Activity Tracker
The DPA Activity Tracker provides our latest information on developments in legislatures, judiciaries and the executive branches of G20, EU member states and Switzerland.
161 events advancing 98 policy or regulatory changes:
Graph
Table
APEC ministers responsible for trade's joint statement including measures on AI cooperation and cross-border e-commerce (Suzhou statement)
APEC ministers responsible for trade adopted joint statement including measures on AI cooperation and cross-border e-commerce
On 23 May 2026, Trade Ministers from the Asia-Pacific Economic Cooperation (APEC) adopted the joint statement (Suzhou statement) on advancing regional trade integration, resilient supply chains, trade digitalisation, services liberalisation, and coo…
Compliance Checks on the Impact of the Use of Artificial Intelligence on Personal Data Privacy 2026
Office of the Privacy Commissioner for Personal Data published findings of compliance checks on the impact of the use of artificial intelligence on personal data privacy
On 18 May 2026, the Office of the Privacy Commissioner for Personal Data (PCPD) published the findings of compliance checks on 60 organisations regarding the impact of the use of artificial intelligence (AI) on personal data privacy. The PCPD launch…
Decision on WTO E-commerce Moratorium
Termination of WTO Moratorium on Customs Duties on Electronic Transmissions
On 30 March 2026, the Moratorium on Customs Duties on Electronic Transmissions was terminated following the conclusion of the World Trade Organisation’s Ministerial Conference, which ended without consensus to extend the measure. The moratorium had …
Global Privacy Enforcement Network's inquiry into children's privacy practices on websites and applications
Global Privacy Enforcement Network adopted report on children's privacy practices on websites and applications
On 25 March 2026, the Global Privacy Enforcement Network (GPEN) published a sweep report examining children's privacy practices across 876 websites and applications. The inquiry found that, while age assurance use has increased since 2015, 88% of pl…
Privacy Commissioner for Personal Data's inquiry into security risks related to use of OpenClaw and other agentic AI
Privacy Commissioner for Personal Data issued alert cautioning security risks related to use of OpenClaw and other agentic AI
On 16 March 2026, the Privacy Commissioner for Personal Data issued an alert cautioning about the privacy and security risks posed by OpenClaw and other agentic Artificial Intelligence (AI) systems. It highlighted that, unlike standard AI chatbots, …
Financial Action Task Force report on regulatory recommendations for stablecoins and unhosted wallets
Financial Action Task Force released report on regulatory recommendations for stablecoins and unhosted wallets
On 3 March 2026, the Financial Action Task Force (FATF) published a report on stablecoins, focusing on their use in peer-to-peer (P2P) transactions via unhosted wallets. The report notes that by mid-2025, over 250 stablecoins were in circulation, wi…
Joint statement on AI generated imagery
Data Protection Authorities adopted joint statement on AI generated imagery raising concerns on defamatory content and harm to vulnerable groups
On 23 February 2026, 61 Data Protection Authorities, including those from Australia, Spain, Hong Kong, New Zealand, Korea, Singapore, Switzerland, and the European Data Protection Board, adopted a joint statement raising concerns about Artificial In…
Office of the Privacy Commissioner for Personal Data investigation into Grok over alleged generation of indecent content
Office of the Privacy Commissioner for Personal Data announced investigation into Grok over alleged generation of indecent content
On 15 January 2026, the Office of the Privacy Commissioner for Personal Data (PCPD) announced that it is proactively contacting the organisation responsible for the artificial intelligence (AI) chatbot Grok to investigate its potential for generatin…
Local operations requirement in Protection of Critical Infrastructures (Computer Systems) Ordinance (Ordinance No. 4 of 2025)
Legislative Council's Protection of Critical Infrastructures (Computer Systems) Ordinance including local operations requirement enters into force
On 1 January 2026, the Legislative Council's Protection of Critical Infrastructures (Computer Systems) Ordinance (Ordinance No. 4 of 2025) including local operations requirement enters into force following designation by the Secretary for Security. …
Cybersecurity regulation in Protection of Critical Infrastructures (Computer Systems) Ordinance (Ordinance No. 4 of 2025)
Legislative Council's Protection of Critical Infrastructures (Computer Systems) Ordinance including cybersecurity regulation enters into force
On 1 January 2026, the Legislative Council's Protection of Critical Infrastructures (Computer Systems) Ordinance (Ordinance No. 4 of 2025) including cybersecurity regulation enters into force following designation by the Secretary for Security. The …