EU moves to simplify GDPR and AI Act obligations, raising compliance questions for companies
By 
Neil Hodge2025-12-10T15:30:00
For the past decade, Europe has been at the forefront of designing strong—but flexible—rules around data use and the safe development of AI. The EU recently announced plans to simplify some key measures around data privacy and AI governance have met with a mixed response from businesses, consumer groups, and data experts.
On Nov. 19, the European Commission, the European Union’s executive body, proposed several changes as part of its “Digital Omnibus” initiative to make compliance with the General Data Protection Regulation (GDPR) and the AI Act easier for companies, while also attempting to provide more even oversight and enforcement of the rules across the single market.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleU.K. outlines AI sandbox plan as regulators weigh compliance risks
The U.K. has set out a new blueprint for AI regulation, which aims to slash bureaucracy and ramp up the safe adoption of new and emerging technology to unlock potential and boost investment.
-
ArticleComplying with the EU Data Act – What companies should know
Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.
-
PremiumNew EU Data Act may impact companies’ GDPR compliance efforts
New rules that have recently come into effect across the EU will allow for greater transfers of data between companies, though experts fear the changes could conflict with Europe’s strict privacy legislation, which protects personal information.
More from Regulatory Policy
-
ArticleU.K. listed companies must adapt to new sustainability reporting regime by 2027
Sustainability reporting rules for U.K. listed companies are set to change. The U.K. financial regulator has launched a consultation laying out its proposals, which aim to align the reporting regime with the international ISSB standards.
-
ArticleU.K. ‘buy now pay later’ regulation signals end of ‘Wild West’ fintech loans system
Firms offering “buy now, pay later” financing will become part of the regulated financial services sector in the U.K. from July 15. Compliance teams must act now to ensure they are ready to introduce rules and establish creditworthiness assessment processes, adapt systems, and change data processes before the deadline.
-
ArticleNew EU rules will force companies to come clean on pay
New rules that will be introduced this June will require companies based in the European Union (EU) to explain why some workers are paid more money for the same job and remedy any “unjustified” discrepancies.