Search

BfDI Welcomes EDPB GDPR Guidelines on Legitimate Interest

The European Data Protection Board (EDPB) has released draft guidelines on the processing of personal data based on legitimate interest under GDPR. The German Federal Commissioner for Data Protection and Freedom of Information (BfDI) welcomes the initiative to provide greater legal certainty. The guidelines are now open for public consultation.

CNIL Consultation on Session Replay Draft Recommendation

The CNIL has launched a public consultation on its draft recommendation for session replay tools. The recommendation aims to guide tool developers and website operators on compliance with data protection rules, particularly concerning user behavior monitoring. The consultation period closes on April 22, 2026.

Cherokee Nation CIRCIA Comments

The Cybersecurity and Infrastructure Security Agency (CISA) has posted comments submitted by the Cherokee Nation regarding the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). These comments are part of the ongoing public consultation process for developing CIRCIA regulations.

CISA Cybersecurity Proposed Rule Comments

The Cybersecurity and Infrastructure Security Agency (CISA) has posted comments from the Bristol Bay Native Corporation regarding a proposed rule. This submission is part of the public consultation period for new cybersecurity regulations.

CISA CIRCIA Comments Posted

The Cybersecurity and Infrastructure Security Agency (CISA) has posted comments received regarding the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). These comments are part of the ongoing public consultation process for the development of CIRCIA regulations.

PCLOB Seeks Public Input on Counterterrorism Activities

The Privacy and Civil Liberties Oversight Board (PCLOB) is seeking public comment on its examination of counterterrorism activities conducted under Executive Order 12333. The PCLOB is requesting input on concerns related to these activities and suggestions for inquiry.

CPPA Seeks Comments on Reducing Privacy Rights Friction

The California Privacy Protection Agency (CPPA) is seeking preliminary comments on potential regulatory changes to reduce friction in how consumers exercise their privacy rights. The comment period is open from March 6, 2026, until April 6, 2026.

CPPA Seeks Comments on Opt-out Preference Signals Rulemaking

The California Privacy Protection Agency (CPPA) is seeking preliminary public comments on potential rulemaking regarding Opt-out Preference Signals (OOPS). The agency is gathering information to explore whether regulatory changes are necessary to reduce friction in exercising privacy rights. Comments are due by April 6, 2026.

ENISA Seeks Feedback on Software Supply Chain Security Guidance

ENISA has launched public consultations on draft guidance for software supply chain security. Feedback is sought on an SBOM Landscape Analysis and a Technical Advisory for Secure Use of Package Managers, with a deadline of January 23, 2026.