The Privacy Insider Podcast Episode 21: What Businesses Get Wrong About Regulators and How to Fix Privacy Fast
E13: GDPR Wedding Day & Beyond
Mobile App Series: Privacy by Design
AI adoption across industries is entering a new chapter. As generative AI becomes embedded in business operations, a more powerful and more complex wave is emerging: agentic AI. These systems do not merely assist with...more
On April 15, 2026, European Commission President Ursula von der Leyen and Executive Vice-President Henna Virkkunen issued a statement (the Statement) announcing that the European Commission has developed a digital age...more
Many US states have attempted to enact laws similar to the UK’s Age-Appropriate Design Code. Nebraska is among them, and is set to take effect -unless challenged- on July 17, 2026. The law was initially passed in May 2025,...more
Fashion, beauty, and wearable technology brands are heading into 2026 with a lot more to think about concerning data privacy. What used to feel like a back-end legal issue is now shaping how companies design products,...more
Guidelines published by Spain’s data protection authority (Agencia Española de Protección de Datos, “AEPD”) in February highlight the many data protection issues that could arise through the use of artificial intelligence...more
Only a few months after going into effect, the Nebraska Age-Appropriate Design Code (AADC) has been amended. The April 17 amendments go into effect on July 17, 2026, which is a quick turnaround for companies to comply,...more
By means of Provision No. 284 of April 17, 2026, the Italian Data Protection Authority (the “Garante”) has adopted guidelines on the use of so-called “tracking pixels” in email communications, intended for all entities, both...more
AI Counsel Code host Maggie Welsh sits down with Michelle Molner to unpack how artificial intelligence is reshaping data privacy, cybersecurity risk, and regulatory enforcement. The conversation explores the growing tension...more
Too often, companies only think seriously about data privacy when they need to follow legally required regulations or when a privacy breach has already occurred. Privacy isn’t always the fun project teams want to work on, but...more
As part of its broader efforts around online age checking, the EU commission announced that it has created its age verification app. Last year the Commission announced that it was working with Member States to create a...more
Love AI or hate it, people are definitely talking about it and—more importantly—to it. The artificial intelligence governance discussion largely concerns the provenance of its inputs (training data, scraping and...more
On 6 March 2026, the Minister of Communication and Digital (MOCD) issued Minister of Communication and Digital Regulation No. 9 of 2026 (MOCD Reg. 9/2026), which serves as the implementing regulation of Government Regulation...more
On March 12, 2026, the Ninth Circuit held that parts of the California Age-Appropriate Design Code Act (the CAADCA), which was enacted in 2022 to protect the privacy, safety and well-being of children who are likely to access...more
As organizations across industries and sectors—from advertising, media and entertainment to financial services, retail, consumer brands and healthcare—integrate artificial intelligence (AI) solutions into all levels of their...more
On February 18 2026, the Spanish supervisory authority (the AEPD) published guidance on Agentic Artificial Intelligence systems (the Guidance)....more
On March 5, 2026, Colin Zick presented to the MassRobotics Healthcare Catalyst Program on the topic, "Robotics and Health Information: Navigating Clinical Deployments in Light of Current Trends in Health Information Privacy...more
At the end of 2025, we wrote that the defining question for 2026 would no longer be whether artificial intelligence (AI) is being used responsibly but whether organizations truly understand and govern the systems they have...more
On January 28, the Federal Trade Commission (FTC) hosted a workshop on age assurance, where FTC leadership signaled new guidance may be forthcoming to clarify potential conflicts between age assurance efforts and federal law....more
South Carolina is slated to join a growing group of states that have passed age-appropriate design code (AADC) requirements for online products used by children and teens....more
Privacy and cybersecurity - EDPB's strict approach on legal bases for requiring the creation of a user account on e-commerce websites On 3 December 2025, the EDPB published the Recommendations 2/2025 on the legal basis...more
After a decade of cloud migration and incremental modernization, the technology sector is approaching an inflection point. This year, 2026, is shaping up to be the year AI must move from pilots to production. The focus is...more
Privacy, digital rights, and government responses to new technology are under heavy pressure right now as AI scales and more of life happens online. But data protection is not a partisan or optional issue. No matter who is in...more
The U.S. Food and Drug Administration announced a major shift in its approach to real‑world evidence (RWE). In new guidance for certain medical device submissions, FDA will accept RWE without always requiring identifiable,...more
The launch moment feels like victory: The privacy policy is published, the cookie banner is live, a small team is established, and the executives believe the company is “compliant.” But this milestone often creates a false...more
What happened? The UK Information Commissioner’s Office (ICO) has released updated guidance on encryption following a recent consultation....more