EU

Legal Impact on Cybersecurity in 2025: New Developments and Challenges in the EU

By / Blog / , , ,

2025 is pivotal for EU cybersecurity, with new regulations like NIS2 and DORA enhancing digital resilience. These laws require stricter compliance from businesses, including improved risk management, incident reporting, and telecom security. The eIDAS2 regulation aims to bolster digital identity trust, while the National 5G Scheme mandates security for critical elements. Compliance will enhance competitiveness, necessitating budget awareness and proactive governance amid rising cyber threats.

https://www.csoonline.com/article/3853199/legal-impact-on-cybersecurity-in-2025-new-developments-and-challenges-in-the-eu.html

2024 EU AI Act: a Detailed Analysis

By / Blog / , ,

2024 EU AI Act Overview:
The EU AI Act, effective from August 1, 2024, regulates AI development and use in the EU, ensuring safety, fundamental rights protection, and innovation promotion while avoiding market fragmentation. It covers various sectors, mandates AI literacy, and a risk-based framework. Certain AI practices deemed harmful are prohibited (e.g., manipulative techniques, social scoring). High-risk AI systems face stringent rules, while general-purpose AI models must meet specific criteria and inform authorities of risks. Compliance involves transparency and ethical guidelines, with penalties for violations reaching EUR 35 million or 7% of global turnover. The Act aims for a trustworthy, human-centric AI ecosystem.

https://cms-lawnow.com/en/ealerts/2025/03/2024-eu-ai-act-a-detailed-analysis

Dun & Bradstreet: a Pyrrhic Victory for the Contestation of AI Under the GDPR — AI Summer School

By / Blog / , ,

CJEU ruling on Dun & Bradstreet clarifies GDPR's ‘right to an explanation,' balancing understandability with trade secrets. The court restricts detailed disclosures, potentially limiting individuals' ability to contest AI decisions, resulting in a ‘pyrrhic victory.' While explanations must be clear, they may not substantively empower individuals against problematic AI, and data controllers could misuse disclosure processes to evade accountability. Thus, the practice of contestation faces challenges despite the ruling's intent.

https://www.law.kuleuven.be/ai-summer-school/blogpost/Blogposts/dun-bradstreet-a-pyrrhic-victory-for-the-contestation-of-ai-under-the-gdpr

EU Lawmakers Warn Against Weakening AI Regulations

By / Blog / , ,

EU lawmakers oppose weakening AI regulations to prevent exemptions for U.S. tech giants. Proposed changes could jeopardize compliance ensuring AI safety, transparency, and electoral integrity, raising concerns about risks like election manipulation and discrimination. Discussions ongoing on balancing enforcement and voluntary compliance amid U.S. lobbying, while EU aims to maintain a robust regulatory framework.

https://www.pymnts.com/cpi-posts/eu-lawmakers-warn-against-weakening-ai-regulations/

The EU AI Act Is Here. Are You Prepared for It?

By / Blog / , ,

EU AI Act introduced; companies must prepare for compliance to avoid risks and enhance efficiency. Clear rules established for data and AI usage, impacting various industries, particularly automotive. Implementation begins February 2025, necessitating inter-departmental collaboration and robust compliance strategies. Effective organization and training are vital, and digital responsibility can offer competitive advantages.

https://www.cio.com/article/3852605/the-eu-ai-act-is-here-are-you-prepared-for-it.html

The Importance of Cyber Security Compliance

By / Blog / , ,

EU cyber security laws, including NIS2, CRA, CER, DORA, GDPR, and AI Act, mandate compliance for organizations, emphasizing risk management, product safety, and digital resilience. Companies must adapt processes and ensure effective documentation to meet regulatory requirements. Legal advice is vital amid increasing complexity in legislation.

https://www.taylorwessing.com/en/global-data-hub/2025/digital-resilience-and-cyber-security/gdh—the-importance-of-cyber-security-compliance

How CIOs Can Prepare for EU AI Act Enforcement

By / Blog / , ,

CIOs must prepare for the EU AI Act enforcement by actively pursuing compliance, managing vendors, and adapting to ongoing requirements. Most businesses are currently unprepared, with compliance risks including significant fines. Experts suggest cataloging AI uses, forming compliance teams, and developing AI literacy initiatives. Collaboration among departments is crucial to effectively navigate compliance complexities, especially with vendor management, as features may complicate assessments. Continuous monitoring and adapting to regulatory changes are essential for maintaining compliance and preventing issues.

https://www.ciodive.com/news/european-union-ai-act-compliance-enterprise-tips-enforcement/743099/

European Accessibility Act Risks Becoming a Box-ticking Exercise

By / Blog / , ,

European Accessibility Act (EAA) compliance risk becoming mere box-ticking. Companies are opting for accessibility widgets for fast compliance, but these often create new accessibility issues and fail to address deeper problems. True accessibility requires foundational improvements in website design rather than superficial fixes. Developers should integrate accessibility from the start, ensuring ongoing testing and compliance as standards evolve.

https://thenextweb.com/news/european-accessibility-act-becoming-box-ticking-exercise

DIA Europe: Expert Says Risk Pyramid Can Determine Whether a Device Requires AI Act Conformity Assessment

By / Blog / , ,

Expert suggests using a risk pyramid to classify medical devices under the EU AI Act for conformity assessments. High-risk devices need assessments; low-risk items face transparency obligations, while minimal-risk devices are unregulated. Compliance involves documentation, labeling, and risk management. AI tools will advance diagnostics, exemplified by non-invasive tests like LiverMultiScan.

https://www.raps.org/news-and-articles/news-articles/2025/3/dia-europe-expert-says-risk-pyramid-can-determine

Scroll to Top