Activity Tracker

On 7 April 2025, the Food and Drug Administration (FDA) closes the public consultation on its draft Guidance for Industry and FDA Staff regarding the cybersecurity regulations for Artificial Intelligence-Enabled Device Software Functions. The draft …

On 31 March 2025, the European Commission adopted Commission Decision (EU) 2025/628, which established internal regulations concerning the provision of information to data subjects and the limitation of certain data subjects' rights in relation to p…

On 28 March 2025, the Cyberspace Administration of China, in cooperation with the relevant departments, initiated a public consultation on the Cybersecurity Law of the People's Republic of China (Second Draft for Comment). The consultation will rema…

On 27 March 2025, the Utah Digital Choice Act (HB 418) was signed by the Governor. The Act establishes regulatory requirements concerning the control, access, and transfer of personal data on social media platforms. It grants the Division of Consume…

On 25 March 2025, the National Commission on Informatics and Liberty (CNIL) initiated a public consultation, set to close on 20 May 2025, on a draft recommendation focused on location data usage by connected vehicles in the technological consumer go…

On 24 March 2025, the Act amending the Code of Virginia on Virginia Consumer Protection Act, including personally identifiable reproductive or sexual health information, was signed by the Governor of Virginia. The Act prohibits the collection, sale…

On 20 March 2025, the National Cybersecurity Standardisation Technical Committee (TC260) initiated a public consultation on the draft on cybersecurity incident management standard: principles and processes until 19 May 2025. This standard, which rep…

On 20 March 2025, China's National Cybersecurity Standardisation Technical Committee (TC 260) opened a consultation on the standard on requirements for audit and certification bodies for cybersecurity technology information security management syste…

On 20 March 2025, the National Cybersecurity Standardisation Technical Committee (TC260) opened a public consultation on cybersecurity incident management standard: guidelines for incident response planning and preparation, until 19 May 2025. The gu…

On 17 March 2025, the Department for Science, Innovation and Technology (DSIT) announced an inquiry into data brokers and their impact on national security until 12 May 2025. The inquiry focuses on four areas, including defining data brokers and the…