News & Analysis as of

European Union Regulatory Requirements Cybersecurity

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
McDermott Will & Schulte

Europe’s Cybersecurity Puzzle: NIS2 Progress in 30 Pieces

McDermott Will & Schulte on

As cybersecurity rises to the top of the corporate agenda, businesses face growing pressure to comply with the EU’s evolving regulatory landscape. Whether your company falls directly under EU cybersecurity laws or is...more

A&O Shearman

EU Artificial Intelligence Office publishes the final version of the GPAI Code of Practice

A&O Shearman on

On July 10 2025, the EU Artificial Intelligence Office (the AI Office) issued the final version of the General Purpose AI Code of Practice (GPAI Code). The GPAI Code is a non-binding set of guidelines created by independent...more

Morrison & Foerster LLP

European Digital Compliance: Key Digital Regulation & Compliance Developments - August 2025

Morrison & Foerster LLP on

To help organizations stay on top of the main developments in European digital compliance, Morrison Foerster’s European Digital Regulatory Compliance team reports on some of the main topical digital regulatory and compliance...more

Jones Day

EU Standards for Threat-Led Penetration Testing: New Cyber Compliance Imperatives for Financial Institutions

Jones Day on

The EU has introduced Delegated Regulation (EU) 2025/1190, establishing the first harmonized standards for threat-led penetration testing ("TLPT") across the financial sector. The regulation aims to strengthen the cyber...more

Pillsbury Winthrop Shaw Pittman LLP

DORA Now Fully in Effect: Financial Entities and Their Service Providers Reach Critical Milestone

Pillsbury Winthrop Shaw Pittman LLP on

With DORA in effect and the European Banking Authority’s updated guidelines for non-ICT services under consultation, financial entities must consider their approach to third-party risk management. After DORA became effective...more

Cooley LLP

The Proposed EU Space Act: 10 Key Implications US and Non-EU Satellite Operators Should Know

Cooley LLP on

On June 25, 2025, the European Commission released a landmark proposal for a regulation on the safety, resilience and sustainability of space activities in the European Union, commonly referred to as the EU Space Act....more

Hogan Lovells

ECB Guide on outsourcing cloud services to cloud service providers

Hogan Lovells on

The European Central Bank (ECB) has published its Guide on outsourcing cloud services to cloud service providers (the "Guide") clarifying how banks are expected to comply with obligations under the EU Digital Operational...more

A&O Shearman

Regulation (EU) 2025/1355 on oversight of systemically important payment systems published in OJ

A&O Shearman on

Regulation (EU) 2025/1355 of the European Central Bank (ECB) adopted on 2 July has been published in the Official Journal of the European Union. This Regulation recasts and replaces Regulation (EU) No 795/2014, updating the...more

Skadden, Arps, Slate, Meagher & Flom LLP

The Last Piece of DORA Falls Into Place: 10 Lessons From the First Six Months

Skadden, Arps, Slate, Meagher & Flom LLP on

- What is new: The EU’s Delegated Regulation on Subcontracting has come into force, completing the legal framework of the Digital Operational Resilience Act (DORA). Attention will now turn to enforcement. - Why it matters:...more

Paul Hastings LLP

ICO Annual Report Provides Insight Into Data Protection Risks for Businesses

Paul Hastings LLP on

The UK Information Commissioner’s Office’s (the ICO’s) latest Annual Report summarises its accomplishments and priorities, including last year’s enforcement actions. Based on our review of the report, we see the ICO focusing,...more

Mayer Brown

UK Weekly Sanctions Update - Week of July 14, 2025

Mayer Brown on

RUSSIA SANCTIONS - UK Lowers Oil Price Cap on Seaborn Russian Crude Oil, OFSI publishes related FAQs: On July 18, 2025, the UK Government, alongside the EU, announced that it will lower to Oil Price Cap on seaborne Russian...more

Hogan Lovells

The EU Space Act: A new proposal, towards a European space economy

Hogan Lovells on

In a long-awaited move, the EU Commission has published a proposal for a new EU “Space Bill”. Set to enter into force in 2030, this piece of legislation is aimed at harmonising a fragmented legal environment, in order to...more

Latham & Watkins LLP

Charting the Future: Regulatory Milestones and Opportunities in AI, Online Safety, Cybersecurity, and Data Governance in the EU...

Latham & Watkins LLP on

The technology and digital regulatory environment in the EU and the UK is experiencing significant evolution in 2025 and beyond. These legal developments present both significant opportunities and complex compliance...more

DLA Piper

GPAI Code of Practice – Final Version Published by European Commission

DLA Piper on

The European Commission has published the final version of a general-purpose AI (“GPAI”) Code of Practice. We took a deeper look into it and prepared a short summary to help you understand what the GPAI Code of Practice is,...more

McDonnell Boehnen Hulbert & Berghoff LLP

AI News Roundup – Impostor uses AI to imitate U.S. Secretary of State, EU unveils code of practice for AI regulations, AI-powered...

McDonnell Boehnen Hulbert & Berghoff LLP on

To help you stay on top of the latest news, our AI practice group has compiled a roundup of the developments we are following....more

A&O Shearman

EU RTS on subcontracting ICT services supporting critical or important functions under DORA published in OJ

A&O Shearman on

Commission Delegated Regulation (EU) 2025/532 has been published in the Official Journal of the European Union. The Delegated Regulation supplements the Digital Operational Resilience Act (DORA) with regard to regulatory...more

Hogan Lovells

The EU Digital Operational Resilience Act (DORA): top 7 challenges for IT vendors

Hogan Lovells on

The Digital Operational Resilience Act ("DORA") is the EU's latest legislative effort to enhance digital operational resilience across the financial sector through a harmonised set of rules for managing information and...more

Baker Botts L.L.P.

EU Releases General-Purpose AI Code of Practice

Baker Botts L.L.P. on

On July 10, 2025, the EU published its Code of Practice for General-Purpose AI Models, a comprehensive, though not exhaustive, framework designed to guide Artificial Intelligence ("AI") providers in complying with the...more

A&O Shearman

EBA publishes spring 2025 risk assessment report

A&O Shearman on

The European Banking Authority (EBA) has published its spring 2025 risk assessment report alongside a press release, outlining key developments and emerging risks within the European Union/European Economic Area (EU/EEA). The...more

Skadden, Arps, Slate, Meagher & Flom LLP

The EU’s New Cybersecurity Law for the Space Sector

Skadden, Arps, Slate, Meagher & Flom LLP on

On 25 June 2025, the European Commission announced its proposal for a “Space Act” that would introduce a new regulatory framework for EU space activities. The proposed framework includes cyber-resilience obligations for EU...more

Morrison & Foerster LLP

NIS 2: Strengthening Europe’s Cyber Defenses

Morrison & Foerster LLP on

European cybersecurity risk management and reporting obligations have received a substantial facelift. The Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the EU (“NIS 2”) became effective...more

DLA Piper

Ireland: NIS2 Revamps Ireland’s Cybersecurity Landscape: Old Regulators, New Powers

DLA Piper on

The NIS2 Directive has significantly reshaped the cybersecurity landscape across the EU. Since the implementation deadline in October 2024, EU Member States have been working to incorporate new standards into their national...more

King & Spalding

Cyber Resilience Is Key: The Never-Ending Delays of NIS2 Implementation

King & Spalding on

The European Union’s ("EU") NIS2 Directive (Directive (EU) 2022/2555) capitalizes on the success of its predecessor, NIS, the first horizontal minimum harmonization cyber security and resilience frameworks at the EU level....more

Katten Muchin Rosenman LLP

DORA Delegated Regulation on Threat-Led Penetration Testing Published in Official Journal

Katten Muchin Rosenman LLP on

The Delegated Regulation, which contains regulatory technical standards (RTS) on threat-led penetration testing (TLPT) requirements under the EU Digital Operational Resilience Act (DORA), was recently published in the...more

A&O Shearman

EU Delegated Regulation on threat-led penetration testing published in OJ

A&O Shearman on

Commission Delegated Regulation (EU) 2025/1190 of 13 February has been published in the Official Journal of the European Union. The Delegated Regulation supplements the Digital Operational Resilience Act (DORA) with regard to...more

136 Results
 / 
View per page
Page: of 6
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide