Activity Tracker
The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.
45 events advancing 37 policy or regulatory changes:
Graph
Table
Cybersecurity requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including cybersecurity requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including cybersecurity requirements, until 22 December 2025. The Re…
Data protection requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including data protection requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including data protection requirements, until 22 December 2025. The …
Organisational requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including organisational requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including organisational requirements, until 22 December 2025. The r…
Data localisation requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including data localisation requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including data localisation requirements, until 22 December 2025. Th…
Guidelines for the development of computing power standards system
Ministry of Industry and Information Technology closes consultation on guidelines for development of computing power standards system
On 22 November 2025, China’s Ministry of Industry and Information Technology (MIIT) closes the public consultation on the guidelines for the development of computing power standards system. The guidelines set out a national framework to standardise …
Lawsuit over alleged aiding of copyright infringement through content delivery network services (Kadokawa and others v Cloudflare)
Tokyo District Court found Cloudflare liable for aiding copyright infringement through CDN services
On 19 November 2025, the Tokyo District Court awarded approximately JPY 1.265 billion to Kodansha, Shueisha, and Shogakukan, and JPY 1.214 billion to KADOKAWA after finding Cloudflare liable for aiding copyright infringement. The case concerned two …
European Commission non-binding model contractual terms on data access and use and non-binding standard contractual clauses for cloud computing contracts
European Commission adopted Recommendation on non-binding model contractual terms on data access and use and non-binding standard contractual clauses for cloud computing contracts
On 19 November 2025, the European Commission adopted a Recommendation on non-binding model contractual terms on data access and use and non-binding standard contractual clauses for cloud computing contracts, as provided for in Article 41 of the Data…
Designation of critical information and communications technology third-party providers under Digital Operational Resilience Act
European Supervisory Authorities designated critical information and communications technology third-party providers under Digital Operational Resilience Act
On 18 November 2025, the European Supervisory Authorities, comprising the European Banking Authority, the European Insurance and Occupational Pensions Authority, and the European Securities and Markets Authority, designated nineteen critical Informa…
European Commission market investigation assessing effectiveness of Digital Markets Act for addressing practices limiting competitiveness and fairness in cloud computing sector
European Commission announced market investigation assessing effectiveness of Digital Markets Act for addressing practices limiting competitiveness and fairness in cloud computing sector
On 18 November 2025, the European Commission announced a market investigation assessing the effectiveness of the Digital Markets Act (DMA) for addressing practices limiting competitiveness and fairness in the cloud computing sector. Article 19 of th…
European Commission investigation into Microsoft over qualification as a gatekeeper under Digital Markets Act based on cloud computing service Microsoft Azure
European Commission announced investigation into Microsoft over qualification as a gatekeeper under Digital Markets Act based on cloud computing service Microsoft Azure
On 18 November 2025, the European Commission announced an investigation into Microsoft regarding its possible qualification as a gatekeeper under the Digital Markets Act (DMA) based on its cloud computing service Microsoft Azure. Given the strong po…