The UK Government today announced that it intends to ban social media platforms from offering services to children under 16, alongside wider restrictions on certain online functionalities that the Government has identified as harmful to children.
The announcement follows the conclusion of the Department for Science, Innovation and Technology’s (“DSIT”) consultation, “Growing up in…
Much of the attention on the European Commission’s recent proposal for a Cloud and AI Development Act (“CADA Proposal”) has focused on its proposed cloud sovereignty framework, the implications for cloud service providers and public sector cloud use, and the mechanisms intended to encourage data centre development in the EU (we discuss those aspects of…
On 3 June 2026, the European Commission (“Commission”) published its proposal for a Regulation establishing a framework of measures for strengthening Europe’s cloud and AI ecosystem—the Cloud and AI Development Act (“CADA Proposal”). The CADA Proposal sits at the heart of the Commission’s broader Tech Sovereignty Package (which we describe at a high level here…
On May 28, 2026, the European Union Agency for Cybersecurity (“ENISA”) published the third edition of its NIS360 report, an annual benchmarking tool that assesses the cybersecurity maturity of entities in the sectors set out in Annex I of the NIS2 Directive (which includes certain entities in the energy, transport, healthcare, digital infrastructure, and…
In an 8-1 ruling, the U.S. Supreme Court upheld the FCC’s authority to issue forfeiture penalties against telecommunications companies found in violation of the agency’s Customer Proprietary Network Information (“CPNI”) rules. The impact of this ruling is that the FCC may continue to enforce its rules through forfeiture orders, but that such orders do not…
On 19 May 2026, the European Commission published its long-awaited draft, non-binding guidelines on the classification of high-risk AI systems (“HRAIs”) under the EU AI Act (the “Guidelines”). Across three documents—covering general principles, high-risk classification in the context of regulated products (Annex I), and high-risk use cases (Annex III)—the Commission sets out its approach to…
California’s new autonomous vehicle regulations create the state’s first pathway for testing and deploying heavy-duty AVs while imposing a more rigorous permitting, safety-case, reporting, and enforcement framework for all AV manufacturers.
Finalized by the California Department of Motor Vehicles (the DMV) on April 28, 2026, the regulations (the Regulations) introduce significant new safety and oversight…
On 27 May 2026, the European Commission (“Commission”) published its proposal for a Regulation on the authorisation of systems providing mobile satellite services (“MSSs”) in the harmonised 2 GHz frequency band (1980–2010 MHz and 2170–2200 MHz) (the “MSS Regulation Proposal”). The existing rights of use in the band are due to expire in May 2027,…
On May 1, the Connecticut legislature passed an artificial intelligence (“AI”) safety, transparency, and consumer protection bill (“SB 5”). While the Colorado legislature takes steps to streamline existing requirements for developers and deployers of AI systems, Connecticut has passed a multi-part framework that will impose requirements on large frontier developers, operators of AI companions, developers…
On May 8, 2026, the European Commission (“Commission”) published draft guidelines (“Guidelines”) on the implementation of the transparency obligations under Article 50 of the EU Artificial Intelligence Act (“AI Act”), opening a targeted consultation that runs until June 3, 2026.
The Guidelines are non-binding, but they are the first Commission instrument to provide interpretive guidance…
