Mythos and the New Regulatory Challenges of AI-Driven Cybersecurity

The emergence of advanced AI models capable of autonomously discovering vulnerabilities is reshaping the regulatory landscape of cybersecurity, privacy and operational resilience. Mythos, Anthropic’s advanced cybersecurity-oriented model, illustrates how AI is rapidly ...Mehr lesen

Finland Extends GDPR Fines to Public Authorities – A Long-Awaited Shift in Enforcement

Finland is set to extend GDPR administrative fines to public-sector authorities, ending a long-standing exemption that has set the country apart from most of the European Union. The proposed amendment introduces financial accountability for public bodies, but does so ...Mehr lesen

THE SPANISH DPA ISSUES ITS LATEST REPORT: HOW DID THEY REDEFINE PRIVACY AND INNOVATION IN...

How is data protection evolving in an era shaped by AI and rapid technological innovation? This article explores the main achievements of the Spanish Data Protection Authority (AEPD) during 2025, highlighting its strategic initiatives to integrate AI, strengthen privacy ...Mehr lesen

Cookies and similar technologies: Swiss FDPIC factsheet highlights practical compliance...

The latest factsheet on cookies from the FDPIC looks beyond banners to expose how today’s tracking ecosystem really works. This article breaks down the practical legal implications for website operators in Switzerland, explaining why meaningful user choice and restraint ...Mehr lesen

Canada Steps Toward Open Banking: Bill C-15 Delivers Data Portability (With Lingering...

With the passage of Bill C-15, the federal government’s budget implementation bill, Canada takes a decisive step toward a consumer-driven banking framework. This article examines the bill’s data portability provisions, including a new data mobility regime added to ...Mehr lesen

A new member has joined the INPLP: Migle Dewsbury

...Mehr lesen

Austrian DPA decisions on Microsoft 365 Education: Unlawful Cookie tracking of school...

In two parallel decisions of October 2025 and January 2026, the Austrian Data Protection Authority (DSB) ruled that Microsoft Corporation acts as a (joint) controller for parts of the data processing carried out via Microsoft 365 Education and unlawfully placed tracking ...Mehr lesen

Sharenting – Privacy concerns by the exposure of minors on social media

What happens when parents not only fail to provide special protection, but also place their children in situations that are either dangerous or have a negative impact on them? Can, or indeed should, the State intervene? ...Mehr lesen

Legal Update on Privacy and Artificial Intelligence: Costa Rica

Following Costa Rica’s presidential elections in February 2026 and with a new administration set to take office in early May, the country faces well‑defined challenges that will shape its political and economic trajectory over the next four years. Among these challenges, ...Mehr lesen

New members have joined the INPLP: Ramón Arias and Joaquín Sosa

...Mehr lesen