Tech Law & AI Regulation Curator

Key trends in proliferating state privacy obligations:

• California Delete Act requires data brokers to undergo independent third-party audits every...

• Meta installs software capturing employee mouse movements, keystrokes, screen snapshots for AI models, with limited safeguards.
• Atlassian mandates...

China has issued regulations authorizing extraterritorial jurisdiction over conduct with a sufficient nexus to the country, with broad implications for global tech compliance.

Regulators demand explainable AI, prompting firms to deploy SHAP plots, model cards, and responsible AI statements to merely check the box. True transparency must redefine the security perimeter.

OCC, Fed, FDIC issue updated model risk management guidance, rescinding prior version with non-enforceable principles.

Key aspects:

• Risk-based...

The Supreme Court seems wary of limiting federal regulators' authority after cellular companies appealed FCC findings that they sold customers'...

New paper provides courts and regulators a framework to separate protected software publication—treated as speech—from regulable professional conduct.

Privacy Enforcement Rulings

• 🔥 Luxembourg Revokes Amazon GDPR Fine: Luxembourg court revoked Amazon's €746M GDPR fine imposed in 2021 for online...

Children's privacy enforcement intensifies with ICO's action against Reddit:

• £14.47 million fine on Reddit for unlawfully processing children's...

• S.D.N.Y. Filing: Britannica and Merriam-Webster accuse OpenAI of massive copyright infringement by training ChatGPT on their content, cannibalizing...

U.S. regulatory proposal on surveillance and algorithmic pricing imposes civil penalties up to $12,500 for each violation, treating each as separate with respect to each affected party.

Key U-turn: Technology Secretary Liz Kendall confirms no preferred option for AI firms to use copyrighted works unless creators opt out, following...

California continues to drive national privacy and data governance standards, with 2026 proving active just three months in, amid focus on regulations, enforcement, and AI.

Employers must invest in robust cybersecurity and incident response protocols to prevent data breaches and position themselves favorably in potential litigation.

Key developments in the escalating AI-national security legal fight:

• Pentagon labeled Anthropic a supply-chain risk, barring defense contracts after...

Luxembourg court revokes Amazon's €746 million GDPR fine, imposed by CNPD in 2021 for online behavioral advertising practices involving users' personal data processing.

Italy's competition authority fined Apple €98 million ($115 million) Monday for allegedly abusing its dominant position tied to an app privacy...

The 'traffic-style' AI regulation is failing, with the 'rush to regulate' potentially causing more harm than good in addressing the current state of AI oversight.

• Mandatory labels on AI-generated content to shield consumers from disinformation and deepfakes.
• Balanced reforms: Protect creative industries,...

Escalating AI copyright risks: Encyclopedia Britannica and Merriam-Webster allege OpenAI used their content without permission to train ChatGPT,...