SERVICES
Data & Cybersecurity

Sectors

Services

The European Cybersecurity Reform – Expanded overview

May 2026 – We are pleased to share our updated and extended overview and critical analysis of the European cybersecurity reform, Cybersecurity Act 2.0 (CSA2), now including additional jurisdictions.

Upcoming changes to Romanian cookie consent framework

May 2026 – Romania is taking a significant step towards bringing its cookie consent rules into line with the standards established under the General Data Protection Regulation (GDPR) and the guidance of the European Data Protection Board (EDPB). A legislative...

The European Cybersecurity Reform

April 2026 – We are pleased to share our latest overview and critical analysis of the European cybersecurity reform, Cybersecurity Act 2.0 (CSA2).

Transparency back in the spotlight: Revisiting GDPR awareness

March 2026 – In an increasingly digital and complex data environment, the GDPR continues to play a central role for organisations, even eight years after taking effect. Transparency is once again in the spotlight, with data protection authorities and...

2026 Cybersecurity Countdown: New requirements are coming

March 2026 – The Cyber Resilience Act (Regulation EU 2024/2847 – CRA) entered into force on 10 December 2024 and introduces a comprehensive cybersecurity framework for products with digital elements placed on the EU market. The Regulation aims to...

Europe recalibrates: AI copyright and GDPR scope under pressure

March 2026 – Two parallel developments suggest that Europe is drawing clearer boundaries around both AI ownership and data protection. One comes from the Council and the other from a German court, and both signal a more cautious approach toward redefining...

The Czech Cybersecurity Authority calls upon entities to notify their regulated services

February 2026 – On Monday, 9 February 2026, the Czech National Cyber and Information Security Agency (“Czech Cybersecurity Authority”) issued and dispatched more than 4,800 administrative decisions designating providers of regulated services pursuant...

Europe’s AI rulebook is taking shape, but the technology is not waiting

February 2026 – Artificial intelligence is entering a decisive phase in Europe. Despite the EU’s ambitious AI Act framework, key guidance remains pending while enforcement scrutiny intensifies and AI adoption accelerates.

Bulgaria’s long road to NIS2 is over

February 2026 – Across most of the European Union, the NIS2 Directive has already become operational reality. Bulgaria’s path to transposition, however, has been materially delayed. The Cybersecurity Act amendments intended to implement the NIS2 Directive...

The year of digitalisation and AI in Kazakhstan: New regulations

February 2026 – On 6 January 2026, the President of the Republic of Kazakhstan signed a Decree declaring 2026 the Year of Digitalization and Artificial Intelligence. At present, the legislative framework in this area is actively being developed. For...