The Court of Justice of the European Union has found that mere infringement of the GDPR is not sufficient to recover compensation for material or non-material loss.| WILLIAM FRY
To coincide with GDPR's 7th anniversary, the European Commission has proposed targeted amendments to ease compliance particularly for small mid-cap enterprises.| WILLIAM FRY
William Fry recently held an event 'Navigating NIS2: Requirements, Best Practices and Practical Insights' which highlighted the latest trends and challenges in the cybersecurity landscape.| WILLIAM FRY
The EU’s revised NIS2 Directive (Network and Information Systems Directive) (NIS2) mandates companies and public bodies to promptly report significant cybersecurity incidents. Central to NIS2 are mandatory and voluntary incident notification regimes. We expect NIS2 to become law in Ireland in 2025. In this article, we consider what's involved and why organisations should start updating their breach response policies to be ready for these new obligations.| WILLIAM FRY
Ireland's implementation of EU NIS2 Directive is expected soon so now is the time is now to ready your company for compliance.| WILLIAM FRY
On 28 October 2024, sixteen international data protection regulators reaffirmed, through a concluding joint statement, their views about the risks and expected standards of compliance associated with data scraping from a data protection perspective. The statement contains several key takeaways for organisations implementing measures to safeguard against unlawful data scraping.| WILLIAM FRY
On 31 October 2024, the Minister of State for Trade Promotion, Digital and Company Regulation announced that the government has designated nine national public authorities to oversee the protection of fundamental rights in the context of AI, marking a proactive step towards ethical AI governance. In this article, William Fry considers the designations.| WILLIAM FRY
The EU's Artificial Intelligence Act (the AI Act) is a landmark regulation aimed at ensuring ethical AI use while protecting fundamental rights. Effective from 1 August 2024, it sets stringent rules on the deployment and use of AI systems across various sectors. This practical guide helps businesses navigate these regulations, focusing on compliance requirements and steps to ensure adherence.| WILLIAM FRY
The AI Act bans certain types of AI systems, with fines for non-compliance greater than for GDPR breaches. Here, we provide a detailed and practical guide for businesses to navigate the AI Act, focusing on compliance with the rules on Prohibited AI Systems.| WILLIAM FRY
This article provides a practical guide to compliance with the AI Act's regulations on biometric categorisation systems. It explains the distinctions between prohibited systems, which infer sensitive attributes and are banned, and high-risk systems, which require strict regulatory adherence.| WILLIAM FRY
This practical guide addresses the AI Act's provisions on regulatory sandboxes, highlighting their role in fostering innovation while maintaining regulatory oversight. Here, we explore the key aspects, dates, enforcement mechanisms, and compliance steps, which are essential for navigating these sandboxes effectively.| WILLIAM FRY
Emotion recognition systems will now be regulated under the AI Act. These systems, which infer or identify emotions from biometric data, present unique challenges and risks that demand stringent regulatory measures. This practical guide outlines the steps to ensure compliance with the AI Act.| WILLIAM FRY
William Fry's AI Summit saw AI, data, law and policy experts discuss the opportunities and challenges with AI and what to expect in the future.| WILLIAM FRY