APRIL 2026 ISSUE NO. 307

https://campaign-image.com/zohocampaigns/133052000002457092_zc_v53_artboard_1.png
   

APAC
  • India’s Ministry of Electronics and IT directed government ministries to classify data into three categories to safeguard sensitive information.
  • South Korea’s Internet and Security Agency released revised guide on the Information and Communications Network Act to prevent illegal spam.
  • Australian Communications and Media Authority fined an athletic apparel company AUD 702,900 for violation of spam regulations.
  • Singapore’s Health Sciences Authority launched AI-enabled medical device risk classification tool for beta testing.
  • New Zealand’s Privacy Commissioner issued new privacy guidance to support frontline workers in education sector.
  • Vietnam’s Artificial Intelligence Law establishing a national legal framework on AI came into effect.
   

EMEA
  • European Data Protection Board and the Supervisor released a joint opinion adopting a proposal on European Biotech Act.
  • CNIL, France published an FAQ on recognized data altruistic organizations under the Data Governance Regulation.
  • Italian Data watchdog imposed EUR 2 million fine on a multi-utility company for using inaccurate and outdated customer data for contract activation.
  • AEPD, Spain fined a football club EUR 500,000 for implementing biometric system without conducting the required Data Protection Impact Assessment.
  • Portugal’s Cybersecurity Centre launched a public consultation on draft regulations under its cybersecurity legal framework.
  • European Council agreed its position on the proposal to simplify the implementation of harmonised rules on AI.
  • France’s Council of State upheld EUR 40 million fine imposed by CNIL on an advertising company for GDPR violations.
  • Turkish Data Protection Authority reported a data breach involving a children’s clothing company.
  • Spain’s Cryptologic Centre released infographics on compliance with the NIS2 directive.
   

Americas

  • The Children and Teens’ Online Privacy Protection Act 2.0 passed with amendments in the US Senate.
  • California’s Privacy Authority imposed a fine of USD 375,703 on an automotive manufacturer for making the opt-out process unnecessarily complex for users.
  • A Bill addressing lawful access in digital information introduced to the Canadian Parliament.
  • Brazil’s Federal Council of Medicine issued a resolution on the use of AI in medicine, incorporating the privacy by design principle.
  • Virginia passed legislation prohibiting the sale of consumers’ precise geolocation data.
  • A bill on AI companions’ safety requiring transparency and suicide prevention measures passed by both the houses in Oregon.
  • A Georgia bill prohibiting surveillance pricing in retail food establishments progressed to it second reading in the House.
  • Ecuador’s Data Protection Superintendency published a draft regulation on complaints procedure for Data Protection Officers.

   

Click here to read the complete newsletter with official links

   

Gurugram office: 1st Floor, AIHP Palms, 242 & 243, Udyog Vihar Phase-IV, Gurugram - 122015

Dubai office: Unit: 9, 9th Floor, Arabian Sky Business Centre, CitiBank Building, Sheikh Rashid Road, Dubai, UAE

Phone: +91-124-4309062 | Email: newsletter@Privacydesk.in 

Delhi (NCR) | Dubai 

   

Disclaimer: This update is the copyright of Reina Legal. The update is not intended to be a form of solicitation or advertising. The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate thereafter. No person should act on such information without appropriate professional advice based on the circumstances of a particular situation. Unsubscribe