Much of the attention on the European Commission’s recent proposal for a Cloud and AI Development Act (“CADA Proposal”) has focused on its proposed cloud sovereignty framework, the implications for cloud service providers and public sector cloud use, and the mechanisms intended to encourage data centre development in the EU (we discuss those aspects of…

On 3 June 2026, the European Commission (“Commission”) published its proposal for a Regulation establishing a framework of measures for strengthening Europe’s cloud and AI ecosystem—the Cloud and AI Development Act (“CADA Proposal”). The CADA Proposal sits at the heart of the Commission’s broader Tech Sovereignty Package (which we describe at a high level here…

On May 28, 2026, the European Union Agency for Cybersecurity (“ENISA”) published the third edition of its NIS360 report, an annual benchmarking tool that assesses the cybersecurity maturity of entities in the sectors set out in Annex I of the NIS2 Directive (which includes certain entities in the energy, transport, healthcare, digital infrastructure, and…

In an 8-1 ruling, the U.S. Supreme Court upheld the FCC’s authority to issue forfeiture penalties against telecommunications companies found in violation of the agency’s Customer Proprietary Network Information (“CPNI”) rules. The impact of this ruling is that the FCC may continue to enforce its rules through forfeiture orders, but that such orders do not…

On 19 May 2026, the European Commission published its long-awaited draft, non-binding guidelines on the classification of high-risk AI systems (“HRAIs”) under the EU AI Act (the “Guidelines”). Across three documents—covering general principles, high-risk classification in the context of regulated products (Annex I), and high-risk use cases (Annex III)—the Commission sets out its approach to…

Last month, the Illinois Department of Human Rights (“IDHR”) released draft regulations addressing employers’ use of AI in employment decisions and invited public comment. The IDHR will hold a hearing on the draft regulations on June 10, and the public comment period will close on June 29.

Background

HB 3773 (the “Amendment”), which amended…

In a new post on Inside Privacy, our colleagues discuss the White House’s issuance of an executive order titled “Promoting Advanced Artificial Intelligence Innovation and Security.” The order reflects the Administration’s policy of advancing U.S. leadership in AI while addressing national security risks, including through measures to strengthen government and private-sector cybersecurity…