EU plans to ease AI compliance for startups amid regulatory burdens. The Commission seeks feedback to simplify AI Act application following business complaints about red tape.
https://www.reuters.com/world/europe/europe-wants-lighten-ai-compliance-burden-startups-2025-04-08/
CIOs must assess current data practices to improve data strategies aligned with AI goals. Despite a heightened focus, many organizations still lack adequate data management for AI. Experts recommend identifying gaps and engaging leadership to create a strategic path forward. Key issues include ensuring data quality, diversity, and lineage to avoid bias and support effective AI outcomes. Implementing good practices and considering AI's role in data management can help organizations build a robust data foundation essential for AI success.
https://www.ciodive.com/news/AI-ready-data-strategy-CIO-approach-tips/744513/
EU's Community of Practice on AI has released updated non-binding Model Contractual Clauses (MCC-AI) for public procurement of AI systems. Two templates address “high-risk” and “non-high-risk” AI systems, aligned with the EU AI Act. This guidance aims to assist public organizations but may also benefit private companies. Stakeholders are encouraged to report their use of MCC-AI, enhancing AI procurement practices in the public sector.
EU AI Office's third draft of the General-Purpose AI Code of Practice outlines commitments for GPAI model providers regarding copyright compliance under the AI Act, effective August 2025. Key obligations include adhering to training data copyright laws, respecting opt-out requests from content creators, and limiting web crawling practices. The streamlined draft emphasizes transparency and governance measures, with a focus on mitigating copyright infringement risks. Differences in US and EU copyright practices, such as the lack of a “fair use” doctrine, are noted, highlighting the complexities of navigating AI copyright law in Europe. Finalization expected May 2025.
AILD: EU legislation on AI accountability; establishes liability rules for AI-related damages; aims to ensure safety and trust in AI technologies while fostering innovation.
EU's push for AI competitiveness led to withdrawal of AI Liability Directive (AILD), raising concerns about accountability in AI-related harms. Big Tech benefits from this retreat, avoiding liability for potential damages. Effective oversight becomes challenging due to AI's ‘black-box' nature, risking consumer protection. A call for reassessment of AI regulation instead of deregulation is essential for safeguarding citizens against harmful practices.
AI can enhance Third-Party Risk Management (TPRM) by automating security questionnaires, enabling continuous monitoring, and providing real-time risk assessments.
Discussed during a CISO Series episode, experts highlighted the importance of integrating AI to better understand and manage cumulative risks from vendors, moving away from traditional checkbox exercises. Agile risk assessments, predictive analytics, and marrying threat intelligence with compliance data were seen as critical advancements. Concerns about false positives and accountability remain, emphasizing that while AI augments decision-making, it should not supplant human oversight.
https://cisoseries.com/can-ai-improve-third-party-risk-management-tprm/
Zencoder introduced ‘Coffee Mode', allowing AI to autonomously write unit tests, aiming to enhance coding efficiency without switching development environments. Their AI agents outperform competitors on coding benchmarks due to a unique “Repo Grokking” technology. Zencoder emphasizes that AI tools require skilled developers and aims for secure, production-ready code generation. Their pricing includes a free basic version and tiers for enhanced features.
Swiss life sciences companies must prepare for EU Data, Cybersecurity, and AI regulations, particularly the Data Act, NIS2 Directive, and AI Act. Key points include ensuring user data access, implementing cybersecurity measures, registering for NIS2 by April 2025, and compliance with high-risk AI system regulations. Although these laws are EU directives, they affect Swiss companies operating within the EU. Compliance is critical to avoid fines and maintain market access and customer trust.
Sovereign AI is a growing global trend where nations seek control over their own AI technologies to align with national values, enhance security, ensure economic competitiveness, and address privacy concerns. Advantages include leveraging local data and infrastructure, yet they also face challenges regarding indigenized capabilities and the implications of governance methods. Sovereign AI initiatives are defined by legal adherence, economic benefits, national security safeguards, and alignment with cultural values, reflecting the evolving nature of sovereignty in a digital age.
