Daily timeline

European Commission Speech Brussels, 07 May 2026 Ladies and Gentlemen,  Dear colleagues, Today, we begin by remembering Daphne Caruana Galizia.  When she was murdered in 2017, Daphne was facing 48 lawsuits – f...

European Commission Daily news Brussels, 07 May 2026 EU agrees to simplify AI rules to boost innovation and ban ‘nudification' apps to protect citizens The European Commission welcomes the political agreement reac...

European Commission Speech Brussels, 07 May 2026 President Tütto, dear Kata, Dear members, I am delighted to be with you today. As you know, I value the collaboration with you. At the beginning of my mandate, ...

Thailand has introduced new requirements for online social media platforms to verify the identity of paying advertisers before publishing their advertisements. On May 5, 2026, the Electronic Transactions Commission published the Notification on Measures for Prevention of Techn…

India’s hosting of the AI Impact Summit 2026 was an ambitious undertaking. With 600,000 attendees and 92 signatories to the New Delhi Declaration, the Summit was a showcase of a Global South country taking a leading role in shaping the AI governance agenda. The Summit’s offici…

The government's summary of a Council Decision 2025/799 on the adoption of a decision adding Council Decision 2020/135 to Annex 2 to the Windsor Framework.

The Center for AI Security and Innovation (CAISI) has entered into agreements with leading U.S. AI labs – Google DeepMind, Microsoft and xAI – to conduct pre‑deployment national security testing of frontier AI models. The collaborations expand CAISI’s capability to evaluate em…

The FTC has entered a settlement prohibiting data broker Kochava and its subsidiary from selling, sharing or disclosing sensitive location data without consumers’ affirmative express consent. The action follows allegations that the firms sold location data linked to hundreds o…

The Government Digital Service has published summaries of its Responsible AI Advisory Panel meetings, outlining discussions on AI transparency, governance and public sector use. The documents provide insight into emerging best practices and policy considerations for AI deploym…

The rise of AI-powered health tools is prompting new thinking about how, where, and when sensitive health information receives legal protection. According to media reports, consumers are now using general-purpose AI tools to upload or query health information, including medica…

The European Data Protection Board published a coordinated supervisory action report on 30 April 2026 concerning Europol’s processing of personal data of minors under 15 who are treated as suspects or potential criminals. The report examines compliance with GDPR provisions, pa…

The Department for Science, Innovation and Technology published its Statement of Strategic Priorities on 30 April 2026, outlining the government's objectives for telecommunications, radio spectrum allocation and postal services. The paper, laid in draft before Parliament on 11…

The Department for Science, Innovation and Technology has published its annual Official Statistics on cyber‑security breaches for 2025/26. The data show an increase in the frequency and financial impact of cyber incidents affecting businesses, charities and educational institu…

A 4 million EUR “Smart Policing” programme enabling the use of AI technologies, including facial recognition software, which was deployed by the Hellenic Police has been ruled unlawful by Greece’s data protection authority. The decision confirmed long-standing concerns raised …

The European Commission opened consultations for the Digital Omnibus, EDRi responded by urging the Commission not to prioritise corporate interests and deregulation over privacy, transparency, and fundamental rights, ultimately putting people at greater risk of data misuse and…

35 organisations and researchers call on the EU AI Office to provide clear information on the timeline and process of the establishment of the Advisory Forum, the only formal mechanism ensuring civil society voices are part of AI Act implementation. The post The EU AI Office …

In a speech on 28 April 2026, the UK Technology Secretary urged a decisive shift towards supporting British AI companies, citing the sector's impact on global power, security and prosperity. The address highlights the government's intent to enhance control and leverage over AI…

The European Data Protection Board issued a binding decision on 27 February 2026 approving the administrative arrangement between Germany’s Abschlussprüferaufsichtsstelle and the US Public Company Accounting Oversight Board (PCAOB) for the transfer of personal data. The decisi…

The European Data Protection Board issued Opinion 12/2026 concerning the draft decision by Spain’s supervisory authority on the Santander Group’s controller Binding Corporate Rules. The opinion addresses compliance with GDPR provisions on international data transfers and the a…

The European Data Protection Board issued Opinion 10/2026 concerning the Dutch Supervisory Authority’s draft decision on the SLB Group’s controller Binding Corporate Rules (BCRs). The opinion assesses the BCRs against GDPR requirements, particularly Art. 64 and the adequacy of…

The European Data Protection Board issued Opinion 9/2026 concerning the Dutch supervisory authority’s draft decision on the Jacobs Douwe Egberts Group’s controller Binding Corporate Rules (BCRs). The opinion analyses the adequacy of the BCRs under Article 64 GDPR and provides …

The European Data Protection Board issued an approval decision on 7 April 2021 for the administrative arrangement governing the transfer of certain personal data from the Public Company Accounting Oversight Board (PCAOB) to the College Van Toezicht Op De Bedrijfsrevisoren/Coll…

The European Data Protection Board commemorated the GDPR’s tenth anniversary, noting its role in establishing continent‑wide data‑protection rights and obligations. It reflected on the Board’s development since 2018, the strengthening of DPA enforcement powers, and the GDPR’s …

The Department for Science, Innovation and Technology announced a co‑investment with the British Business Bank in Ineffable Intelligence, a UK‑based company developing a self‑learning AI capable of generating new knowledge. The initiative forms part of the Sovereign AI program…

The FTC’s 2026 press release shows that social media was the most costly fraud vector in 2025, accounting for almost 30% of reported scam losses. Reported losses totalled $2.1 billion, an eightfold increase from 2020 figures.

# China TMT Annual Review of 2025 and Outlook for 2026 (I) - Bird & Bird **Publication date (extracted):** 1 November 2025 # China TMT: Annual Review of 2025 and Outlook for 2026 (I) ## Published Apr 26 2026 ## Reading Time …

*Special thanks to Jim Siegl and Jocelyn Aqua for their advice and expertise. Summary: Artificial Intelligence (AI) presents fundamental opportunities and challenges for defense of increasingly complex digital ecosystems amid rising attack costs, fragmented regulation, and evo…

The European Data Protection Board published its 2025 report on the Support Pool of Experts (SPE) programme, detailing how external experts were engaged in GDPR enforcement, AI oversight and cross‑authority cooperation. The 289.7 KB document is available in English via the EDP…

The National Cyber Security Centre has published new guidance on detecting and mitigating tactics used by China-linked threat actors that employ covert networks to hide malicious activity. The advisory outlines practical steps for organisations to strengthen detection, attribu…

The Department for Science, Innovation and Technology (DSIT) has sent an open letter, signed by Secretary of State Liz Kendall and Security Minister Dan Jarvis, to UK business leaders highlighting emerging AI‑driven cyber threats. The letter calls for heightened vigilance, ado…

The Department for Science, Innovation and Technology has published guidance inviting organisations to sign the Cyber Resilience Pledge. The pledge sets out three immediate actions designed to improve cyber‑attack resilience. The guidance was published on 22 April 2026.

The U.S. is overdue to adopt comprehensive federal consumer privacy legislation. Baseline protections for personal information in a federal privacy law would provide an essential foundation for progress on other Congressional priorities, including AI governance and youth onlin…

The National Cyber Security Centre’s chief highlighted an escalating risk environment, describing a convergence of sophisticated attacks, supply‑chain vulnerabilities and rapid technology adoption. He called for heightened resilience across public and private sectors to addres…

The Department for Science, Innovation and Technology (DSIT) has opened a Front Door pilot allowing businesses to report regulatory obstacles directly to the Regulatory Innovation Office. The pilot aims to identify and address barriers that hinder innovation and market entry. …

My conversation with Prof. Florence G'sell on generative AI regulation | Edition #288

We had to wait almost two years between when the 19th and 20th state comprehensive privacy laws were enacted, but the gap between the 20th and 21st proved to be a mere month. Governor Ivey signed HB 351, the Alabama Personal Data Protection Act (APDPA) into law on April 16. Wh…

The Digital Omnibus proposals, presented as “simplification,” risk weakening essential safeguards in the GDPR, the ePrivacy Directive, and the AI Act. By reducing protections and delaying obligations for high-risk systems, they introduce a logic reminiscent of the tech industr…

The Digital Omnibus not only targets the GDPR, ePrivacy and AI rules, but also rewrites the EU’s data acquis by merging recent laws into the Data Act. These changes risk weakening safeguards, concentrating power, and creating uncertainty before the framework has even been im…

[Vishal Patidar and Mohit Jain are fourth-year students at the National Law Institute University (NLIU), Bhopal. In this piece, the authors interrogate the procedural friction introduced by the Digital Personal Data Protection (DPDP) Rules, 2025, specifically regarding the sto…

[Rahul P. is a graduate research fellow at the JSW Centre for the Future of Law at NLSIU Bengaluru. In this piece, the author interrogates the escalating tension between the regulation of “Synthetically Generated Information” (SGI) and the maintenance of platform neutrality, s…