Activity Tracker
The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.
21130 events advancing 11623 policy or regulatory changes:
Graph
Table
Implementing regulation on establishment and operation of the European Health Data Space Board
European Commission closes consultation on draft implementing regulation on establishment and operation of the European Health Data Space Board
On 6 January 2026, the European Commission closes the consultation on a draft implementing regulation for the establishment and operation of the European Health Data Space Board (EHDS Board). The draft regulation outlines the necessary rules for the…
Cybersecurity standards practice guide on cross-border processing protection requirements for personal information in the Guangdong-Hong Kong-Macao Greater Bay Area (Mainland and Macao)
National Cybersecurity Standardisation Technical Committee closes consultation on guide on cross-border processing protection requirements for personal information in the Guangdong–Hong Kong–Macao Greater Bay Area (Mainland and Macao)
On 5 January 2026, the National Cybersecurity Standardisation Technical Committee closes the public consultation, which had been open since 22 December 2025, on the Cybersecurity Standards Practice Guide on cross-border processing protection require…
Federal Trade Commission investigation into Illuminate Education over failure to secure students' personal data
Federal Trade Commission closes consultation on proposed consent order for Illuminate Education over failure to secure students' personal data
On 5 January 2025, the Federal Trade Commission (FTC) closes a consultation on its proposed consent order against educational technology provider Illuminate Education. The FTC alleged that Illuminate Education failed to take appropriate cybersecurit…
Measures for Network Data Security Risk Assessment
Cyberspace Administration of China closes consultation on draft measures for network data security risk assessments
On 5 January 2026, the Cyberspace Administration of China (CAC) closes the consultation on the draft measures for network data security risk assessments. The draft regulation defines the scope and procedures for conducting network data security risk…
AI Growth Lab
Department for Science, Technology and Innovation closes consultation on AI Growth Lab
On 2 January 2026, the Department for Science, Innovation and Technology (DSIT) closes the public consultation regarding the establishment of an AI Growth Lab. The proposed Lab aims to support innovation in AI-enabled products and services by relaxi…
Office of Communications guidance on super-complaints under Online Safety Act
Office of Communications released interim guidance on super-complaints under Online Safety Act
On 2 January 2026, the Office of Communications (Ofcom) issued guidance on the operation of the super-complaints regime under the Online Safety Act. The interim guidance sets out what constitutes a super-complaint, who may submit one, and the admiss…
Indonesian Criminal Code
Implemented Indonesian Criminal Code
On 2 January 2026, the new Indonesian Criminal Code, which expands the classification of crime types and strengthens the government's control over online speech, was implemented three years after its promulgation. The new Code also applies to online…
Presidential Decree No. 10767 re-determining digital services tax rate
President Decree No. 10767 re-determining digital services tax rate becomes applicable at 5%
On 1 January 2026, Presidential Decree No. 10767, issued pursuant to Article 5 of Law No. 7194 on Digital Services Tax and Amendments to Certain Laws and Decree Law No. 375, became applicable to revenue obtained from the beginning of the year follow…
Network Security Standards Practice Guide on Database Network Security Requirements (TC260-PG-202517A)
National Cybersecurity Standardisation Technical Committee closes consultation on Network Security Standards Practice Guide on Database Network Security Requirements (TC260-PG-202517A)
On 1 January 2026, the National Cybersecurity Standardisation Technical Committee closes the public consultation on the Network Security Standards Practice Guide on Database Network Security Requirements (TC260-PG-202517A), which had been open since…
Declaration No. 87 of 2025 regarding dispensation with license requirement for social media and instant messaging service providers
Minister of Communications Declaration No. 87 of 2025 regarding dispensation with license requirement for social media and instant messaging service providers enters into force
On 1 January 2026, the Minister of Communications Declaration No. 87 of 2025 regarding dispensation with the license requirement for social media and instant messaging service providers under the Communications and Multimedia (Licensing) Regulations…