The UK’s Data Use Access Act 2025 – Why It Matters for Your Business
The Data (Use and Access) Act (DUAA) received Royal Assent on June 19, 2025. The DUAA reforms how the United Kingdom (UK) manages non-personal
Second Implementation Deadline for GPAI Models under the EU AI Act
The EU AI Act, which entered into force in August 2024, is introducing step-by-step new requirements for providers and operators of AI
Webinar: Corporate Data Protection – Complexity to Confidence
Corporate data protection is complex. Between documenting data flows, managing intra-group transfers, and implementing TOMs, companies often lack a clear and practical
Data Protection Audits in Online Tracking: Berlin Authority also active
Not only the data protection authorities in Hamburg and the United Kingdom (UK ICO), but also the Berlin data protection authority regularly
Berlin DPO: On-site inspection of an online data broker
In its 2024 activity report, the Berlin Commissioner for Data Protection and Freedom of Information wrote about an on-site inspection of a Berlin-based
EU Commission clarifies ‘AI competence’ requirements for European businesses
On 12 May, the EU Commission published a question and answer catalogue (FAQ) on the practical implementation of article 4 of the new EU
Bremen administrative court on door-to-door marketing to former customers – Ruling has only limited transferability to telephone and email advertising
In its judgment of 23 April 2025 (case no. 4 K 2873/23), the Bremen administrative court ruled that an energy supplier may continue to
Data Clean Rooms – Privacy-Enhancing Collaboration Instead of Data Deserts?
The demand for more data remains unbroken—in marketing, finance, as well as in research. At the same time, businesses and institutions face regulatory pressure to protect personal
Insufficient data protection checks at service providers: BfDI imposes €45 million fine on Vodafone
The Federal Commissioner for Data Protection has imposed fines totalling €45 million on Vodafone GmbH. The reasons for this were inadequate controls
Data protection violation: €5 million fine for AI chatbot Replika
The Italian data protection authority has imposed a fine of €5 million on the US company Luka, Inc., operator of the AI-based chatbot ‘Replika’,