Search for:
Category

Cyber Security

Category

On 25 December 2023, Thailand’s Personal Data Protection Committee (PDPC) published two subordinate regulations regarding cross-border transfer of personal data under the Personal Data Protection Act B.E. 2562 (2019) (PDPA) in the Government Gazette. These two rules are (1) Whitelist Notification; and (2) the Binding Corporate Rules (BCRs) and Appropriate Safeguards Notification, both of which will come into force on 24 March 2024.
Businesses may need to revisit which cross-border transfer option is appropriate for their specific circumstances, particularly considering whether their existing BCRs (for the Office of the PDPC’s approval) or appropriate safeguards (e.g., existing contractual clauses) are in compliance with the requirements set out by these new subordinate rules.

A key step towards the adoption of the EU AI Act was reached on 2 February 2024 as the draft text received unanimous approval from the European Council’s main preparatory body. There are further votes to follow before the Act is adopted, but it’s looking likely that the final vote will take place in April and some substantive provisions of the Act could be in force soon after that, possibly by the end of the year.

On 24 November 2023, the National Assembly officially approved the new Law on Telecommunications (“New Telecom Law”). This new law will soon supersede the existing 2009 Law on Telecommunications, which has been effective since 2010. The New Telecom Law will take effect on 1 July 2024, but its notable provisions regulating over-the-top (OTT) communications, data center (DC), and cloud computing (“Cloud”) services will take effect six months later, on 1 January 2025.

The Infocomm Media Development Authority (IMDA) and AI Verify Foundation have announced the draft Model AI Governance Framework for Generative AI (Framework), which adopts a systematic and balanced approach to addressing concerns posed by generative AI (GenAI) while continuing to facilitate innovation. The Framework expands on the Model AI Governance Framework that covered traditional AI, which was last updated in 2020.

In the context of the International Data Protection Day, on 26 January 2024, the Agency of Access to Public Information (AAIP, its acronym in Spanish) published their “Recommendations to protect personal data on the internet”. The AAIP provided five recommendations to users of any digital platform that entails the assignment of personal data.

On 18 January 2024, the World Health Organization issued new guidance on the ethics and governance of artificial intelligence for health, focusing on large multimodal models (LMMs). The WHO guidance summarizes the broad applications of LMMs in the healthcare industry and includes recommendations for governments, which have the primary responsibility of setting standards for the development and deployment of LMMs, and their integration and use for public health and medical purposes.

Against a backdrop of economic stagnation and geopolitical conflict, businesses are preparing for a challenging year. Global disputes will continue at pace, according to insights from more than 600 senior lawyers at large corporations, with ESG and employment risks the greatest areas of concern. Our seventh annual report provides detailed analysis of disputes trends, as well as sectoral and region-specific developments, to prepare your organization for The Year Ahead.

The Doing Business in the Philippines handbook aims to equip both local and foreign entrepreneurs with a practical guide to navigating the ever-evolving business landscape in the Philippines. It provides information on the requirements needed when setting up and operating a business in the Philippines, including incentives under special registrations, taxation, employment, IP, dispute resolution, and industry-specific regulations.

Data is a critical asset in today’s globally connected economy. Rapidly evolving technologies have made it easier than ever for companies to collect, use and transfer data throughout the world. Yet strict data protection, privacy and cybersecurity regulation is evolving rapidly, imposing complex and often inconsistent standards. Our Global Data Privacy & Cybersecurity Handbook is updated annually to help you keep up with the dynamic legal landscape. We provide detailed overviews and allow a comparative perspective of the increasingly complex and sophisticated data privacy and cybersecurity standards in over 50 countries.