The European Data Protection Board and the European Data Protection Supervisor adopted two significant Joint Opinions in March 2026, addressing major European Commission legislative proposals that intersect with cybersecurity, health data governance, and data protection.
On March 19, the EDPB and EDPS published their Joint Opinion on the proposed Cybersecurity Act 2 (CSA2) and the proposed amendments to the NIS2 ...
Israel’s Supreme Court ruled on March 22, 2026 that the municipality of Ramat Gan made “reckless” use of artificial intelligence in administrative proceedings concerning a child with special needs. The court found that the municipality relied on materials generated by AI tools that included a non-existent Education Ministry directive and fabricated court rulings, and exceptionally ordered the municipality to pay ...
The European Commission published two significant sets of draft guidelines in March 2026, providing practical compliance guidance for two of the EU’s most consequential recent digital regulations.
On March 3, 2026, the Commission published draft guidelines intended to clarify the application of the EU Cyber Resilience Act (CRA) and opened a public consultation for stakeholder feedback. The CRA, which entered ...
The United States Supreme Court ruled that Cox Communications cannot be held liable for copyright infringement committed by its subscribers, reversing a $1 billion verdict that Sony Music Entertainment had secured against the internet service provider.
The case centered on whether Cox, which serves approximately six million subscribers, bore legal responsibility for users who illegally downloaded and shared copyrighted music. ...
California AG Settles with Disney for $2.75 Million Over CCPA Violations. California Attorney General Rob Bonta announced a $2.75 million settlement with the Walt Disney Company, the largest civil penalty to date under the California Consumer Privacy Act (CCPA). The settlement resolves allegations that Disney failed to fully effectuate consumers’ requests to opt out of the sale or sharing of ...
On March 2, 2026, the U.S. Court of Appeals for the Ninth Circuit issued a significant decision in *Freeman v. 3Commas Technologies OÜ*, reversing a district court’s dismissal of a class action against an Estonian cryptocurrency trading software company for lack of personal jurisdiction in California. The ruling provides important guidance on when foreign technology companies that operate online platforms ...
On March 9, 2026, AI company Anthropic filed two federal lawsuits against the Department of Defense—one in the U.S. District Court for the Northern District of California and one in the D.C. Circuit Court of Appeals—challenging the Pentagon’s designation of Anthropic as a “supply chain risk.” The lawsuits cap a weeks-long public confrontation between one of the world’s leading AI ...
Israel’s Privacy Protection Authority (PPA) has published its position paper on the principle of consent under Israeli privacy law. The paper, which builds upon a draft opinion published for public consultation in February 2025, clarifies how consent applies in the digital age and outlines the PPA’s interpretations that will guide its enforcement efforts under Amendment 13 to the Privacy Protection ...
New user? Click here to register