Contact
Get notified
Sign In

Activity Tracker
Explore in Detail
Current Threads
Analysis
Support Us
- About Us
- Donate
API Access

Activity tracker
Aggregate Dynamics
Countries
Policy Areas
Economic Activities
Current Threads
Analysis
About Us
Donate
API Access

Contact
Get notified
Sign In

Data governance

Regional Activity
Policy instrument dynamics
Latest Activity
Threads

Adjust filters

Jurisdiction

Select All

Afghanistan

Albania

Algeria

American Samoa

Andorra

Angola

Anguilla

Antigua & Barbuda

Argentina

Armenia

Aruba

Australia

Austria

Azerbaijan

Bahamas

Bahrain

Bangladesh

Barbados

Belarus

Belgium

Belize

Benin

Bermuda

Bhutan

Bolivia

Bosnia & Herzegovina

Botswana

Brazil

British Virgin Islands

Brunei Darussalam

Bulgaria

Burkina Faso

Burundi

Cambodia

Cameroon

Canada

Cape Verde

Cayman Islands

Central African Republic

Chad

Chile

China

Chinese Taipei

Colombia

Comoros

Congo

Cook Islands

Costa Rica

Croatia

Cuba

Cyprus

Czechia

Denmark

Djibouti

Dominica

Dominican Republic

DPR Korea

DR Congo

Ecuador

Egypt

El Salvador

Equatorial Guinea

Eritrea

Estonia

Eswatini

Ethiopia

Faeroe Islands

Falkland Islands

Fiji

Finland

France

French Guiana

French Polynesia

Gabon

Gambia

Georgia

Germany

Ghana

Greece

Greenland

Grenada

Guadeloupe

Guam

Guatemala

Guinea

Guinea-Bissau

Guyana

Haiti

Honduras

Hong Kong

Hungary

Iceland

India

Indonesia

Iran

Iraq

Ireland

Israel

Italy

Ivory Coast

Jamaica

Japan

Jordan

Kazakhstan

Kenya

Kiribati

Kuwait

Kyrgyzstan

Lao

Latvia

Lebanon

Lesotho

Liberia

Libya

Liechtenstein

Lithuania

Luxembourg

Macao

Macedonia

Madagascar

Malawi

Malaysia

Maldives

Mali

Malta

Marshall Islands

Martinique

Mauritania

Mauritius

Mayotte

Mexico

Micronesia

Monaco

Mongolia

Montenegro

Montserrat

Morocco

Mozambique

Myanmar

Namibia

Nauru

Nepal

Netherlands

Netherlands Antilles

New Caledonia

New Zealand

Nicaragua

Niger

Nigeria

Niue

Norfolk Island

Northern Mariana Islands

Norway

Oman

Pakistan

Palau

Panama

Papua New Guinea

Paraguay

Peru

Philippines

Pitcairn

Poland

Portugal

Puerto Rico

Qatar

Republic of Korea

Republic of Kosovo

Republic of Moldova

Republic of the Sudan

Réunion

Romania

Russia

Rwanda

Saint Helena

Saint Kitts & Nevis

Saint Lucia

Saint Pierre & Miquelon

Saint Vincent & the Grenadines

Saint-Barthélemy

Saint-Martin

Samoa

San Marino

Sao Tome & Principe

Saudi Arabia

Senegal

Serbia

Seychelles

Sierra Leone

Singapore

Slovakia

Slovenia

Solomon Islands

Somalia

South Africa

South Sudan

Spain

Sri Lanka

State of Palestine

Suriname

Svalbard & Jan Mayen Islands

Sweden

Switzerland

Syria

Tajikistan

Tanzania

Thailand

Timor-Leste

Togo

Tokelau

Tonga

Trinidad & Tobago

Tunisia

Turkiye

Turkmenistan

Turks & Caicos Islands

Tuvalu

Uganda

Ukraine

United Arab Emirates

United Kingdom

United States of America

Uruguay

US Virgin Islands

Uzbekistan

Vanuatu

Vatican

Venezuela

Vietnam

Wallis & Futuna Islands

Western Sahara

Yemen

Zambia

Zimbabwe

Policy or Regulatory Instrument

Select All

Import licensing requirement

Import quota

Import tariff

Import tariff quota

Internal taxation of imports

Import ban

Export licensing requirement

Export quota

Export tariff

Export tariff quota

Export subsidy

Export ban

Border measure, nes

Merger control regulation

Unilateral conduct regulation

Anti-competitive agreements regulation

Competition authority governance

Competition, nes

User speech right

Patent protection regulation

Content moderation regulation

Content remuneration regulation

Investment in local content obligation

Local content requirement

Content moderation, nes

Cybersecurity regulation

Data protection regulation

Data localisation requirement

Data governance, nes

Cross-border data transfer regulation

MNE: Entry and ownership rule

MNE: Financial incentive

MNE: Treatment and operations, nes

Financial grant

In-kind grant

Loan guarantee

Production subsidy

State loan

Tax or social insurance relief

State Aid, nes

Instrument unspecified

Infrastructure compensation regulation

Other operating condition, nes

Local operations requirement

Quality of Service requirement

Mandatory software installation requirement

Interoperability requirement

Public procurement blacklisting

Public procurement regulation, nes

Public procurement access

Public procurement localisation

Public procurement preference margin

Operational license requirement

Authorisation of goods or services

Business registration requirement

Prohibition of goods and services

Authorisation, registration and licensing, nes

Direct taxes including Digital Service Taxes

Indirect taxes

Customs duties on electronic transmissions

Taxation, nes

Capital injection and equity stakes (including bailouts)

State aid control

Data protection authority governance

Worker classification or protection regulation

Technology transfer requirement

Content moderation authority governance

Consumer protection, nes

Intellectual property, nes

Worker monitoring regulation

Artificial Intelligence authority governance

Age verification requirement

Organisational requirement

Testing requirement

Performance monitoring requirement

Fair marketing and advertising practice requirement

User/subject right

User identification requirement

Complaint or feedback mechanism requirement

Compliance mechanism regulation

Design requirement

Documentation requirement

Legal due diligence requirement

Notification requirement

Public disclosure requirement

Regulatory cooperation requirement

Risk management requirement

Consumer protection authority governance

Public procurement, nes

Design and testing standards, nes

Labour law, nes

Non-discrimination requirement

Government access to data

Thread

Select All

Russia & Ukraine: Content regulation and free speech

Russia & Ukraine: Cryptocurrencies and sanction enforcement

Russia & Ukraine: Cybersecurity risk and data transfers

USTR 2022 report content

Competition enforcement in the digital economy

State of trade barriers and internet fragmentation

Protection of user speech rights

US-China tensions under the Holding Foreign Companies Accountable Act

Regulating Artificial Intelligence

The promotion of local online content

China’s new data regime

Enforcing the General Data Protection Regulation

Online content moderation requirements

Empowering enforcement agencies

Upcoming data governance policy developments

Consumer protection in the digital economy

The remuneration of online content

Digital payment policy

Cybersecurity frameworks

E-commerce policy

Employment rules for the digital economy

Regulating digital infrastructure

The non-binding side of digital policy

Registering and licensing the digital economy

The regulation of digital advertisement

Governing cookies

Governing cross-border data transfers

The TikTok crackdown

Data localisation requirements in the digital economy

The OECD/G20 Inclusive Framework on Base Erosion and Profit Shifting

Digital Services Taxes

Privacy and Artificial Intelligence

International collaboration on AI governance

Enforcement of the Digital Services Act (DSA)

The Digital Services Act legal framework

The Digital Markets Act legal framework

Enforcement of the Digital Markets Act (DMA)

Highlights in Digital Policy

Online age verification rules

Investigations and restrictions against DeepSeek

Laws and frameworks on government access to data

Current Status

Select All

under deliberation

under investigation

under litigation

adopted

in force

rejected

revoked

concluded

in consultation

processing consultation

in grace period

under appeal

to be revoked

Economic Activity

Select All

cross-cutting

infrastructure provider: internet and telecom services

online advertising provider

digital payment provider (incl. cryptocurrencies)

platform intermediary: user-generated content

streaming service provider

platform intermediary: e-commerce

ML and AI development

other service provider

unspecified

technological consumer goods

semiconductors

software provider: app stores

DLT development

search service provider

software provider: other software

messaging service provider

platform intermediary: other

infrastructure provider: cloud computing, storage and databases

infrastructure provider: network hardware and equipment

infrastructure provider: other

Government Branch

Select All

legislature

executive

judiciary

Government Body

Select All

parliament

other regulatory body

data protection authority

competition authority

consumer protection authority

central government

central bank

court

supreme court

tax authority

Event Type

Select All

order

outline

inquiry

decision

law

treaty

public lawsuit

investigation

declaration

civil lawsuit

Event period

01 Jan 2020

16 Apr 2025

Show binding or unbinding policies

Show implemented or unimplemented policies

Regional activity

Policy

changes

between

01 Jan 2020

and

16 Apr 2025

Most active jurisdictions Number of policy changes

Graph

Table

Excel

CSV

Most frequent policy instruments Number of policy changes

Excel

CSV

Data protection regulation

2025

Cybersecurity regulation

935

Cross-border data transfer regulation

383

Data protection authority governance

184

Data localisation requirement

Government access to data

Data governance, nes

Other operating condition, nes

Content moderation regulation

Business registration requirement

User/subject right

Worker monitoring regulation

Authorisation of goods or services

Age verification requirement

Content moderation authority governance

Local operations requirement

Instrument unspecified

Most targeted economic activities Number of policy changes

Excel

CSV

cross-cutting

2013

other service provider

431

ML and AI development

253

platform intermediary: user-generated content

234

infrastructure provider: internet and telecom services

186

software provider: other software

169

infrastructure provider: cloud computing, storage and databases

161

platform intermediary: other

161

digital payment provider (incl. cryptocurrencies)

160

platform intermediary: e-commerce

130

technological consumer goods

search service provider

infrastructure provider: other

online advertising provider

messaging service provider

infrastructure provider: network hardware and equipment

software provider: app stores

streaming service provider

DLT development

unspecified

semiconductors

Policy instrument dynamics over time

Graph

Table

Excel

CSV

Adjust filters

Jurisdiction

Select All

Afghanistan

Albania

Algeria

American Samoa

Andorra

Angola

Anguilla

Antigua & Barbuda

Argentina

Armenia

Aruba

Australia

Austria

Azerbaijan

Bahamas

Bahrain

Bangladesh

Barbados

Belarus

Belgium

Belize

Benin

Bermuda

Bhutan

Bolivia

Bosnia & Herzegovina

Botswana

Brazil

British Virgin Islands

Brunei Darussalam

Bulgaria

Burkina Faso

Burundi

Cambodia

Cameroon

Canada

Cape Verde

Cayman Islands

Central African Republic

Chad

Chile

China

Chinese Taipei

Colombia

Comoros

Congo

Cook Islands

Costa Rica

Croatia

Cuba

Cyprus

Czechia

Denmark

Djibouti

Dominica

Dominican Republic

DPR Korea

DR Congo

Ecuador

Egypt

El Salvador

Equatorial Guinea

Eritrea

Estonia

Eswatini

Ethiopia

Faeroe Islands

Falkland Islands

Fiji

Finland

France

French Guiana

French Polynesia

Gabon

Gambia

Georgia

Germany

Ghana

Greece

Greenland

Grenada

Guadeloupe

Guam

Guatemala

Guinea

Guinea-Bissau

Guyana

Haiti

Honduras

Hong Kong

Hungary

Iceland

India

Indonesia

Iran

Iraq

Ireland

Israel

Italy

Ivory Coast

Jamaica

Japan

Jordan

Kazakhstan

Kenya

Kiribati

Kuwait

Kyrgyzstan

Lao

Latvia

Lebanon

Lesotho

Liberia

Libya

Liechtenstein

Lithuania

Luxembourg

Macao

Macedonia

Madagascar

Malawi

Malaysia

Maldives

Mali

Malta

Marshall Islands

Martinique

Mauritania

Mauritius

Mayotte

Mexico

Micronesia

Monaco

Mongolia

Montenegro

Montserrat

Morocco

Mozambique

Myanmar

Namibia

Nauru

Nepal

Netherlands

Netherlands Antilles

New Caledonia

New Zealand

Nicaragua

Niger

Nigeria

Niue

Norfolk Island

Northern Mariana Islands

Norway

Oman

Pakistan

Palau

Panama

Papua New Guinea

Paraguay

Peru

Philippines

Pitcairn

Poland

Portugal

Puerto Rico

Qatar

Republic of Korea

Republic of Kosovo

Republic of Moldova

Republic of the Sudan

Réunion

Romania

Russia

Rwanda

Saint Helena

Saint Kitts & Nevis

Saint Lucia

Saint Pierre & Miquelon

Saint Vincent & the Grenadines

Saint-Barthélemy

Saint-Martin

Samoa

San Marino

Sao Tome & Principe

Saudi Arabia

Senegal

Serbia

Seychelles

Sierra Leone

Singapore

Slovakia

Slovenia

Solomon Islands

Somalia

South Africa

South Sudan

Spain

Sri Lanka

State of Palestine

Suriname

Svalbard & Jan Mayen Islands

Sweden

Switzerland

Syria

Tajikistan

Tanzania

Thailand

Timor-Leste

Togo

Tokelau

Tonga

Trinidad & Tobago

Tunisia

Turkiye

Turkmenistan

Turks & Caicos Islands

Tuvalu

Uganda

Ukraine

United Arab Emirates

United Kingdom

United States of America

Uruguay

US Virgin Islands

Uzbekistan

Vanuatu

Vatican

Venezuela

Vietnam

Wallis & Futuna Islands

Western Sahara

Yemen

Zambia

Zimbabwe

Policy or Regulatory Instrument

Select All

Import licensing requirement

Import quota

Import tariff

Import tariff quota

Internal taxation of imports

Import ban

Export licensing requirement

Export quota

Export tariff

Export tariff quota

Export subsidy

Export ban

Border measure, nes

Merger control regulation

Unilateral conduct regulation

Anti-competitive agreements regulation

Competition authority governance

Competition, nes

User speech right

Patent protection regulation

Content moderation regulation

Content remuneration regulation

Investment in local content obligation

Local content requirement

Content moderation, nes

Cybersecurity regulation

Data protection regulation

Data localisation requirement

Data governance, nes

Cross-border data transfer regulation

MNE: Entry and ownership rule

MNE: Financial incentive

MNE: Treatment and operations, nes

Financial grant

In-kind grant

Loan guarantee

Production subsidy

State loan

Tax or social insurance relief

State Aid, nes

Instrument unspecified

Infrastructure compensation regulation

Other operating condition, nes

Local operations requirement

Quality of Service requirement

Mandatory software installation requirement

Interoperability requirement

Public procurement blacklisting

Public procurement regulation, nes

Public procurement access

Public procurement localisation

Public procurement preference margin

Operational license requirement

Authorisation of goods or services

Business registration requirement

Prohibition of goods and services

Authorisation, registration and licensing, nes

Direct taxes including Digital Service Taxes

Indirect taxes

Customs duties on electronic transmissions

Taxation, nes

Capital injection and equity stakes (including bailouts)

State aid control

Data protection authority governance

Worker classification or protection regulation

Technology transfer requirement

Content moderation authority governance

Consumer protection, nes

Intellectual property, nes

Worker monitoring regulation

Artificial Intelligence authority governance

Age verification requirement

Organisational requirement

Testing requirement

Performance monitoring requirement

Fair marketing and advertising practice requirement

User/subject right

User identification requirement

Complaint or feedback mechanism requirement

Compliance mechanism regulation

Design requirement

Documentation requirement

Legal due diligence requirement

Notification requirement

Public disclosure requirement

Regulatory cooperation requirement

Risk management requirement

Consumer protection authority governance

Public procurement, nes

Design and testing standards, nes

Labour law, nes

Non-discrimination requirement

Government access to data

Thread

Select All

Russia & Ukraine: Content regulation and free speech

Russia & Ukraine: Cryptocurrencies and sanction enforcement

Russia & Ukraine: Cybersecurity risk and data transfers

USTR 2022 report content

Competition enforcement in the digital economy

State of trade barriers and internet fragmentation

Protection of user speech rights

US-China tensions under the Holding Foreign Companies Accountable Act

Regulating Artificial Intelligence

The promotion of local online content

China’s new data regime

Enforcing the General Data Protection Regulation

Online content moderation requirements

Empowering enforcement agencies

Upcoming data governance policy developments

Consumer protection in the digital economy

The remuneration of online content

Digital payment policy

Cybersecurity frameworks

E-commerce policy

Employment rules for the digital economy

Regulating digital infrastructure

The non-binding side of digital policy

Registering and licensing the digital economy

The regulation of digital advertisement

Governing cookies

Governing cross-border data transfers

The TikTok crackdown

Data localisation requirements in the digital economy

The OECD/G20 Inclusive Framework on Base Erosion and Profit Shifting

Digital Services Taxes

Privacy and Artificial Intelligence

International collaboration on AI governance

Enforcement of the Digital Services Act (DSA)

The Digital Services Act legal framework

The Digital Markets Act legal framework

Enforcement of the Digital Markets Act (DMA)

Highlights in Digital Policy

Online age verification rules

Investigations and restrictions against DeepSeek

Laws and frameworks on government access to data

Current Status

Select All

under deliberation

under investigation

under litigation

adopted

in force

rejected

revoked

concluded

in consultation

processing consultation

in grace period

under appeal

to be revoked

Economic Activity

Select All

cross-cutting

infrastructure provider: internet and telecom services

online advertising provider

digital payment provider (incl. cryptocurrencies)

platform intermediary: user-generated content

streaming service provider

platform intermediary: e-commerce

ML and AI development

other service provider

unspecified

technological consumer goods

semiconductors

software provider: app stores

DLT development

search service provider

software provider: other software

messaging service provider

platform intermediary: other

infrastructure provider: cloud computing, storage and databases

infrastructure provider: network hardware and equipment

infrastructure provider: other

Government Branch

Select All

legislature

executive

judiciary

Government Body

Select All

parliament

other regulatory body

data protection authority

competition authority

consumer protection authority

central government

central bank

court

supreme court

tax authority

Event Type

Select All

order

outline

inquiry

decision

law

treaty

public lawsuit

investigation

declaration

civil lawsuit

Event period

01 Jan 2020

16 Apr 2025

Latest activity

Upcoming events

See all

in force

2025-04-21

European Union: European Commission Decision (EU) 2025/628 including rules on data subject information and restrictions enters into force

processing consultation

2025-04-27

China: Cyberspace Administration of China closes consultation on Cybersecurity Law (Second Draft)

in force

2025-05-01

China: Cyberspace Administration's Measures for Administration of Compliance Audits on Personal Information Protection including cross-border data transfer regulation enter into force

Latest events

processing consultation

2025-04-15

European Union: European commission closes consultation on draft implementing regulation providing technical descriptions for important and critical products with digital elements under Cyber Resilience Act (2024/2847)

in consultation

2025-04-14

European Union: European Data Protection Board opened consultation on guidelines on processing personal data through blockchain technologies

in consultation

2025-04-14

United States of America: National Institute of Standards and Technology opened consultation on draft Updated Privacy Framework

under deliberation

2025-04-11

Ireland: Data Protection Commission opened investigation into X's data processing practices for training generative AI model Grok compliance with GDPR

adopted

2025-04-11

United States of America: Department of Justice issued compliance guide for Data Security Program

adopted

2025-04-11

France: National Commission for Informatics and Liberties adopted recommendations on sandbox project

Subscribe to updates

Threads

Explore all DPA threads

DPA threads aspire to provide the factual basis for digital policy issues around the globe.

More threads will be published continuously in the weeks ahead. Do you miss the factual base for a particular policy issue? Please email us at threads@digitalpolicyalert.org.

Twitter

Current

An SGEPT initiative

All content is available under the Creative Commons Attribution 4.0 International license, except where otherwise stated.

Imprint Privacy Policy

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.