News & Analysis as of

European Union Data Security Compliance

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
Nelson Mullins Riley & Scarborough LLP

The EU Commission Publishes General-Purpose AI Code of Practice: Compliance Obligations Begin August 2025

Nelson Mullins Riley & Scarborough LLP on

On July 10, 2025, after nearly a year of work involving experts and thousands of AI industry participants, the European Commission published its General-Purpose AI Code of Practice, establishing the first detailed compliance...more

Skadden, Arps, Slate, Meagher & Flom LLP

The European Health Data Space – What EU Health Care Providers and Data Holders Need To Know

Skadden, Arps, Slate, Meagher & Flom LLP on

- On 26 March 2025, the European Health Data Space (EHDS) Regulation entered into force. The regulation establishes a comprehensive framework for health-data sharing and access in the EU, with the dual aim of supporting the...more

Integreon

DORA Compliance Part 2: Addressing Compliance Across Critical Operational Areas

Integreon on

Introduction to DORA and its Implications - As of Jan.17, 2025, the European Union’s Digital Operational Resilience Act (DORA) became enforceable. This new regulatory framework significantly impacts financial institutions and...more

A&O Shearman

ESAs roadmap for designation of critical ICT third-party service providers under DORA

A&O Shearman on

The European Supervisory Authorities (ESAs) have published a roadmap for the designation of critical ICT third-party service providers (CTPPs) under the EU Digital Operational Resilience Act (DORA). The roadmap of key dates...more

A&O Shearman

European Central Bank updates TIBER-EU framework to align with DORA RTS on TLPT

A&O Shearman on

The European Central Bank (ECB) has published an updated version of the threat intelligence-based ethical red teaming framework (TIBER-EU framework) (dated January) to align with the Digital Operational Resilience Act (DORA)...more

Morrison & Foerster LLP

European Digital Compliance: Key Digital Regulation & Compliance Developments - February 2025

Morrison & Foerster LLP on

To help organizations stay on top of the main developments in European digital compliance, Morrison Foerster’s European Digital Regulatory Compliance team reports on some of the main topical digital regulatory and compliance...more

NAVEX

Artificial Intelligence and Compliance: Preparing for the Future of AI Governance, Risk, and Compliance 

NAVEX on

Artificial Intelligence has rapidly moved from theoretical to transformational, profoundly changing how businesses operate across industries. While the benefits of AI, particularly Generative AI (genAI), are monumental, these...more

Fox Rothschild LLP

Do App Permissions Satisfy Requirements for Valid Consent for the Purpose of GDPR?

Fox Rothschild LLP on

App permissions do not satisfy the requirements for valid consent for the purpose of GDPR because they lack sufficient detail and granularity, according to the Commission Nationale de l’Informatique et des Libertés (CNIL)....more

Walkers

Navigating DORA: Key compliance steps from 17 January 2025

Walkers on

DORA is now applicable, imposing requirements in respect of ICT risk management and digital operational resilience. Firms should be preparing their register of information ready for sharing with the CBI in April....more

A&O Shearman

The EU Cyber Resilience Act - What You Need to Know

A&O Shearman on

The EU Cyber Resilience Act (CRA) entered into force on 10 December 2024. The CRA is the first legislation of its kind in the world that aims to enhance the cyber security of products or software with a digital component...more

Faegre Drinker Biddle & Reath LLP

EU Digital Operational Resilience Act Priorities for 2025

Faegre Drinker Biddle & Reath LLP on

Background - The Digital Operational Resilience Act (DORA), a European Union (EU) regulation that is set to transform how financial entities and their information technology (IT) service providers manage operational risks,...more

WilmerHale

WilmerHale’s Guide to the EU Data Act - September 2024

WilmerHale on

Exactly one year from now, on September 12, 2025, the EU Data Act will enter into application. This new regulation provides harmonized rules on data access, switching cloud providers, and interoperability requirements across...more

Mayer Brown

New EU Cyber Rules: Implementation of NIS2 in the EU Member States

Mayer Brown on

The Network and Information Security 2 Directive (EU) 2022/2555 ("NIS2") entered into force on 16 January 2023. NIS2 sets cyber rules for organizations whose services are considered essential or important for maintaining...more

Venable LLP

Offensive Security Under the EU Digital Operational Resilience Act (DORA)

Venable LLP on

The Digital Operational Resilience Act (DORA) regulation is part of the European Union’s (EU) strategy to enhance the overall stability of the EU financial system by ensuring that financial entities are resilient to digital...more

Rumberger | Kirk

Understanding How Generative AI Can Affect Your Business' Data Privacy And Ownership Is Crucial

Rumberger | Kirk on

“In assessing a generative AI product, it is critical to understand issues of data ownership and privacy. This cumbersome task is necessary to learn how the AI platform will use data, if the data shared is entering an open or...more

Pillsbury - Internet & Social Media Law Blog

The EU and UK Introduce New IoT Security Standards

Pillsbury - Internet & Social Media Law Blog on

The FCC’s recent introduction of a new Voluntary Cybersecurity Labelling Program for consumer Internet of Things (IoT) products reflects the continued desire by U.S. regulators to bolster the security of the ever-increasing...more

NAVEX

Part 3: 4 Characteristics of a Successful Whistleblower Hotline

NAVEX on

So far, in this three-part series, we discussed the various kinds of whistleblowing hotlines and the key components that comprise of a whistleblower hotline. In part three, we’ll discuss the four characteristics of a...more

Gardner Law

[Hybrid Event] MASTERING TOMORROW'S HEALTHCARE TECH: A CUTTING-EDGE APPROACH TO REGULATORY, COMPLIANCE, AND PRIVACY DEMANDS -...

Gardner Law on

FDA law firm Gardner Law and EU-based Fieldfisher discuss regulatory, compliance, and privacy matters relevant to high-tech healthcare products. - - Harnessing AI and Connected Devices in Medical Innovation in an...more

Guidepost Solutions LLC

New EU-U.S. Data Privacy Framework Legalizes Personal Data Transfers from the EU to US

Guidepost Solutions LLC on

On July 10, 2023, the European Commission announced that it had adopted its adequacy decision for the EU-U.S. Data Privacy Framework (EU-U.S. DPF). This long-awaited decision means that for the first time since the EU-U.S...more

Pillsbury Winthrop Shaw Pittman LLP

Data Privacy: What Nonprofits Need to Know in the United States, EU and UK, and China

Pillsbury Winthrop Shaw Pittman LLP on

From long-standing laws to incoming legislation, global nonprofits must understand the requirements and prepare for scrutiny in their handling of personal data. U.S. privacy regulations are currently a complex framework of...more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - July 14th, Singapore, Singapore

Society of Corporate Compliance and Ethics... on

Looking for compliance education and networking in your area? SCCE’s Regional Compliance & Ethics Conferences offer convenient, local compliance education for practitioners across the globe, including updates on the latest...more

Benesch

Q1 - 2023: Data Privacy & Cybersecurity Quarterly Briefing

Benesch on

Data privacy laws have been progressing globally, but federal legislation in the U.S. has been lacking - Businesses are facing a growing number of data privacy regulations. This is especially apparent among those in highly...more

BCLP

Cyber laws will be updated to boost UK’s resilience against online attacks

BCLP on

The UK government confirmed on 30 November 2022 that there will be changes to the UK’s cybersecurity regulations in response to a public consultation launched earlier this year. This follows recent updates relating to the...more

HaystackID

[Webcast Transcript] You’ve Got to Move It: Data Protection and Privacy with Cross-Border Transfers

HaystackID on

...This session, led by industry-acknowledged experts in areas ranging from data protection and privacy to data transfer and legal discovery, provided a professional forum for the explanation of the best approaches,...more

White & Case LLP

COVID-19 and Data Protection Compliance in France

White & Case LLP on

Following the outbreak of COVID-19, organizations have been implementing exceptional measures to maintain "business-as-usual" to the extent allowed by their particular circumstances and to protect their employees, customers...more

33 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide