EU Member States had until today, October 17, 2024, to transpose the Network and Information Security (NIS) 2 Directive into their national laws. As Directives are not directly applicable in EU Member States, the EU legislator required all 27 Member … [Read more] about Green Light for the Enforcement of NIS 2 in Limited EU Countries Only
On October 7, 2024, the European Data Protection Board (“EDPB”) adopted an opinion on obligations following from the use of processors and sub-processors (the “Opinion”). The EDPB is the body that seeks to ensure harmonised application of the EU GDPR … [Read more] about EDPB Adopts Opinion on the Use of Processors and Sub-processors
On October 1, 2024, the Department of Justice (“DOJ”) unsealed an indictment against Aleksandr Viktorovich Ryzhenkov (Александр Викторович Рыженков), a member of the ransomware group Evil Corp. The indictment charges Ryzhenkov with several … [Read more] about DOJ Unseals Indictment of Evil Corp Member, While OFAC Announces New Evil Corp Sanctions
On 19 September 2024, the Belgian Data Protection Authority (DPA) issued new Guidance on the interplay between the recently adopted EU Regulation on Artificial Intelligence (the AI Act) and the General Data Protection Regulation (the GDPR), which … [Read more] about Belgian Data Protection Authority Publishes Guidance on the Interplay between the GDPR and the AI Act
On August 21, 2024, the National Institution of Standards and Technology (“NIST”) released the second draft of its Digital Identity Guidelines, which provides federal agencies with a framework for identity proofing and authentication of external … [Read more] about NIST Releases Updated Draft Guidelines regarding AI Use in Identity Systems