EDPB Publishes Template for Data Protection Impact Assessments – Provide Feedback

The European Data Protection Board (EDPB) published a template for Data Protection Impact Assessments (DPIAs) to support organizations in reporting and consistent GDPR compliance across the EU. The template provides a step-by-step structure for presenting DPIA results and includes guidance on key concepts. A public consultation is open until 9 June 2026, after which EU national data protection authorities will adopt the template either as-is or as a national version.

Operation Atlantic Disrupts $45M Crypto Fraud, Freezes $12M

Operation Atlantic, a week-long international law enforcement campaign co-hosted by the U.S. Secret Service, UK's National Crime Agency, Ontario Provincial Police, and Ontario Securities Commission, identified more than $45 million (USD) in cryptocurrency fraud and froze $12 million in stolen funds. Investigators identified over 20,000 cryptocurrency wallet addresses linked to fraud victims across more than 30 countries, directly contacted over 3,000 victims of approval phishing scams, and disrupted more than 120 web domains used by scammers to conduct fraudulent schemes globally.

Guidelines 1/2026 on Processing Personal Data for Scientific Research

Euroopan tietosuojaneuvosto on julkaissut ohjeistuksen henkilötietojen käytöstä tieteellisessä tutkimuksessa. Ohjeet selkeyttävät tutkimusdatan uusiokäytön sääntöjä, laajentavat suostumusmahdollisuuksia "laajaan suostumukseen" ja "dynaamiseen suostumukseen" sekä määrittelevät kuusi kriteeriä tieteellisen tutkimuksen tunnistamiseksi. Kommentit ohjeistuksen luonnokseen otetaan vastaan 25. kesäkuuta 2026 asti.

Dallas Card Skimming Outreach Operation Nets 13 Illegal Devices, $13.5M Saved

The U.S. Secret Service Dallas Field Office, in partnership with Tarrant County Sheriff's Office and multiple Texas law enforcement agencies, conducted a two-day outreach operation on April 13-14 targeting payment card skimming and Electronic Benefit Transfer fraud. Personnel visited 462 businesses across Tarrant County and inspected 2,939 point-of-sale terminals, gas pumps, and ATMs, removing 13 illegal skimming devices and preventing an estimated $13.5 million in losses to Dallas-area consumers. The operation also distributed educational materials to businesses on identifying skimming devices.

Europrivacy Certification Now Covers Non-EU Organizations

The European Data Protection Board approved updated Europrivacy certification criteria at its April 2026 plenary session and endorsed the use of Europrivacy certification as a tool for international personal data transfers under Articles 42 and 46 GDPR. The certification scheme has been expanded to cover non-EU controllers and processors subject to GDPR, including organizations offering products or services to Europeans or processing personal data for behavioral monitoring of EU residents. Non-EU data importers not directly subject to GDPR can now apply for Europrivacy certification to validate appropriate safeguards for data transfers they receive from the EU. The original Europrivacy criteria were approved in October 2022 as the first EU-wide data protection seal.

State to Auction Properties in Taos, Torrance Counties

The New Mexico Taxation and Revenue Department has announced upcoming delinquent property tax auctions in Taos County (April 28-30, 2026) and Torrance County (May 7, 2026). Registration opens at 8 a.m. on auction day and closes promptly at 10 a.m. Successful bidders must pay in full by money order, certified check, cashier's check, or personal/business check with bank letter of credit. The auctions are held when property taxes remain delinquent for at least three years and the state cannot collect the taxes owed.

JPCERT Warns of Critical Vulnerabilities in Adobe Acrobat and Reader Allowing Arbitrary Code Execution

JPCERT/CC issued alert JPCERT-AT-2026-0006 on 2026-03-11 disclosing critical vulnerabilities in Adobe Acrobat DC, Adobe Acrobat Reader DC, and Adobe Acrobat 2024 Classic that could allow attackers to execute arbitrary code by tricking users into opening malicious PDF content. Affected versions include Adobe Acrobat DC Continuous 25.001.21265 and earlier (Windows, macOS), Adobe Acrobat Reader DC Continuous 25.001.21265 and earlier (Windows, macOS), Adobe Acrobat 2024 Classic 2024 versions 24.001.30307 and earlier (Windows) and 24.001.30308 and earlier (macOS). JPCERT recommends updating to patched versions 25.001.21288, 25.001.21288, and 24.001.30356 respectively.

Adobe Acrobat and Reader Vulnerabilities Allow Code Execution

JPCERT/CC issued alert JPCERT-AT-2026-0011 on April 15, 2026, notifying that vulnerabilities exist in Adobe Acrobat and Adobe Acrobat Reader affecting multiple versions on Windows and macOS. Affected versions include Adobe Acrobat DC Continuous (26.001.21411) and earlier, and Adobe Acrobat 2024 Classic (24.001.30362 and earlier on Windows; 24.001.30360 and earlier on macOS). An attacker may execute arbitrary code by convincing a user to open malicious content leveraging the vulnerability. Users are advised to update to the latest versions: Adobe Acrobat DC Continuous (26.001.21431) or Adobe Acrobat 2024 Classic (24.001.30365).

Microsoft April 2026 Security Updates Fix Critical Vulnerabilities

JPCERT/CC issued alert JPCERT-AT-2026-0010 on April 15, 2026, reporting that Microsoft released April 2026 Security Updates addressing multiple vulnerabilities in Microsoft products. Attackers could exploit these vulnerabilities to perform network spoofing or execute arbitrary code remotely without authentication. Among the vulnerabilities disclosed, CVE-2026-32201 (Microsoft SharePoint Server Spoofing Vulnerability) has been confirmed as actively exploited in the wild. JPCERT recommends applying security updates via Microsoft Update, Windows Update, or the Microsoft Update Catalog.

DIAN Files Unified Positive Report on Customs Sanctioning Bill

Colombia's Dirección de Impuestos y Aduanas Nacionales (DIAN) filed a unified positive report for the first legislative debate of the Customs Sanctioning Bill (Régimen Sancionatorio Aduanero) on April 21, 2026. The proposal, developed through 27 working sessions with the Consejo Gremial Nacional, reduces the total number of customs sanctions from 357 to 235 and reorganizes infractions by user type with differentiated penalty ranges. The bill aims to strengthen customs control, combat contraband, and provide greater legal certainty for foreign trade participants. DIAN's target is for the law to be enacted before June 20, 2026, in compliance with a Constitutional Court mandate.

Latin America Records 243 Tax Reform Measures in 2025, CIAT Report Finds

The CIAT Observatory of Fiscal Reforms documented 243 significant tax measures across 19 Latin American countries during fiscal year 2025. Of these, 127 measures focused on strengthening tax administrations and 116 involved fiscal policy adjustments. The report highlights regional trends toward modernization and evasion control, with Argentina, Brazil, and Uruguay achieving legislative advances while Colombia faced normative substitution processes or congressional delays. Three strategic priorities emerged: expanding tax bases to increase revenue, consolidating existing systems, and reducing administrative burdens. Technology adoption, including electronic invoicing and pro-forma sworn declarations, was identified as a key driver for voluntary compliance.

Electronic Invoice Training Apr 28 May 12 26

Colombia's DIAN announced three virtual training sessions on its Electronic Invoice System (Sistema de Factura Electrónica) to be held via Microsoft Teams. Sessions cover support documents for non-obligated parties and electronic payroll (April 28), step-by-step electronic invoice activation (May 12), and the Radian platform (May 26), each running from 9:00 a.m. to 10:00 a.m. Participation is open to the public via published connection links.

EMS for Children Advisory Committee to Meet Thursday, Apr. 23, 2026

The South Carolina Department of Public Health announces the EMS for Children Advisory Committee will meet Thursday, April 23, 2026, at 10 a.m. at the State of South Carolina Health Campus, Conference Room B228, 400 Otarre Parkway, Cayce. The agenda and virtual viewing link are available on the meeting event page.

SCDOR Collects $54.4M From Top Delinquent Taxpayers in 2025

The South Carolina Department of Revenue announced that collections from taxpayers on the Top Delinquent Taxpayers lists exceeded $50 million in 2025, reaching $54,484,057 as of December 31, 2025. The program, launched in 2020, publishes lists of the state's top individual and business tax debtors in tax lien status to promote transparency, fairness, and accountability. In 2025 alone, those on the lists paid approximately $5.8 million to the state, including $5.3 million in lien payments, $555,000 in payment plan payments, $4.7 million from businesses, and $1.1 million from individuals.

AZOP na EDPB Simpoziju privatnosti u Veneciji

Potpredsjednik EDPB-a i ravnatelj AZOP-a Zdravko Vukić sudjelovao je na Simpoziju privatnosti na Sveučilištu Ca' Foscari u Veneciji od 20. do 24. travnja. Konferencijska sesija 'Ključna obraćanja o međunarodnoj suradnji' naglasila je važnost jačanja suradnje među europskim tijelima za zaštitu podataka. AZOP je rangiran visoko po broju izrečenih kazni za povrede GDPR-a prema godišnjem izvješću EDPB-a.

EDPB Guidelines on Personal Data Scientific Research

AZOP reports that the European Data Protection Board (EDPB) has adopted Guidelines on personal data processing for scientific research purposes, providing interpretation of GDPR provisions applicable to scientific research data processing. The guidelines address conditions for processing, safeguards, and data subject rights in the research context. AZOP, as a member of the EDPB, shares this development with stakeholders in Croatia.

EDPB Vice President Vukic Highlights International Cooperation at Privacy Symposium

At its latest plenary session, the European Data Protection Board (EDPB) adopted Guidelines on Processing Personal Data for Scientific Research purposes. The Board also established a dedicated team to accelerate completion of anonymization guidelines. AZOP reports that EDPB Vice President Vukic highlighted the importance of strengthening international cooperation at a privacy symposium. The EDPB further adopted two additional decisions at this session, though details were not fully reported.

STB Authorizes Green Eagle Railroad 1.3-Mile Line in Maverick County, TX

The Surface Transportation Board authorized Green Eagle Railroad to construct and operate an approximately 1.3-mile rail line in Eagle Pass and Maverick County, Texas, as part of the Puerto Verde Global Trade Bridge project. The line will extend from the U.S.-Mexico border to connect with Union Pacific Railroad near UP's Eagle Pass Subdivision, routing rail and commercial motor vehicle traffic around the urban center of Eagle Pass. The Board approved the Southern Rail Alternative route subject to environmental mitigation conditions, and GER must file project status reports, including updates on negotiations with UP and BNSF, in six months and annually thereafter.

Director Position, Contentious Chamber, Belgian DPA, Deadline 23rd Apr

The Belgian Chamber of Representatives has issued a call for candidates for the position of Director of the Contentious Chamber of the Autoriteit voor Gegevensbescherming (APD). The Director will join the APD's Management Committee and lead the Contentious Chamber. Candidates must be Dutch-speaking magistrates. Applications must be submitted within thirty days of publication in the Belgian Official Journal (Moniteur belge), with a deadline of 23 April 2026. The application process is handled exclusively through the Chamber of Representatives.

AI Impact on Privacy, Belgian APD Brochure

The Belgian Data Protection Authority (APD) published on April 13, 2026 a first brochure entitled 'The Impact of Artificial Intelligence (AI) on Privacy', the inaugural publication of its 'AI & Data Protection' series. The brochure is aimed at citizens who interact with AI systems daily and explains how these systems function, the types of personal data they process, the associated risks, and the rights granted to individuals under data protection legislation. This initiative builds on APD's December 2024 publication on AI systems and the GDPR.

APD and UK ICO Sign Data Protection Cooperation Agreement at Venice

The Belgian Data Protection Authority (APD) and the UK's Information Commissioner's Office (ICO) signed a Memorandum of Understanding titled 'Cooperation in the Regulation of Laws Protecting Personal Data' at the Privacy Symposium in Venice, Italy. The agreement establishes a cooperation framework for cross-border data protection enforcement, including information sharing, best practices exchange, and coordinated investigations affecting both countries.

Finland Tax Administration Sends Text Message Reminders

Finland's Tax Administration (Vero) published a log of text message reminders sent to taxpayers between January 2026 and April 2026, covering subjects including VAT return due dates, e-invoicing proposals, tax return filing guidance, and employer information-reporting requirements. Messages were sent to individuals, self-employed persons, partnerships, limited companies, forest owners, agricultural operators, and employers newly entered in the Employer Register, ranging from 100 to 50,000 messages per campaign. The Administration clarified that official text messages never contain links and the sender name is always 'Vero', 'Skatt', 'VeroSkatt', or 'Vero Skatt'.

1.4 Million Finnish Taxpayers Face April 14 Deadline as Digital Tax Correspondence Launches

Approximately 1.4 million Finnish wage earners and pension recipients face an April 14 deadline to verify their pre-completed tax returns, while approximately 2 million property owners must also correct real estate details by that date. New legislation effective April 14 will shift all official correspondence from the Tax Administration to electronic format through Suomi.fi Messages for users of e-government services, with tax decisions accessible via MyTax (OmaVero). The Digital Priority approach may save tens of millions of euros annually through faster delivery, improved data security, and better accessibility.

Finland Reports 2,800 Economic Crime Cases, Up 6%

Finland reported nearly 2,800 economic crime cases to police in 2025, a 6% increase from the previous year and the fourth consecutive year of rising reported crime. Customs recorded 43 regulation offences related to sanctions against Russia and confiscated approximately 16.5 million cigarettes, the largest volume in ten years. The Tax Administration imposed over €240 million in taxes from grey economy audits, while the National Enforcement Authority collected nearly €1.5 billion from debtors, and 3,310 bankruptcy proceedings were launched, up 9% year-on-year.

Moving Oxnard Forward v. Lopez - Campaign Contribution Limits Constitutional

The Ninth Circuit en banc affirmed the district court's summary judgment upholding Measure B's per candidate and aggregate campaign contribution limits against First Amendment challenges brought by Moving Oxnard Forward, Inc. The court held the City established a sufficiently important governmental interest in preventing quid pro quo corruption, supported by a District Attorney investigation, newspaper article, resident survey showing 77% wanted accountability, and the fact that 82% of voters approved Measure B. Applying the Randall v. Sorrell 'danger signs' framework, the court found Measure B's limits closely drawn to the City's interest. Judge Collins, joined by Judge VanDyke, dissented, arguing the City's evidence did not meet the proper threshold burden under Supreme Court authority.

USA v. California — Ninth Circuit Grants Injunction Against No Vigilantes Act § 10

The Ninth Circuit granted the United States' motion for an injunction pending appeal, enjoining California, Governor Gavin Newsom, and Attorney General Rob Bonta from applying or enforcing § 10 of the No Vigilantes Act (California Penal Code § 13654) against federal agencies and officers. The panel held that the United States is likely to succeed on the merits of its claim that § 10 violates the Supremacy Clause because it attempts to directly regulate the United States in its performance of governmental functions. The court found the other preliminary injunction factors also weigh in the United States' favor. Federal law enforcement officers operating in California are no longer subject to the state's visible identification requirement while performing enforcement duties, pending further court order.

R. v. Ventura Unified School District - IDEA Statute of Limitations

The Ninth Circuit reversed the district court's judgment in this IDEA case, holding that claims for educational services received before 2019 were time-barred. The court held that the IDEA's two-year limitations period under 20 U.S.C. § 1415(f)(3)(C) begins when parents know or should know both the school district's failure to assess and diagnose their child and that the child is being denied FAPE. The panel also vacated the remedial order establishing an educational trust and the order granting a motion to enforce the judgment, remanding for further proceedings as to attorneys' fees.

J.R. v. Ventura Unified School District - IDEA Two-Year Limitations Period Ruling

The Ninth Circuit reversed the Central District of California's judgment and held that parents' IDEA lawsuit was untimely as to educational services their child received before 2019. The panel established that the IDEA's two-year statute of limitations begins when parents know or should know (1) the school's failure to assess and diagnose, and (2) that their child is being denied FAPE. The court rejected exceptions for school district misrepresentations and withheld information, finding the parents' claims predating the limitations period time-barred. The panel reversed the judgment awarding benefits for 2012-2019, vacated the educational trust order, and remanded for attorneys' fees proceedings.

Battieste v. United States - Statute of Repose Bars Medical Negligence Claim Filed 18 Years After Surgery

The Fifth Circuit affirmed dismissal of Velma Battieste's Federal Tort Claims Act suit against the United States for medical negligence arising from an unauthorized C2 vertebra surgery performed at the VA Medical Center in Jackson, Mississippi in September 2006. The court held that Miss. Code Ann. § 15-1-36(2)'s seven-year provision constitutes a statute of repose, presenting an absolute time-bar to claims brought more than seven years after the alleged negligent act. The estate's May 2024 complaint was filed approximately 18 years after the surgery and was therefore time-barred. The February 27, 2026 opinion was withdrawn and replaced by this substituted opinion on rehearing.

Denmark Opens New AI Sandbox Round for Applications

Datatilsynet and Digitaliseringsstyrelsen have opened applications for a new round of their joint regulatory AI sandbox. The sandbox offers free, hands-on guidance on GDPR compliance and the EU AI Act for companies, authorities, and organizations developing or using AI. Each sandbox engagement runs up to four months, is tailored to the specific project, and culminates in a public report sharing lessons learned. Applications are evaluated based on societal significance, level of innovation, and project maturity.

Denmark DPA 2025 Annual Report Published

Datatilsynet (Denmark's Data Protection Authority) has published its 2025 Annual Report, covering the authority's supervisory work, new guidance documents, updated enforcement practices, oversight of municipalities, supervision of AI use, international cooperation, consultation on legislative proposals, and trends in personal data breach notifications. The report also highlights the DPA's focus on advisory services supporting both citizens and data controllers. The report was published on March 31, 2026.

Danish DPA Approves Employer Sharing Union Data

Datatilsynet issued a decision in a complaint case where a union, on behalf of its member, challenged an employer's disclosure of personal data—including union membership information—to a third party in connection with an employment dispute between the parties. The third party was a relative of the employer and a colleague in the complainant's current position. Datatilsynet found the disclosure fell within the framework of data protection rules, noting the employer shared information with an advisor who assisted in hiring the complainant and would have the necessary qualifications to assist in the employment case. The DPA emphasised that information about party representatives—including union affiliation—is typically considered relevant to disclose to advisors when defending against legal claims.

Simplified Income and Expense Records for Rural Women's Circles New Rules from 2026

The Polish National Revenue Administration (KAS) announced simplified income and expense record-keeping rules for rural women's circles (koła gospodyń wiejskich), effective from 2026. These organizations will benefit from streamlined accounting requirements under the tax authority's guidance. The changes apply specifically to this category of rural civic organizations operating in Poland.

KAS Przypomina: Przekaż 1,5% Podatku na Organizacje Pożytku Publicznego

Krajowa Administracja Skarbowa (KAS) przypomina podatnikom w Polsce o możliwości przekazania 1,5% należnego podatku dochodowego od osób fizycznych (PIT) na rzecz Organizacji Pożytku Publicznego (OPP). Mechanizm ten umożliwia podatnikom skierowanie części swojego podatku na wsparcie organizacji charytatwnych bez ponoszenia dodatkowych kosztów — kwota ta i tak trafia do budżetu państwa, a przekazanie jej OPP jest dobrowolnym wyborem podatnika.

Polish e-Tax Services: File Taxes Electronically With Twój e-PIT

The Polish tax authority (KAS) maintains an electronic tax portal at podatki.gov.pl providing taxpayers access to the Twój e-PIT service for electronic income tax filing, e-Korespondencja (electronic correspondence), and other e-Urząd Skarbowy (e-Tax Office) services. The portal covers personal income tax (PIT) for various income types including employment, contracts, rental income, and pensions, as well as business taxes including CIT, VAT, and excise duties. Additional services include taxinterpretations, binding tax and customs rulings, international tax cooperation tools, and customs information.

Joint Declaration on AI-Generated Images and Privacy

The AAIP joined over 60 global data protection authorities in issuing a joint declaration addressing AI systems that generate realistic images and videos of identifiable persons without their knowledge or consent. The declaration outlines fundamental expectations including implementation of robust security measures to prevent misuse, transparency about AI capabilities, accessible mechanisms for individuals to request removal of personal content, and specific protections for children and adolescents. The declaration was adopted under the Global Privacy Assembly Working Group on International Enforcement Cooperation, with adherence from authorities spanning six continents.

AAIP Leads 65th Bureau Meeting on Convention 108+ Data Protection

Beatriz Anchorena, Head of the AAIP and President of the Convention 108 Committee Bureau, chaired the 65th Bureau meeting of the Council of Europe's Data Protection Committee on March 18–19. The meeting reviewed Convention 108+ ratification status, which stands at 33 ratifications with 5 additional ratifications required for entry into force. Participants advanced work on Model Contractual Clauses for cross-border data flows and guidelines on AI large language models and neuroscience under the 2026–2029 Work Programme. Observers included EDPS, EDPB, Ecuador's Superintendent of Personal Data Protection, Brazil's ANPD, and Interpol.

AAIP Investigates 5 ON LINE S.R.L. for Alleged Data Protection Violations in Telephone Debt Collection

The AAIP, as the enforcing authority for Argentina's Law No. 25.326 on Personal Data Protection, has initiated an investigation into 5 ON LINE S.R.L. following complaints about alleged illegitimate processing of debtor data during telephone collection activities. The agency has notified potentially linked entities to inform them of the ongoing proceedings and remind them of their legal obligations. If violations are confirmed, the applicable sanctions include fines, warnings, suspension, closure, or cancellation of data databases.

Norway Implements EU Directive 2024/869/EU with New Workplace Limits for Diisocyanates and Lead

Norway's Arbeidstilsynet has implemented the EU's fifth amendment directive 2024/869/EU to the carcinogen-mutagen-reproductive toxic directive 2004/37/EC through amendments to the Regulations on limit values. The new rules establish exposure limits for diisocyanates (carcinogenic) and lead and inorganic lead compounds (reproductive toxic). Biological limit values for lead now specify 45 µg Pb per liter blood for women of fertile age and 150 µg Pb per liter blood for other workers. The directive applies from 9 April 2024.

New HMS Card Contract Signed With Tieto, Three Years, Starts January 2027

Arbeidstilsynet has signed a new three-year contract with Tieto (formerly Tietoevry) for the delivery of HMS cards, the work-authorisation cards required in Norway's covered industries. The contract, signed 31 March 2026, begins January 2027 and has an estimated annual value of approximately 50 million Norwegian kroner, with options to extend for up to two additional years. The new agreement will introduce a unified physical card across industries, improved security using bank-card technology, a more user-friendly ordering solution, and stricter information-security and privacy requirements.

PM's Science Council Recommends $122M Science Funding Reallocation Over 3 Years

The Prime Minister's Science, Innovation and Technology Advisory Council has published its first report recommending that the government reallocate $122 million over the next 3 years toward advanced technologies. The report proposes organising future investment around four funding pillars: primary industries and the bioeconomy, technology for prosperity, environmental sustainability and resilience, and healthy people and a thriving society. The council's advice is intended to inform the Government's Science Investment Plan, to be released around mid-year, which will set out strategic research priorities and align public investment with long-term government goals.

NZ Fuel Stocks Stable, Petrol at 51.2 Days Cover

MBIE's 22 April 2026 update reports national fuel stocks as of 19 April 2026: petrol 51.2 days, diesel 41.6 days, and jet fuel 47.4 days of cover. Stocks have decreased slightly since the previous update of 15 April (petrol 54.0, diesel 44.8, jet fuel 51.4), but MBIE states this reflects normal seasonal variation as international shipping operates without disruption from the current Middle East situation. Six ships are within the EEZ and five are en route from outside the EEZ. The next data update is scheduled for 27 April 2026.

64 High-Performing Endeavour Fund Projects Receive 12-Month Extensions

The New Zealand Ministry of Business, Innovation and Employment announced 12-month extensions for 64 high-performing Endeavour Fund projects effective 2026. The 2026 Endeavour Fund contestable round was paused to provide stability for the science, innovation and technology sector during the reform period, with the redirected allocation allowing strong projects to continue. Named recipients include the New Zealand Institute for Bioeconomy Science, University of Auckland, and University of Waikato, working on bioproduct production, Varroa mite control, and hydrogen storage research.

Federal Council Adopts Too-Big-To-Fail Regulations Requiring Full CET1 Backing for Foreign Subsidiaries

On 22 April 2026, the Swiss Federal Council adopted a dispatch revising the Banking Act and amended the Capital Adequacy Ordinance (CAO), targeting a gap in the too-big-to-fail regime exposed by the Credit Suisse crisis in 2023. Systemically important banks will be required to fully back the carrying value of their participations in foreign subsidiaries with CET1 capital — previously only half could be financed with debt — eliminating the automatic reduction of parent bank capital ratios from the first franc of any valuation loss. The CAO amendments establish a maximum three-year amortisation period for software capital treatment, aligned with EU regulations, effective 1 January 2027. Parliament will debate the Banking Act dispatch from summer 2026, with a proposed seven-year transition period. UBS, the only currently affected institution, would require approximately USD 20 billion in additional CET1 capital under the new requirements.

Federal Council Approves Agreement on Cantons' Involvement in Switzerland-EU Bilaterals III

The Swiss Federal Council approved an agreement between the federal government and the cantons on 22 April 2026 governing canton involvement in the Switzerland-EU Bilaterals III package. The agreement grants cantons participation rights in decision-shaping procedures and consultation on dispute settlement when their competences or essential interests are affected. Cantons will also be represented on relevant bodies including the selection committee for the Competition Commission state aid monitoring chamber, joint committees, and high-level EU dialogue forums. The agreement is conditional: it will only be signed after parliamentary deliberations on the package are concluded and remains subject to potential renegotiation if Parliament substantially amends the relevant legal bases.

Switzerland Attends UNECE Regional Forum on Sustainable Development in Geneva

Switzerland participated in the UNECE Regional Forum on Sustainable Development held on 21-22 April 2026 in Geneva, led by Markus Reubi, Federal Council delegate for the 2030 Agenda. The forum focused on SDG 6 (clean water and sanitation), SDG 7 (affordable and clean energy), SDG 9 (industry and innovation), SDG 11 (sustainable cities), and SDG 17 (partnerships). Swiss cities Geneva, Bern, and Basel, along with canton Aargau, presented their first Voluntary Local Reviews, showcasing local implementation of the 2030 Agenda. The forum serves as preparation for the High-level Political Forum in New York in July 2026.

New Guidance for Health Surveillance and Biomonitoring of Workers Exposed to Lead and Its Compounds

EU-OSHA has published new annex guidance on health surveillance and biomonitoring of workers exposed to lead and its inorganic compounds, reflecting updated regulatory requirements under Directive 2004/37/EC. The guidance explains biological limit values for lead and describes recommended practices to monitor lead in blood and carry out medical surveillance. This publication supplements the existing 'Biological monitoring at work: Guidance for OSH experts and workplaces' guidance document.

Supporting Compliance With OSH Regulations: New Web Section Gathers Key Research

EU-OSHA has launched a new thematic web section on occupational safety and health (OSH) compliance, consolidating research publications including case studies, policy briefs, reports, and discussion papers. The section covers multiple sectors including agriculture and construction, organised around two research strands: how supply chains drive OSH improvement and the role of labour inspectorates and prevention services. The resource is intended to help employers understand compliance pathways and inspector engagement.

Discussion Papers on Labour Shortages and AI Impact on OSH

EU-OSHA has published two discussion papers under its Future of Work project examining near-term implications for occupational safety and health. The first paper addresses how increasing labour shortages in Europe may create OSH pressures and outlines policy responses, while the second analyses the practical application of the EU Artificial Intelligence Act to smart OSH systems including wearables, robots, and exoskeletons.

PIPC Chairperson Delivers Cyber Diplomacy Lecture to Ambassadors

PIPC Chairperson Kyung Hee Song delivered a special lecture on cyber diplomacy to ambassadors stationed in Korea, timed to coincide with Women's Month. The engagement reflects Korea's PIPC actively conducting international outreach on data protection and privacy matters. The announcement is published on the official PIPC website as a news item.