Rather than waiting for AI-specific legislation, plaintiffs are trying to fit AI-related conduct into existing statutes, many containing statutory damages provisions. As a result, companies training, deploying, and monetizing AI systems are facing a heightened...

How did it come to this? Last year you got a new cookie consent management platform (CMP), and you worked with your web team to implement it. You even took a conservative approach and tried...

In a previous blog, we discussed the UK Information Commissioner’s Office (“ICO”) prioritizing online advertising and cookie banner compliance. Following consultations last Autumn, the ICO finalized its Guidance on the Use of Storage and Access...

On 15 April 2026, European Commission President Ursula von der Leyen and Executive Vice-President Henna Virkkunen announced that the EU’s long-anticipated age-verification app is now “technically ready”. Positioned as a “gold standard” to protect minors...

The UK has taken another step in moving online safety compliance beyond content moderation into formal law enforcement reporting. Since 7 April 2026, regulated user-to-user (‘U2U’) services covered by the UK’s Online Safety Act (‘OSA’)...

Many businesses have opted to deploy website cookie banners in response to the barrage of litigation under the California Invasion of Privacy Act (“CIPA”). That same mitigation measure, however, is increasingly the target of a...