EU and UK Authorities MoU on DORA ICT Provider Oversight

The European Supervisory Authorities (ESAs) and the Bank of England, PRA, and FCA have signed a Memorandum of Understanding to enhance cooperation on overseeing critical ICT third-party service providers under DORA. This agreement facilitates joint oversight and equivalence assessments between EU and UK authorities.

EIOPA delegates DORA Q&A adoption to Chairperson

EIOPA, in cooperation with EBA and ESMA, has adopted a decision to delegate the adoption of answers to straightforward DORA questions to the EIOPA Chairperson. This aims to simplify procedures and optimize resource utilization.

European Commission notifies Meta over AI assistants exclusion from WhatsApp

The European Commission has sent a Statement of Objections to Meta, alleging a breach of EU antitrust rules by excluding third-party AI assistants from WhatsApp. The Commission intends to impose interim measures to prevent serious and irreparable harm to the market.

ESMA Notifications of Compliance with Guidelines Overview Table

The European Securities and Markets Authority (ESMA) has published an overview table detailing notifications of compliance with its guidelines. This document serves as a reference for market participants regarding adherence to ESMA's technical standards and guidelines.

MiCA Reverse Solicitation Guidelines Compliance Table

The European Securities and Markets Authority (ESMA) has published a compliance table for its Markets in Crypto-Assets (MiCA) Regulation reverse solicitation guidelines. This document aims to assist entities in understanding and adhering to the new requirements regarding unsolicited marketing of crypto-asset services.

MiCA Crypto-Asset Transfer Guidelines Compliance Table

The European Securities and Markets Authority (ESMA) has published a compliance table for its MiCA crypto-asset transfer guidelines. This document serves as a reference for entities to assess their adherence to the new regulatory framework for crypto-asset service providers.

Garante Privacy Fines Nursery, Approves IT-Wallet, CEREBRO, AI in Schools

The Italian Garante Privacy has fined a nursery school €10,000 for privacy violations related to children's photos and video surveillance. The authority also approved the experimentation of IT-Wallet, the use of CEREBRO for asset investigations, and issued guidelines for AI in schools.

GDPR Fines and Guidance on AI, Healthcare, and Public Transparency

The Italian Data Protection Authority (Garante privacy) issued a newsletter detailing several enforcement actions and guidance. Fines were issued to a bank (€100,000) and a municipality for transparency violations, and a hospital (€80,000) for improper access to patient health records. Global data protection authorities also affirmed that data protection fully applies to AI.

Hospital Fined €70k for Data Breach; FAQs on Public Tender Data Published

The Italian Data Protection Authority (Garante privacy) has fined a company managing a hospital €70,000 for the unauthorized disposal of a patient's tissue sample and failure to notify a data breach. The newsletter also announced new FAQs on data processing and transparency in public tenders.

Garante Privacy Fines Verisure Italia and Aimag for GDPR Violations

The Italian Data Protection Authority (Garante Privacy) has fined Verisure Italia €400,000 for unlawful marketing practices and Aimag for inadequate security measures. Both companies are ordered to cease unlawful data processing and comply with GDPR.