade Policy ,
Ukraine
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
4/7/2025
/ Competition ,
Cybersecurity ,
Data Protection ,
EU ,
Export Controls ,
Exports ,
Geopolitical Risks ,
Health Care Providers ,
Life Sciences ,
Medical Devices ,
National Security ,
Pharmaceutical Industry ,
Russia ,
State Aid ,
Ukraine
The European Union's Artificial Intelligence Act ("AI Act"), the world's first comprehensive legal framework on AI, entered into force on August 1, 2024. The AI Act sets out staggered compliance deadlines for the various...more
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
2/12/2025
/ Competition ,
Cybersecurity ,
Data Protection ,
Economic Sanctions ,
EU ,
Export Controls ,
Geopolitical Risks ,
Medical Devices ,
National Security ,
Pharmaceutical Industry ,
Regulatory Agenda ,
Regulatory Oversight ,
Regulatory Reform ,
Russia ,
State Aid ,
Ukraine
The European Commission has released a new template for summarizing training data used in general-purpose artificial intelligence ("AI") models, as part of its broader AI regulatory framework....more
DORA, the first EU regulation designed to establish a unified and robust digital resilience standard for the financial sector, becomes directly applicable on January 17, 2025, introducing significant penalties and...more
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
1/3/2025
/ Competition ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
EU ,
Export Controls ,
Foreign Trade Regulations ,
Geopolitical Risks ,
Medical Devices ,
Pharmaceutical Industry ,
State Aid
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
11/21/2024
/ Competition ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
EU ,
Export Controls ,
Foreign Trade Regulations ,
Geopolitical Risks ,
Medical Devices ,
Pharmaceutical Industry ,
State Aid
As the national implementation deadline for the NIS 2 EU Directive is over, businesses in scope should ensure they will soon be ready to comply with the strengthened cybersecurity requirements....more
On October 10, 2024, the EU Cyber Resilience Act ("CRA") was adopted by the Council of the European Union....more
This regular alert covers key policy and regulatory developments related to EU geopolitical risks, including in particular, economic security, Russia’s war against Ukraine, health threats, and cyber threats. It does not...more
9/25/2024
/ Artificial Intelligence ,
Competition ,
Cybersecurity ,
Data Protection ,
EU ,
European Commission ,
Export Controls ,
Geopolitical Risks ,
Joint Statements ,
Medical Devices ,
Russia ,
State Aid ,
Ukraine
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
8/12/2024
/ Artificial Intelligence ,
Competition ,
Cybersecurity ,
Data Protection ,
EU ,
European Commission ,
Export Controls ,
Medical Devices ,
Regulatory Agenda ,
Regulatory Oversight ,
State Aid
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
1/15/2024
/ Competition ,
Crisis Management ,
Cybersecurity ,
Data Collection ,
Data Management ,
EU ,
European Commission ,
Export Controls ,
Foreign Subsidies ,
Life Sciences ,
Medical Devices ,
Pharmaceutical Industry ,
State Aid
On 22 December 2023, the Regulation on harmonized rules on fair access to and use of data ("Data Act") was published in the EU's Official Journal. The Data Act lays down rules on fair access to and use of personal and...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular to Russia’s war of aggression against Ukraine, COVID-19, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular, to COVID-19, Russia’s war of aggression against Ukraine, and cyber threats. It does not purport to provide an...more
This regular alert covers key regulatory developments related to EU emergency responses, including in particular, to COVID-19, Russia’s war of aggression against Ukraine, and cyber threats. It does not purport to provide an...more
On October 3, 2023, the European Commission ("Commission") unveiled a list of 10 technology areas qualified as "critical" to the European Union's ("EU") economic security, out of which four (Semiconductors, AI, Quantum...more
10/17/2023
/ 5G Network ,
Artificial Intelligence ,
Biotechnology ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Economic Reform ,
EU ,
European Commission ,
Export Controls ,
Foreign Direct Investment ,
Foreign Investment ,
Investment Controls ,
Risk Assessment ,
Semiconductors
Beginning October 12, 2023, the UK-U.S. Data Bridge will allow UK companies to transfer personal data to the United States using the new EU-U.S. Data Privacy Framework....more
10/17/2023
/ Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
EU ,
EU Data Protection Laws ,
Information Technology ,
International Data Transfers ,
Personal Data ,
Personally Identifiable Information ,
UK