EU and Middle East
- EU Commission renewed adequacy decisions to allow for free and secure flow of personal data with the UK.
- Austrian Supreme Court ordered Meta to grant users complete access to their data.
- European Commission opened an investigation on Google for suspected anticompetitive conduct in the use of online content for AI purposes.
- Turkish Data Protection Authority published a principle decision restricting recording photocopies of identity cards in tourism and hospitality sector.
- EU Commission launched a dedicated legal helpdesk for Data Act.
- Belgian Data Protection Authority imposed corrective measures and a daily penalty of EUR 5,000 on a software company for ongoing GDPR violations.
- New rules for enforcement of GDPR Regulation published in Official Journal of Europe.
- Chile’s Ministry for Economy approved Model Contractual Clauses for international data transfer.
- UK Members of Parliament raised concerns about Virtual Private Networks in recent debate on Online Safety Act.
- Latvian Data Protection Inspectorate published guidelines on data processing of officials.
Americas
- The Governor of New York signed the Responsible AI Safety and Education Act governing training and use of AI frontier models.
- Age-appropriate design code act introduced in the Michigan House of Representatives.
- Attorney General of Texas filed lawsuit against five major TV Companies for personal data collection using Automated Content Recognition Technology.
- Canada’s Office of Privacy Commissioner launched a public consultation on its processes for issuing regulatory guidance.
APAC
- South Korea’s Personal Information Protection Commission released its strategic work plan for 2026.
- Australian government introduced National AI Plan aimed to promote innovation and ensure safety.
- New Zealand’s Office of the Privacy Commissioner marked the fifth anniversary of the Privacy Act.
- The Philippines’ National Privacy Commission appointed new Privacy Commissioner.
