Activity Tracker

The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.

13 events advancing 13 policy or regulatory changes:

Most active jurisdictions Number of policy changes

Graph

Table

Most active policy areas Number of policy changes
Targeted economic activity Number of policy changes
Reset filters
13 events advancing 13 policy or regulatory changes:
in force

Amendment of Executive Order on Data Deletion Requirements in Research

Latest event Date: 2023-01-01 order implementation

Implemented Amendment of Executive Order on Data Deletion Requirements in Research

On 1 January 2023, an Amendment of the Executive Order no. 1509 of 18 December 2019 on the disclosure of personal data based on the Data Protection Act was implemented. The amendment updates the rules governing the management of data used for scient…

Implementer
Denmark
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity cross-cutting
in force

Data transfer regulation in Administrative measures for data security in the field of industry and information technology

Latest event Date: 2023-01-01 order implementation

Implemented Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation) including data transfer regulation

On 1 January 2023, the “Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation)” came into effect. The Regulation outlines obligations for the industrial and telecom sectors depending on…

Implementer
China
Policy area Data governance
Policy or regulatory element Cross-border data transfer regulation
Economic activity infrastructure provider: internet and telecom services
in force

California law on mental health digital services and mental health application information (AB 2089)

Latest event Date: 2023-01-01 law implementation

Implemented bill on mental health digital services and mental health application information

On 1 January 2023, Assembly Bill (AB) 2089 on mental health privacy was implemented. The Bill amends the California Confidentiality of Medical Information Act (CMIA) by revising the definition of medical information to include mental health applicat…

Implementer
United States of America
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity other service provider, software provider: app stores
in force

Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions

Latest event Date: 2023-01-01 order implementation

Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions implemented

On 1 January 2023, the Central Bank of Nigeria's Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions, applicable to all entities defined as Other Financial Institutions (OFIs), have been implemented. The Guidelines set…

Implementer
Nigeria
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity digital payment provider (incl. cryptocurrencies), other service provider
in force

Kentucky: Insurance Data Security Act

Latest event Date: 2023-01-01 law implementation

Kentucky Insurance Data Security Act implemented (HB 474)

On 1 January 2023, the Insurance Data Security Act (HB 474) enters into force. The Act introduces a data security framework for insurance carriers that requires them to conduct self-evaluations of their risk profile and how to mitigate it. Based on …

Implementer
United States of America
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity other service provider
adopted

System security requirements in Virginia Consumer Data Protection Act

Latest event Date: 2023-01-01 law signing

Implemented Virginia Consumer Data Protection Act

On 1 January 2023, the Consumer Data Protection Act (VCDPA) becomes effective after its adoption on 2 March 2021. The bill establishes new requirements for personal data processing and security and applies to entities that produce or advertise their…

Implementer
United States of America
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity cross-cutting
in force

Virginia: Amendment to the Consumer Data Protection Act

Latest event Date: 2023-01-01 law implementation

Implemented Amendment to the Consumer Data Protection Act

On 1 January 2023, the Amendment to the Consumer Data Protection Act enters into force after being signed into law by Virginia Governor, Ralph Northam on 2 March 2022. The Act amends the provisions regarding the right to data deletion to enable indi…

Implementer
United States of America
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity cross-cutting
in force

Cybersecurity measures in amendment to Telecommunication Ordinance

Latest event Date: 2023-01-01 order implementation

Implemented amendment to Telecommunication Ordinance including cybersecurity measures

On 1 January 2023, the amendment of the Swiss Telecommunication Ordinance entered into force. In particular, the amendment requires internet service providers to increase preventive cyber security measures and establish a procedure to communicate cy…

Implementer
Switzerland
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity infrastructure provider: internet and telecom services
in force

New York City: Tenant Data Privacy Bill

Latest event Date: 2023-01-01 law implementation

NYC: Tenant Data Privacy Bill fully implemented

On 1 January 2023, Bill Int 1760-2019, on tenant data privacy, is fully implemented as the private right of action against smart access system owners who unlawfully sell tenant data has become enforceable.

Implementer
United States of America
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity other service provider
adopted

Cybersecurity regulation in Administrative measures for data security in the field of industry and information technology

Latest event Date: 2023-01-01 order adoption

Implemented Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation) including cybersecurity measures

On 1 January 2023, the Regulation "Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation)" came into effect. The measures aim to regulate data processing activities and outline security…

Implementer
China
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity infrastructure provider: internet and telecom services
Page
1
2