Latest Developments in EU, UK, Americas, and APAC Data Laws

EU & UK

European Parliament published a study analysing the interplay between the AI Act and the EU digital legislative frameworks.
EDPS published guidance on generative AI, to strengthen data protection within EU institutions.
UK ICO fined a sole trader GBP 200,000 for sending nearly one million unsolicited marketing texts.
The European Commission will establish the Digital commons EDIC, to jointly develop and operate sovereign cross-border digital infrastructures.
NOYB files a criminal complaint against Clearview AI.
Norway’s Datatilsynet released a note on the handling of pseudonymized data following the CJEU judgement.
Apple may disable its ‘App Tracking Transparency’ feature in the EU.
EC found TikTok and Meta in violation of the Digital Services Act’s transparency requirements.
Dutch Data Protection Authority published new guidelines to promote AI literacy.
AZOP, Croatia’s data protection authority issued FAQs regarding the EU AI Act.

California’s AG reached a USD 530,000 settlement with Sling TV for violations of the CCPA.
EPIC published a report summarizing five years of State Attorneys General privacy enforcement actions (2020–2024).
Colombia data authority SIC publishes draft Model Contractual Clauses for international data transfers.
Florida AG issued a criminal subpoena to Roblox in an effort to protect children online.
A new bill titled the AI–WISE Act was introduced in the U.S. House of Representatives.
SIC fined Columbia Telecommunications COP 670 million for unlawful data processing.
California Department of Justice announced plans to solicit public comments on the Protecting Kids from Social Media Addiction Act.
U.S. Senators introduced a bipartisan bill to safeguard children from AI chatbots.
Colombia’s House Committee approved a combined bill to amend the national data protection law.

Singapore’s Cyber Security Agency opened a public consultation on an addendum to AI security guidelines.
China’s Ministry of Industry and Information Technology published app notifications for violations of user rights.
The Australian government launched a consultation on the use of copyright material in AI systems.
China’s Cyberspace Administration and State Administration for Market Regulation issued new measures for authenticating personal information exported abroad.
Hong Kong’s Privacy Commissioner released guidance on CCTV, drones, and in-vehicle camera usage.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__utma	2 years	This cookie is set by Google Analytics and is used to distinguish users and sessions. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmb	30 minutes	The cookie is set by Google Analytics. The cookie is used to determine new sessions/visits. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmc	session	The cookie is set by Google Analytics and is deleted when the user closes the browser. The cookie is not used by ga.js. The cookie is used to enable interoperability with urchin.js which is an older version of Google analytics and used in conjunction with the __utmb cookie to determine new sessions/visits.
__utmt	10 minutes	The cookie is set by Google Analytics and is used to throttle request rate.
__utmz	6 months	This cookie is set by Google analytics and is used to store the traffic source or campaign through which the visitor reached your site.

Cookie	Duration	Description
CONSENT	16 years 5 months 10 days 17 hours	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Cookie	Duration	Description
yt-remote-connected-devices	never	No description available.
yt-remote-device-id	never	No description available.