Activity Tracker
The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.
180 events advancing 123 policy or regulatory changes:
Graph
Table
Personal Information Protection Commission investigation into 2K Games' compliance with Personal Information Protection Act's security obligations
Personal Information Protection Commission fined 2K Games KRW 217.1 million for noncompliance with security obligations
On 11 December 2025, the Personal Information Protection Commission (PIPC) fined 2K Games KRW 217.1 million for a personal information breach affecting approximately 12,906 domestic users. The breach, discovered around 28 September 2022, occurred af…
Digital Trade Promotion Act of 2025 (SB 3399) was introduced to Senate
Digital Trade Promotion Act of 2025 (SB 3399) was introduced to Senate
On 9 December 2025, the Digital Trade Promotion Act of 2025 (SB 3399) was introduced in the Senate. The Bill would authorise the President to negotiate and conclude digital trade agreements with other countries to regulate electronic commerce and cr…
European Union-Canada Memorandum of Understanding on Digital Credentials and Trust Services
European Union and Canada signed memorandum of understanding on digital credentials and trust services
On 8 December 2025, the European Union and Canada signed a Memorandum of Understanding on digital credentials and trust services. The memorandum focuses on strengthening cooperation on technical interoperability and solutions based on digital identi…
Competition Commission investigation into Dagang Net for alleged anti-competitive behaviour
High Court dismissed Dagang Net's judicial review application against abuse of dominance finding
On 5 December 2025, the High Court dismissed Dagang Net’s judicial appeal, which aimed to overturn the Competition Appeal Tribunal’s decision upholding the Malaysia Competition Commission’s finding that the company had abused its market dominance in…
Legal framework for law enforcement use of biometrics, facial recognition and similar technologies
Home Office opened consultation on legal framework for law enforcement use of biometrics, facial recognition and similar technologies
On 4 December 2025, the Home Office opened a public consultation on the new legal framework for law enforcement use of biometrics, facial recognition, and similar technologies, which will run until 12 February 2026. The consultation document propose…
Directive on adapting civil liability rules to Artificial Intelligence
European Parliament’s Legal Affairs Committee rejected proposal for legal action against European Commission over withdrawn AI civil liability directive
On 3 December 2025, the European Parliament’s Legal Affairs Committee rejected a proposal to legally challenge the European Commission’s decision to withdraw the draft directive on adapting non-contractual civil liability rules to artificial intelli…
National Cybersecurity Standardisation Technical Committee Framework for Public Key Cryptography Application Technology in Network Security (GB/T 46795-2025)
National Information Security Standardisation Technical Committee adopted framework for public key cryptography application technology in network security
On 2 December 2025, the National Information Security Standardisation Technical Committee (TC260) adopted the Framework for Public Key Cryptography Application Technology in Network Security (GB/T 46795-2025). The standard applies to all public-key …
TC260 standard cybersecurity product interconnectivity -part 3: alarm information format (GB/T 44886.3-2025)
National Information Security Standardisation Technical Committee adopted standard cybersecurity product interconnectivity -part 3: alarm information format
On 2 December 2025, the National Information Security Standardisation Technical Committee (TC260) adopted the standard cybersecurity product interconnectivity-part 3: alarm information format (GB/T 44886.3-2025). The standard applies to interconnect…
TC260 standard cybersecurity product interconnectivity-part 2: asset information format (GB/T 44886.2-2025)
National Information Security Standardisation Technical Committee adopted standard cybersecurity product interconnectivity - part 2: asset information format
On 2 December 2025, the National Information Security Standardisation Technical Committee (TC260) adopted the standard cybersecurity product interconnectivity - part 2: asset information format (GB/T 44886.2-2025). The standard applies to cybersecur…
TC260 technical requirements for cryptography and related security of identity-based cryptographic authentication system (GB/T 46798-2025)
National Information Security Standardisation Technical Committee adopted technical requirements for cryptography and related security of identity-based cryptographic authentication system
On 2 December 2025, the National Information Security Standardisation Technical Committee (TC260) adopted the technical requirements for cryptography and related security of identity-based cryptographic authentication systems (GB/T 46798-2025). The …