Council of the EU adopts updated cyber crisis management blueprint
The document aims to provide structured guidance for coordination among EU member states and relevant institutions during serious cybersecurity events.
European Data Protection Board releases practical guide on AI and data protection
The guide outlines practical steps for developing, deploying, and auditing AI in line with EU data protection and cybersecurity standards. Beyond its technical focus, the curriculum provides valuable tools for civil society to assess risks, ensure accountability, and engage in informed dialogue on responsible AI governance.
New EDPB guidelines clarify rules for disclosing personal data to third countries
The European Data Protection Board’s new guidelines on Article 48 GDPR clarify that EU-based organisations may only disclose personal data to third-country authorities if an international agreement is in place. The guidelines reinforces legal safeguards against extraterritorial data access and outlines strict conditions for lawful transfers, ensuring EU data protection standards are not undermined.
Second revision of draft UNGA resolution for Scientific Panel on AI and Dialogue on AI Governance
As negotiations advance among UN General Assembly (UNGA) members in New York, a second revision of a UNGA draft resolution (rev2) has been issued outlining updated proposals for the terms of reference and modalities for the Scientific Panel on AI and Global Dialogue on AI Governance. This new draft, published on 4 June 2025, offers fewer details about both the Panel and the Dialogue, compared to previous versions. Some of the main changes are outlined below: Scientific Panel Dialogue on AI Governance
UK’s National Cyber Security Centre issued principles on cybersecurity
Focusing on leadership, trust, adaptability, and everyday behaviours, the principles highlight that strong security outcomes depend not just on technology, but on organisational culture. The guidance encourages a shift from compliance-driven approaches to more integrated, people-centred practices.
New EDPB guidance clarifies data sharing with non-EU authorities
The EDPB has confirmed new guidance limiting when EU data can be handed over to non-EU authorities, launched training to improve professional skills on AI and privacy, and begun reviewing plans to ease compliance for smaller businesses under the GDPR.
ARIN distributes IPv4 addresses from waiting list
The American Registry for Internet Numbers has fulfilled a new round of IPv4 address requests from its waiting list. While technical in nature, the process has implications for competition, access, and the ability of civil society organisations to operate online in a context of ongoing IPv4 scarcity.
OECD releases framework to evaluate AI capabilities against human skills
The OECD’s AI Capability Indicators represent a shift from traditional performance benchmarks toward a framework rooted in human abilities. By evaluating AI systems against criteria such as language use, social reasoning, and problem-solving, the indicators aim to offer a clearer picture of what current technologies can and cannot do
ICANN seeks feedback on draft Contract for New Domain Operators
ICANN is seeking feedback on the draft contract that will govern operators of new internet domains in its upcoming expansion. The agreement will shape how new gTLDs are run, making the consultation a key moment for ensuring security, fairness, and accountability online.
EU moves to ratify international treaty on artificial intelligence and human rights
Signed in Vilnius on 5 September 2024, the Convention was jointly developed by the Council of Europe and a wide range of states, including EU members, the United States, the United Kingdom, Israel, and others. It sets a legal standard for ensuring that AI technologies are designed, deployed, and governed in a way that protects fundamental rights and democratic values.
