News & Analysis as of

European Union General Data Protection Regulation (GDPR) Compliance

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
King & Spalding

No ‘Stop the Clock’ For the EU AI Act (and a belated General-Purpose AI Code of Practice): What Does This Mean to You?

King & Spalding on

The European Commission received the final version of the General-Purpose AI (GPAI) Code of Practice on July 10, 2025. The GPAI is a voluntary framework intended to guide how providers of large AI models comply with the...more

White & Case LLP

AI Watch: Global regulatory tracker - European Union - Update

White & Case LLP on

The EU introduces the pioneering EU AI Act, aiming to become a global hub for human-centric, trustworthy AI....more

Skadden, Arps, Slate, Meagher & Flom LLP

Something Is Better Than Nothing: UK and EU GDPR Reform Finally Arrives

Skadden, Arps, Slate, Meagher & Flom LLP on

In recent weeks, the EU and UK have both introduced changes to their respective versions of Europe’s landmark privacy legislation, the General Data Protection Regulation (GDPR). These reforms mark the first substantial...more

Association of Certified E-Discovery...

The EU’s Legal Tech Tipping Point – AI Regulation, Data Sovereignty, and eDiscovery in 2025

Association of Certified E-Discovery... on

As we navigate through 2025, the European legal landscape is undergoing a significant transformation, particularly in the realms of artificial intelligence (AI) regulation and data sovereignty. These changes are reshaping how...more

Pillsbury - Global Sourcing Practice

New Changes to GDPR Proposed: An Indication of Shifting Policy Priorities?

Pillsbury - Global Sourcing Practice on

The European Commission’s proposed amendments to the General Data Protection Regulation (GDPR) mark the first substantive reworking of the regulation since its enactment, signaling a material shift toward economic pragmatism....more

Lighthouse

Current State of Data Protection Regulations in the US and EMEA

Lighthouse on

Organizations must continuously review and refine their data governance strategies to keep pace with a regulatory environment that is shifting at an unprecedented rate. In response to mandates for stronger compliance...more

Amundsen Davis LLC

Is My U.S.-Based Company Subject to the GDPR? Clearing Up European Data Privacy Law Misinformation

Amundsen Davis LLC on

If you are a compliance professional for a U.S.-based company, you have probably been told at some point that you have to worry about the General Data Protection Regulation (GDPR). Have you encountered one of these...more

White & Case LLP

AI Watch: Global regulatory tracker - European Union

White & Case LLP on

The EU introduces the pioneering EU AI Act, aiming to become a global hub for human-centric, trustworthy AI. Laws/Regulations directly regulating AI (the “AI Regulations”) The primary legislative framework for regulating AI...more

Ropes & Gray LLP

The Data Act: Six Months to Go — But What To Do?

Ropes & Gray LLP on

Our clients are at the forefront of many of the developments covered by the report. That said, I couldn’t help thinking that the report overlooked a law that takes effect in less than six months’ time and which will have...more

IR Global

Taking a proactive approach to risk

IR Global on

How can proactive risk management strategies help businesses navigate regulatory and economic uncertainties? Proactive risk management strategies can help businesses navigate regulatory and economic uncertainties by...more

Jackson Lewis P.C.

EU Data Enforcement Sweep: Are GDPR-Covered Entities Complying Properly with Data Subjects’ Right of Erasure?

Jackson Lewis P.C. on

The European Data Protection Board (EDPB) has launched its 2025 enforcement sweep targeting organizations’ compliance with data subjects’ right of erasure (right to delete or be forgotten), focusing particularly on how...more

Wilson Sonsini Goodrich & Rosati

All Eyes on AI: Regulatory, Litigation, and Transactional Developments – Q3/Q4 2024

Wilson Sonsini Goodrich & Rosati on

The firm is pleased to distribute the Q3/Q4 2024 edition of All Eyes on AI: Regulatory, Litigation, and Transactional Developments, which closely follows the evolving regulatory landscape for artificial intelligence (AI) in...more

A&O Shearman

Zooming in on AI #15: Regulatory spaghetti and AI – how to make sense of the EU GDPR and the EU AI Act

A&O Shearman on

Given the rapid speed of development in the field of AI, it is increasingly important that businesses develop effective governance to address the regulatory framework governing the development, training, use and deployment of...more

Jackson Lewis P.C.

Are Employees Receiving Regular Data Protection Training? Are They AI Literate?

Jackson Lewis P.C. on

Employee security awareness training is a best practice and a “reasonable safeguard” for protecting the privacy and security of an organization’s sensitive data. The list of data privacy and cybersecurity laws mandating...more

Baker Botts L.L.P.

EU Court Affirms Authority of EDPB

Baker Botts L.L.P. on

On January 29, 2025, the General Court of the European Union delivered a significant judgment concerning the powers and competences of the European Data Protection Board ("EDPB"). The case involved the Data Protection...more

Fox Rothschild LLP

Do App Permissions Satisfy Requirements for Valid Consent for the Purpose of GDPR?

Fox Rothschild LLP on

App permissions do not satisfy the requirements for valid consent for the purpose of GDPR because they lack sufficient detail and granularity, according to the Commission Nationale de l’Informatique et des Libertés (CNIL)....more

A&O Shearman

EDPB publishes opinion on personal data processing relating to AI model development

A&O Shearman on

On December 17 2024, the European Data Protection Board (EDPB) issued Opinion 28/2024 addressing data protection aspects of processing in the context of AI models. This Opinion was requested by the Irish Data Protection...more

Wilson Sonsini Goodrich & Rosati

EU Court Awards Damages for Breach of EU Data Transfer Rules

Wilson Sonsini Goodrich & Rosati on

On January 8, 2025, the second highest court of the European Union (EU), the General Court of the Court of Justice of the EU (the Court), ordered (in Bindl v European Commission, Case T-354/22) the European Commission (EC) to...more

Baker Botts L.L.P.

European Data Protection Board Releases Opinion on the Use of Personal Data with Artificial Intelligence

Baker Botts L.L.P. on

On December 17, 2024, the European Data Protection Board ("EDPB" or Board) issued Opinion 28/2024, addressing data protection aspects related to the processing of personal data in the context of artificial intelligence ("AI")...more

DLA Piper

EU: Engaging Vendors in the Financial Sector: EDPB Clarifications Mean More Mapping and Management

DLA Piper on

The European Data Protection Board (“EDPB“) adopted an opinion on 7 October 2024, providing guidance for data controllers relying on processors (and sub-processors) under the GDPR....more

Pillsbury Winthrop Shaw Pittman LLP

Navigating the EU’s “NIS 2” Directive: Key Cybersecurity Compliance Points for Businesses Operating in the EU to Consider

Pillsbury Winthrop Shaw Pittman LLP on

The NIS 2 Directive requires a wide range of in-scope organizations to adopt robust cybersecurity measures and incident response plans....more

EDRM - Electronic Discovery Reference Model

Implications of the €310 Million LinkedIn Fine for GDPR Compliance

EDRM - Electronic Discovery Reference Model on

ComplexDiscovery’s Editor’s Note: This recent €310 million fine imposed on LinkedIn by Ireland’s Data Protection Commission (DPC) marks a powerful moment in GDPR enforcement, underlining the regulatory rigor facing global...more

DLA Piper

Data Act Frequently Asked Questions Answered by the EU Commission

DLA Piper on

The EU Data Act is one of the cornerstones of the EU's Data Strategy and introduces a new and horizontal set of rules on data access and use to boost the EU's data economy. Most of the provisions of the Data Act will become...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

International Data Transfers Remain Under EU and UK Regulatory Scrutiny

Ogletree, Deakins, Nash, Smoak & Stewart,... on

Organisations that make international transfers of personal data have undergone significant challenges and changes over the last few years. With the invalidation of the Privacy Shield agreement in 2020 and the introduction of...more

Alston & Bird

Belgian Data Protection Authority Publishes Guidance on the Interplay between the GDPR and the AI Act

Alston & Bird on

On 19 September 2024, the Belgian Data Protection Authority (DPA) issued new Guidance on the interplay between the recently adopted EU Regulation on Artificial Intelligence (the AI Act) and the General Data Protection...more

142 Results
 / 
View per page
Page: of 6
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide