The upcoming EU Data Act introduces a user-centric approach to data generated by IoT devices, giving individuals and organizations unprecedented control over both personal and non-personal data. Discover what this paradigm shift means for data holders, business models, and the future of data sharing in the EU.
Continue Reading Action Required for Manufacturers of Connected Devices: Challenges Under the EU Data Act
NIS 2 (Directive (EU) 2022/2555), the European Union’s updated framework for cybersecurity, is designed to enhance cybersecurity across the EU by establishing a high common level of security for network and information systems.
Continue Reading EU NIS 2 Directive: Expanded Cybersecurity Obligations for Key Sectors
The EU AI Act marks the world’s first comprehensive legal framework for using and developing AI. Implementation may pose structural, technical, and governance-related challenges for companies, particularly in the area of general-purpose AI (GPAI).
Continue Reading EU AI Act: Key Compliance Considerations Ahead of August 2025
On the heels of the California Attorney General’s largest California Consumer Privacy Act-related settlement yet, the Connecticut Office of the Attorney General has announced its first public enforcement action under the Connecticut Data Privacy Act (CTDPA).
Continue Reading Connecticut AG Fines Ticket Marketplace in State’s First CTDPA Privacy Law Enforcement Action
The UK’s Data (Use and Access) Act 2025 (the Act) officially came into law on June 19. The Act seeks to modernize the UK’s data protection and e-privacy regimes.
On April 29, 2025, Michigan Attorney General Dana Nessel filed a lawsuit against Roku, Inc., alleging that the company collects and monetizes personal data from children without proper consent. The lawsuit claims that Roku’s practices violate the Children’s Online Privacy Protection Act (COPPA) and other privacy laws.
Continue Reading Michigan Attorney General Takes Action Against Roku, Alleging COPPA Violations
On April 16, 2025, eight state regulators announced the formation of a collaborative privacy enforcement and information sharing consortium. This coalition signals a more unified and robust approach to privacy enforcement.
Continue Reading State Attorneys General Form Bipartisan Privacy Enforcement Consortium
Greenberg Traurig San Francisco Shareholder, Darren Abernethy, recently appeared on the “Serious Privacy Podcast” hosted by TrustArc. The podcast features unscripted conversations with global privacy leaders, offering insights from those at the forefront of the data protection field.
Continue Reading Not Your Grandma’s Cookies (with Darren Abernethy)
The newly published German Coalition Agreement 2025 (CA 2025), German language version available here, outlines a digital agenda of the new German government, aimed at strengthening Germany’s position as a leader in digital innovation, data protection, and technological sovereignty. This GT Alert provides an overview of key digital policy areas that the CA 2025