Issue 300

APAC

The Supreme Court of India cautioned a major social media platform against using citizens’ private information for targeted advertising.

South Korean Personal Information Protection Commission announced the results of its 2025 evaluation of personal information processing policies.

China’s CAC introduced new regulations classifying online information that may affect minors.

Personal Data Protection Commission of Taiwan published draft measures on maintaining security of personal data files.

Singapore’s Infocomm Media Development Authority released model framework for governance of agentic AI.

AI Regulation Law establishing liability for processing of personal data using AI came into force in Uzbekistan.

EMEA

European Union and Brazil adopted mutual adequacy decisions, creating largest area of secure data flow.

The UK Information Commissioner’s Office fined two companies a combined GBP 225,000 for sending unsolicited marketing communications.

France’s CNIL issued final recommendations on collecting user consent across multiple devices.

European Data Protection Board established cooperation procedure for authorization of contractual clauses and adoption of Standard Contractual Clauses under GDPR.

Spanish Data Protection Agency reported receipt of more than 2,700 notifications of personal data breach in 2025.

Monaco’s Personal Data Protection Authority issued opinion on draft law relating to confidentiality in medical, medico-social or social context.

European Commission launched investigation into AI assistant and social media company’s recommender system under Digital Services Act.

Liechtenstein’s Data Protection Office released guidance regarding handling of personal data during due diligence in company sale.

CNIL launched a consultation on proof of consent in marketing sector.

EU Commission initiated proceedings to help technology company comply with Digital Markets Act obligations on interoperability and online search data sharing.

Americas

California’s Attorney General issued a cease-and-desist letter to AI company to stop creation and distribution of deepfake, inappropriate images and child sexual abuse material.

New Jersey Senate introduced bills on privacy protection of consumer health data and processing of personally identifiable information.

Electronic Privacy Information Centre developed people-first model chatbot bill, addressing key data privacy violations.

Brazil’s Data Protection Agency, Federal Prosecution Office and Consumer Secretariat issued joint recommendations to social media company to stop inappropriate AI content.

Social Media Regulation Act passed by South Carolina General Assembly.

US Department of Justice’s lawsuit seeking data of California voters dismissed by the Federal Court.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Cookie	Duration	Description
__utma	2 years	This cookie is set by Google Analytics and is used to distinguish users and sessions. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmb	30 minutes	The cookie is set by Google Analytics. The cookie is used to determine new sessions/visits. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmc	session	The cookie is set by Google Analytics and is deleted when the user closes the browser. The cookie is not used by ga.js. The cookie is used to enable interoperability with urchin.js which is an older version of Google analytics and used in conjunction with the __utmb cookie to determine new sessions/visits.
__utmt	10 minutes	The cookie is set by Google Analytics and is used to throttle request rate.
__utmz	6 months	This cookie is set by Google analytics and is used to store the traffic source or campaign through which the visitor reached your site.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
CONSENT	16 years 5 months 10 days 17 hours	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Cookie	Duration	Description
yt-remote-connected-devices	never	No description available.
yt-remote-device-id	never	No description available.