Financial institutions are typically familiar with compliance requirements because they have been heavily regulated in most places. In addition to sector-specific regulations, financial services…

Ask your favorite GenAI tool and it will say that some variant of these are the top issues you need to be concerned about…

The deadline for NIS2 implementation passed more than 3 months ago. To date, 9 EU Member States have enacted implementing legislation, with registration requirements…

The new Cyber Resilience Act is the first EU regulation on the cyber security of products with digital elements. This includes not only software…

The deadline for NIS2 implementation passed on 17 October, but only 6 EU Member States met that deadline, and 14 of the remaining 22…

On August 9, India’s Digital Personal Data Protection Bill, 2023 (“DPDP Bill”) passed both houses of the Indian Parliament and now awaits Presidential assent. In…

On July 10, 2023, the European Commission adopted its adequacy decision for the EU-U.S. Data Privacy Framework (“DPF”). US companies that participate in the DPF will…

The US Office of the Director of National Intelligence (“ODNI”) announced today that it has fully implemented new safeguards under Executive Order 14086. See…

28 January 2023 is Data Protection Day (or Data Privacy Day outside of Europe), which marks the anniversary of the Council of Europe’s Convention…

On December 13, the European Commission (“EC”) announced a draft decision on the adequacy of the U.S data protection regime to protect the personal…