On January 28, 2026, California Attorney General (“AG”) Rob Bonta announced an investigative sweep targeting “surveillance pricing” practices among businesses in the retail, grocery, and hotel sectors. The investigation focuses on companies that use … [Read more] about California Attorney General Announces Investigative Sweep into “Surveillance Pricing”
On December 3, 2025, the European Commission published its first set of technical FAQs on the EU Cyber Resilience Act (‘CRA’). The CRA is an EU-wide law which lays down cybersecurity requirements for ‘products with digital elements’ (‘PDEs’), … [Read more] about European Commission Publishes Guidance For Companies Implementing the EU Cyber Resilience Act
On December 19, 2025, just eight days after President Trump issued an executive order titled “Ensuring a National Policy Framework for Artificial Intelligence” to challenge burdensome state laws that regulate artificial intelligence (the “December … [Read more] about New York Regulates Large Artificial Intelligence Models
As 2025 drew to a close, the United States Department of Justice (DOJ) announced significant developments in cases relating to the allegedly deficient cybersecurity practices of two Department of Defense (DoD) contractors. These two cases suggest … [Read more] about DOJ Cybersecurity Enforcement Pace Shows No Signs of Slowing Down Going Into 2026
Earlier this month, the Spanish Data Protection Authority (Agencia Española de Protección de Datos, or AEPD) issued new guidance on the privacy and data protection risks associated with uploading images or photos - whether directly or indirectly … [Read more] about Spanish DPA Highlights Privacy Risks in GenAI Content Creation