regulation

EU's Digital Omnibus proposes reforms to modernize regulations such as the GDPR, NIS2, Data Act, and AI Act. Key changes include redefining personal data, expanding lawful processing bases for AI, refining data subject access rules, and altering cookie consent requirements. It aims to simplify reporting in cybersecurity and adjust deadlines for high-risk AI obligations. The legislative process may modify these proposals.

https://www.hoganlovells.com/en/publications/top-10-proposed-changes-in-the-eus-digital-omnibus

TLDR: The European Commission proposed significant reforms to the GDPR and AI Act to simplify digital regulations due to the rapid growth of AI and competitiveness concerns. Key changes include allowing organizations to process personal data for AI with legitimate interests, streamlining cookie consent, establishing a single breach notification portal, and extending compliance timelines for high-risk AI regulations. Proposed amendments aim to balance economic growth while maintaining privacy rights, but they face mixed reactions, with concerns about reducing protections for users. The reforms will undergo negotiations in the European Parliament and may take several months to finalize.

https://iapp.org/news/a/european-commission-proposes-significant-reforms-to-gdpr-ai-act

Europe is reducing protections in its privacy and AI laws due to pressure from Big Tech and the US government. The EU plans to simplify GDPR regulations, moderate AI rules, and make it easier for companies to use personal data for AI training, aiming to foster innovation and economic growth. This includes reducing cookie pop-ups and centralizing AI oversight while facing criticism for potentially weakening user safeguards. The proposal will undergo scrutiny in the European Parliament and among member states, likely leading to significant debate and modification.

https://www.theverge.com/news/823750/european-union-ai-act-gdpr-changes