Digital Policy Alert logo

Activity Tracker

The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.

246 events advancing 212 policy or regulatory changes:

Most active jurisdictions Number of policy changes

Graph

Table

Most active policy areas Number of policy changes
Targeted economic activity Number of policy changes
Reset filters
246 events advancing 212 policy or regulatory changes:
CSV Excel
in consultation

Recommendations on legal basis for requiring accounts on e-commerce websites (2/2025)

Latest event Date: 2025-12-04 outline consultation opened

European Data Protection Board opened consultation on recommendations on legal basis for requiring accounts on e-commerce websites (2/2025)

On 4 December 2025, the European Data Protection Board (EDPB) opened a consultation on its recommendations concerning the legal basis for requiring the creation of user accounts on e-commerce websites (2/2025) until 12 February 2026. These recommend…

Implementer
European Union
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity platform intermediary: e-commerce
processing consultation

European Commission and European Data Protection Board joint guidelines on interplay between Digital Markets Act and General Data Protection Regulation

Latest event Date: 2025-12-04 outline consultation closed

European Data Protection Board and European Commission close consultation on joint guidelines on interplay between Digital Markets Act and General Data Protection Regulation

On 4 December 2025, the European Data Protection Board and the European Commission closes a consultation on joint guidelines detailing the interaction between the Digital Markets Act (DMA) and the General Data Protection Regulation (GDPR). These gui…

Implementer
European Union
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity cross-cutting
under investigation

Personal Information Protection Commission investigation into Coupang over data leak of customer and account information

Latest event Date: 2025-12-03 investigation interim ruling

Personal Information Protection Commission required Coupang to implement corrective notification, public disclosure, and strengthened mitigation measures following investigation into data leak

On 3 December 2025, the Personal Information Protection Commission (PIPC) convened an emergency full Commission meeting and required Coupang to implement corrective notification, public disclosure, and strengthened mitigation measures following its …

Implementer
Republic of Korea
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity platform intermediary: e-commerce
processing consultation

Templates for organisations to facilitate compliance under General Data Protection Regulation

Latest event Date: 2025-12-03 inquiry consultation closed

European Data Protection Board closes consultation on templates for organisations to facilitate compliance under General Data Protection Regulation

On 3 December 2025, the European Data Protection Board (EDPB) closes the consultation seeking inputs on ready-to-use General Data Protection Regulation (GDPR) compliance templates. The consultation follows the Helsinki Statement on enhanced clarity,…

Implementer
European Union
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity cross-cutting
in force

Lawsuit on responsibilities of online marketplace operators under Directive on Electronic Commerce (X v Russmedia/Case C-492/23)

Latest event Date: 2025-12-02 civil lawsuit ruling

Court of Justice of the European Union issued ruling determining online marketplaces are responsible for use of personal data in advertisements

On 2 December 2025, the Court of Justice of the European Union delivered its judgment in X v Russmedia Digital SRL, clarifying that operators of online marketplaces are considered controllers under Article 4(7) of the General Data Protection Regulat…

Implementer
European Union
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity platform intermediary: e-commerce
adopted

Children's Code Strategy progress update (December 2025)

Latest event Date: 2025-12-01 outline adoption

Information Commissioner’s Office released Children’s Code Strategy progress update

On 1 December 2025, the Information Commissioner’s Office released the Children’s Code Strategy Progress Update, outlining developments since March 2025 on default privacy settings, geolocation, targeted advertising, recommender systems, and age ass…

Implementer
United Kingdom
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity platform intermediary: user-generated content
under deliberation

Information Commissioner's Office investigation into children's online privacy in ten popular mobile games

Latest event Date: 2025-12-01 investigation announcement

Information Commissioner's Office opened investigation into children's online privacy in ten popular mobile games

On 1 December 2025, the Information Commissioner’s Office (ICO) opened an investigation into children’s online privacy in ten popular mobile games, announcing a monitoring programme that will assess each game’s compliance with default privacy settin…

Implementer
United Kingdom
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity software provider: app stores, software provider: other software
under deliberation

EU-Singapore second Digital Partnership Council meeting

Latest event Date: 2025-11-30 declaration announcement

European Union and Singapore announced areas for future collaboration following second Digital Partnership Council meeting

On 30 November 2025, the European Union and Singapore announced areas for future collaboration following the second Digital Partnership Council meeting. The areas discussed for future collaboration span technological collaboration and cybersecurity.…

Implementer
European Union
Policy area Data governance
Policy or regulatory element Cybersecurity regulation
Economic activity cross-cutting
in force

Data governance and personal information protection obligations in Shanghai Municipal Communications Administration 2025 Internet of Vehicles action plan

Latest event Date: 2025-11-30 order implementation

Requirements for submission of data security and personal information risk assessment reports under 2025 Internet of Vehicles action plan enters into force

On 30 November 2025, enterprises covered by the 2025 Internet of Vehicles (IoV) action plan adopted by the Shanghai Municipal Communications Administration must submit two types of data protection assessments to the municipal authority. First, they …

Implementer
China
Policy area Data governance
Policy or regulatory element Data protection regulation
Economic activity cross-cutting
in consultation

Measures for Supervision and Inspection of Cyberspace Security by Public Security Organs

Latest event Date: 2025-11-29 order consultation opened

Ministry of Public Security opened consultation on draft Measures for Supervision and Inspection of Cyberspace Security by Public Security Organs

On 29 November 2025, the Ministry of Public Security opened a consultation on the draft Measures for Supervision and Inspection of Cyberspace Security by Public Security Organs, until 28 December 2025. The draft sets out the legal basis under the Po…

Implementer
China
Policy area Data governance
Policy or regulatory element Data protection authority governance
Economic activity cross-cutting
Page
1
2
...
22