In March 2024, Singapore’s Personal Data Protection Commission (PDPC) issued advisory guidelines regarding how regulators will apply the country’s Personal Data Protection Act (PDPA) to children’s personal data in the digital environment.  The non-binding guidelines give clear...

Enacted in 2022 and already partially in effect, the European Union’s (EU) Digital Services Act (“DSA”) will come fully into force on February 17, expanding the obligations of a broad range of online service providers doing business in...

The United Kingdom’s Department of Science, Innovation & Technology (DSIT) released the Cyber Governance Code of Practice (the “Code”) with a goal to formalize business sector cyber governance across the UK. The Code aims to provide...

The EU has once again beaten the rest of the world to the regulatory punch, this time on artificial intelligence. After six months of negotiations, the European Commission, the European Council, and the European Parliament have...

The UK’s Information Commissioner’s Office (ICO) recently released guidance discussing the privacy implications of workplace monitoring. The guidance largely mirrors the EU’s approach to monitoring, but provides some useful context on remote monitoring and worker...

On Monday, July 17, 2023, the Department of Commerce launched a new website at https://www.dataprivacyframework.gov/s/ (“DPF Website”) providing more information about the new Data Privacy Framework covering EU, Swiss, and UK data transfers to the United States...