The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. In this article we cover the applicability of NIS2 to digital infrastructure providers and digital services providers (collectively “digital providers”), an expansion in scope under NIS2 that represents a major shift for the EU’s digital sector ...
November 15, 2024 By: Artin Betpera, Christina Morgan and David Liu I. Introduction Any business operating a website needs to be aware of the proliferation of lawsuits targeting websites which use any type of customer tracking technology. While advantageous to the business in its marketing efforts, the data collection subjects the business to potential liability ...
The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. Given that cloud-based architecture is now considered the industry-norm, data centres have become the custodians of the vast majority of our digital economy and form a core aspect of any critical infrastructure or service ...
Chapter 647 of the Laws of Malta, titled the Markets In Crypto-Assets Act (hereinafter referred to as “Chapter 647”), integrates all aspects of Regulation (EU) 2023/1114 of the European Parliament and Council on markets in crypto-assets (“MiCAR”) ...
On October 11, 2024, the United States Department of Defense (DOD) published a final rule implementing its Cybersecurity Maturity Model Certification (CMMC) program, which is designed to verify that defense contractors are adequately protecting sensitive information from cybersecurity threats. The CMMC applies to contractors who process, store, or transmit Controlled Unclassified Information (CUI) or Federal Contract Information (FCI), which is most DOD contractors ...
The Krogerus Data Symposium 2024 brought together hundreds of data and AI experts on 23 October at Lasipalatsi to discuss the upcoming changes brought by the Data Act and the AI Act. This year, the programme highlighted both the practical challenges and opportunities that technological advancements and the EU legislator's responses to them will present to companies' operations ...
1. Introduction We are not only living in a digital age but also in an age where individuals and businesses increasingly depend on banks for their day-to-day activities. The convergence of these two factors is compounded with the increased use of artificial intelligence (AI) both generally and specifically in the banking sector. From a general perspective, AI start-ups in 2013 received USD 2 bn in investments globally which increased twelvefold in 2018 to USD 24 bn [1] ...
Integrating AI tools at work is not without danger. Three experts from the independent Belgian law firm, ALTIUS, explain how companies should best guard against ethical risks, data protection, intellectual property rights, and trade secrets. “It is essential that organisations teach their people to work with AI safely and responsibly ...
The Product Regulation and Metrology Bill (the “Bill”) was published on 4 September 2024 and will provide the Secretary of State with wide regulation making powers to replace, amend or update product safety legislation in the UK. Why is the Bill needed? The Department for Business and Trade’s impact assessment of the Bill stated that the “UK lacks powers to end recognition or to recognise new and updated EU regulations in GB” ...
The gaming industry, which has transformed from a niche market to a global powerhouse, has seen a significant surge in venture capital (VC) investment over the past few years. This trend is driven by the rapid growth of the gaming market, advancements in technology, and the increasing societal acceptance of gaming as a mainstream form of entertainment. Here’s a closer look at the emerging trends and key players in VC investment within the gaming sector ...
The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe. The major changes brought about by NIS2 include stricter security measures, new incident reporting obligations and will substantially expand enforcement powers for regulators ...
How far can employers search for personal data to answer an access request? Can they check personal mobiles or laptops - or personal emails on a work device? Here we look at invading staff privacy to respect someone else's data protection rights. In this series we have already looked at taking control of data subject access requests (DSARs) through data protection by design, and understanding when you can refuse to comply with a DSAR ...
On November 1, 2024, the Ministry of Commerce of the PRC ("MOFCOM") and five other administrative authorities issued revisions to theMeasures for the Administration of Strategic Investment in Listed Companies by Foreign Investors(the "Measures"), which make significant changes to the original version promulgated in 2005 ...
Recently, the National Medical Products Administration (the "NMPA") issued the "Pilot Work Plan for the Segmented Production of Biological Products" (the "Pilot Plan"), introducing a pilot initiative for the segmented production of biological products. This represents a breakthrough in the regulation of segmented production, a long-awaited achievement in the biopharmaceutical industry ...
This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Investment legislation can be split into two broad categories: investment funds and investment services. The former principally relates to UCITS, AIFMD and local laws which regulate asset management and their service providers. The latter relates to regulating financial instruments and the investment markets thereof ...
Deadline for transposing NIS2 into national law in the EU and adoption of new implementing regulation On October 17 2024 – the same day as the deadline for transposing the NIS2 Directive into the national law of the EU Member States – the European Commission has adopted an Implementing Regulation to the NIS2 Directive regarding cybersecurity risk management and notification obligations for digital infrastructure and digital service providers ...
The new Network and Information Systems Directive (NIS2) came into effect on 18 October 2024 and with it comes an overhaul of the way in which cybersecurity risk management is regulated in Europe ...
This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Introduction The first article (see link below) in this EU AI Act series provided, inter alia, a breakdown of the scope, applicability, timeline and risk levels of the AI Act, Regulation (EU) 2024/1689 [1] (hereinafter referred to as the “Act”) ...
We are pleased to present the very first edition of our Trade and Taxation Newsletter. Each month, we will share important updates, key developments, and practical insights on trade and taxation, all tailored to help you stay ahead in an ever-changing regulatory environment ...
Stress and burnout at work is becoming an increasingly spoken about topic, particularly in high pressure roles and sectors such as cyber security professionals within the tech sector. How can employers help to prevent their employees from experiencing it? What is stress and burnout? There is no doubt that employee stress levels have risen as the demands of the workplace have increased ...
Data subject access requests can be a compliance headache for businesses. The first of our series on DSARs looked at how data protection “by design” can make the job easier. But what about deciding whether or not to resist a DSAR when it actually lands? Dealing with data subject rights requests, or DSARs, is one of the biggest compliance headaches for many businesses ...
This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Artificial Intelligence (AI) has revolutionized various industries, garnering considerable hype and widespread discussion. As AI technologies continue to evolve, their integration into various industries has profound implications, particularly for the labour market ...
October 7, 2024 By: Alexandra Shulman and Leah Lively AI in hiring: About 80% of U.S. and almost all Fortune 500 companies use AI-powered hiring software. AI may be used to target online advertising for job opportunities and to match candidates to jobs on employment platforms (e.g., LinkedIn, Indeed). AI may also be used to reject or rank applicants using automated resume screening and chatbots based on knockout questions, keyword requirements, or specific qualifications or characteristics ...
In September 2024, the U.S. Department of Labor (the “DOL”) released Compliance Assistance Release No. 2024-01 and its updated cybersecurity guidance for employers that sponsor employee benefit plans governed by the Employee Retirement Income Security Act of 1974, as amended (“ERISA”) ...
PROOF OF INCAPACITY: ANALYSIS OF CIUSSS DE L?OUEST-DE-L?LE-DE-MONTREAL (ST. MARY?S HOSPITAL CENTER) v. RC 1 Summary The authors comment on this decision rendered on September 20, 2024, in which the Court of Appeal ruled on the capacity to consent to care in the presence of a psychiatric disorder ...