Activity Tracker
The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.
1784 events advancing 1211 policy or regulatory changes:
Graph
Table
Cybersecurity requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including cybersecurity requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including cybersecurity requirements, until 22 December 2025. The Re…
Data protection requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including data protection requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including data protection requirements, until 22 December 2025. The …
Data localisation requirements in Regulation on Protection of Personal Information on Large-scale Online Platforms
Cyberspace Administration opened consultation on draft Regulation on Protection of Personal Information on Large-scale Online Platforms including data localisation requirements
On 22 November 2025, the Cyberspace Administration of China opened a consultation on the draft Regulation on the Protection of Personal Information on Large-scale Online Platforms, including data localisation requirements, until 22 December 2025. Th…
Attorney General investigation into Jam City over alleged failure to offer consumers methods to opt-out of the sale or sharing of their personal information under California Consumer Privacy Act
California Attorney General reached settlement requiring Jam City to pay USD 1.4 million in civil penalties, provide in-application opt-out methods, and cease selling or sharing the personal information without opt-in consent
On 21 November 2025, the Attorney General announced a settlement with Jam City, resolving allegations that the company violated the California Consumer Privacy Act by failing to offer consumers methods to opt out of the sale or sharing of their pers…
Resolution on amendments to General Data Protection Regulation focusing on child protection
Conference of Independent Data Protection Supervisory Authorities of Federal and State Governments adopted resolution on amendments to General Data Protection Regulation focusing on child protection
On 20 November 2025, the Conference of Independent Data Protection Supervisory Authorities of the Federal and State Governments adopted a resolution calling for amendments to the General Data Protection Regulation to strengthen protections for child…
Cross-border data transfer regulation in CPTPP-EU Trade and Investment Dialogue Joint Ministerial Statement
CPTPP and EU members announced CPTPP-EU Trade and Investment Dialogue Joint Ministerial Statement including cross-border data transfer regulation
On 20 November 2025, Parties to the Comprehensive and Progressive Agreement for Trans-Pacific Partnership (CPTPP) and the European Union (EU) issued the CPTPP-EU Trade and Investment Dialogue Joint Ministerial Statement, including cross-border data …
Cross-border data transfer regulation in CPTPP-ASEAN Trade and Investment Dialogue Joint Ministerial Statement
Parties to CPTPP and ASEAN Members announced CPTPP-ASEAN Trade and Investment Dialogue Joint Ministerial Statement including cross-border data transfer regulation
On 20 November 2025, Parties to the Comprehensive and Progressive Agreement for Trans-Pacific Partnership (CPTPP) and ASEAN Members announced the CPTPP-ASEAN Trade and Investment Dialogue Joint Ministerial Statement, including cross-border data tran…
Investigation into Meta over allegations that it tracked Android users' web activity and linked it to Facebook and Instagram identities
Prime Minister announced an investigation into Meta over allegations that it tracked Android users’ web activity and linked it to Facebook and Instagram identities
On 19 November 2025, the Prime Minister announced an investigation into Meta following findings by research centres in Spain, Belgium, and the Netherlands that the company allegedly used a hidden mechanism to track the web activity of Android users …
Data Broker Enforcement Strike Force within Enforcement Division of California Privacy Protection Agency
California Privacy Protection Agency established Data Broker Enforcement Strike Force
On 19 November 2025, the California Privacy Protection Agency (CalPrivacy) established the Data Broker Enforcement Strike Force within its Enforcement Division to investigate privacy violations by the data broker industry. The Enforcement Division w…
Cybersecurity requirements for "high-risk AI systems" in Digital Omnibus on AI Regulation (2025/0359)
European Commission announced Proposal for Digital Omnibus on AI Regulation (2025/0359) including cybersecurity requirements for "high-risk AI systems"
On 19 November 2025, the European Commission announced a Proposal for the Digital Omnibus on AI Regulation (2025/0359), which amends the EU AI Act by altering the implementation timeline of cybersecurity requirements for high-risk AI systems. The im…