Denmark’s data protection authority, Datatilsynet, has released its 2024 annual report, spotlighting a year defined by record case volumes, deepened international collaboration, and a proactive push into fast-evolving areas like artificial intelligence and children’s online safety.
The UK’s Financial Reporting Council (FRC) has recently published its first formal guidance on how artificial intelligence should be used, and documented, in audit. The guidance, released today, doesn’t lay down the law. Instead, it offers something arguably more valuable, clarity.
The EU Agency for Cybersecurity (ENISA) has issued its first technical guidance to help digital infrastructure and managed service providers implement the cybersecurity measures required under the EU’s new NIS2 Implementing Regulation. The non-binding guidance aims to make compliance with the NIS2 Directive’s technical and methodological requirements more practical, consistent, and achievable for companies operating in critical sectors across the EU.
The UK government has published exposure drafts of its proposed UK Sustainability Reporting Standards (UK SRS), marking a significant move toward aligning with the global baseline for sustainability disclosures developed by the IFRS Foundation’s International Sustainability Standards Board (ISSB).
In a parting shot that sounds more like a call to arms than a quiet policy recommendation, Australia’s competition watchdog has officially closed its five-year deep dive into digital platform services, and without regulatory reform, consumers and small businesses will keep getting steamrolled.
A federal judge has given the green light to a proposed $177 million settlement in a consolidated class action lawsuit against AT&T, stemming from two massive data breaches that exposed the personal information of tens of millions of customers. The preliminary approval, issued by Judge Ada Brown of the U.S. District Court for the Northern District of Texas, clears the way for a final settlement hearing set for December 3, 2025.
When the General Data Protection Regulation (GDPR) first came into force, companies braced for a regulatory storm, such as sweeping data rules, compliance headaches, and steep fines. What many didn’t expect? A surprising upside of fewer cyberattacks, better security, and billions saved.