Categorie: EU

EDPB Guidelines on Blockchain and GDPR Compliance: Key Considerations for Data Controllers

The EDPB has issued draft guidelines to clarify how the GDPR applies to blockchain technologies. The European Data Protection Board (EDPB) has issued draft Guidelines to provide clarity on the application of the GDPR to blockchain-based processing operations. While blockchain technologies offer benefits in transparency, decentralisation, and resilience, their technical characteristics pose considerable challenges to

Spain’s Proposed Child Online Safety Law introduces major new compliance obligations for Digital Service Providers

Spain has introduced a far-reaching legal framework to protect minors online, requiring businesses to adopt proactive compliance with new digital safety and data protection obligations. Spain is advancing comprehensive legislative reforms aimed at strengthening protections for children and adolescents in the digital environment. The proposed Ley Orgánica de protección de menores en entornos digitales (Organic

Child safety regulations: For businesses and organizations operating in the EU

The European Commission strengthens child safety regulations with the Digital Services Act and Age-Appropriate Design code.  In 2024, the European Commission made significant progress in advancing child safety regulations under the Digital Services Act (DSA). As digital platforms play an increasingly central role in children’s lives, the EU has intensified its focus on ensuring their

Pseudonymisation guidelines adopted by the EDPB, along with steps to enhance collaboration with competition authorities

The EDPB released new guidelines on pseudonymisation and a position paper on data protection and competition law to strengthen GDPR compliance. In January 2025, the European Data Protection Board (EDPB) made a significant regulatory announcement during its plenary meeting, by adopting new pseudonymisation guidelines, as well as issuing a position paper on the interplay between

A year of Data Protection Law: 2024 review

Throughout this year, the EU and the UK have experienced several notable developments in data protection. In this article, we will highlight some of the key milestones of 2024.   The year began with an ever relevant reminder, advising UK organisations on the transfer of personal data to the US under the UK GDPR, stressing

Cyber Resilience Act: EU Council and Parliament Approve New Cybersecurity Standards for Digital Products

EU Council and EU Parliament enhance cybersecurity for digital products with the Cyber Resilience Act, ensuring connected devices are secure before entering the market.   The European Union has taken a major step forward in enhancing cybersecurity for digital products with the adoption of the Cyber Resilience Act by the EU Council and EU Parliament.

Aphaia offers a presentation about the Gigabit Infrastructure Act at FOAN 2024

Aphaia’s Managing Partner Cristina Contero Almagro offered a presentation about the new Gigabit Infrastructure Act at the 12th International Workshop on Fiber Optics in Access Networks (FOAN), which took place in Athens on 29 and 30 October.   The new Gigabit Infrastructure Act (GIA) entered into force in May 2024 and will be applicable in November 2025.

Tech giants push for lighter AI regulations in Europe

Tech giants push for lighter AI regulations in Europe amid concerns over fines and transparency.   In a pivotal final effort, the world’s largest technology companies are urging the European Union (EU) to take a more lenient stance on regulating artificial intelligence (AI). Firms like Amazon, Google, and Meta are currently facing the looming possibility

European Commission Initiates Proceedings to Ensure Apple’s Compliance with Digital Markets Act

The European Commission has initiated proceedings to ensure Apple complies with the Digital Markets Act by providing free interoperability to third-party developers for its iOS and iPadOS platforms.   The European Commission has launched two specification proceedings to ensure that Apple meets its obligations under the Digital Markets Act (DMA). As a “gatekeeper” under the

EU AI Act Enforcement Overview

Penalties will be imposed by Member States under the EU AI Act, with the support of various authorities and bodies including an AI Board, AI Office, Advisory Forum and Scientific Panel.    The EU AI Act establishes a comprehensive framework for regulating Artificial Intelligence (AI) in the European Union. The regulation aims to ensure that