APRIL 2026 ISSUE NO. 308

https://campaign-image.com/zohocampaigns/133052000002457092_zc_v53_artboard_1.png
   

EMEA
  • The European Data Protection Board initiated a Coordinated Enforcement Framework on transparency and information obligations under GDPR. 
  • UK’s ICO published guidance on assessing compatibility and reuse of personal data under the purpose limitation principle. 
  • Italian data watchdog imposed EUR 17.6 million fine on a banking group for profiling customers’ data in a corporate transaction. 
  • Spain’s Competition Commission proposed regulatory improvements to strengthen telecommunications security during emergencies. 
  • Poland’s Parliament adopted the amendments to the Data Management Act aligning with EU Data Governance framework. 
  • Swedish Privacy Authority published advisory on smart glasses, highlighting privacy risks and responsible use. 
  • The EU proposed Digital Networks Act to harmonize telecoms rules and boost investment in digital infrastructure across Member States. 
  • Romania’s Data Protection Authority fined an automobile company RON 637,260 for personal data breach. 
  • Serbian Data Protection Commissioner submitted its annual report for 2025 to the National Assembly.  
  • Turkish Data Protection Authority announced data breach involving a consumer complaint platform.
   

Americas
  • The Washington legislature passed a bill regulating AI companion chatbots to enhance consumer protection, especially for minors. 
  • A New York bill requiring notice on generative AI systems approved by the Senate. 
  • Brazil’s Digital Statute for Children and Adolescents, mandating age verification and platform accountability came into force.   
  • The U.S. Court of Appeals for the Ninth Circuit upheld key provisions of California’s Age-Appropriate Design Code Act. 
  • Oklahoma passed comprehensive legislation strengthening data privacy protections.  
  • A coalition of U.S. Attorneys General filed a lawsuit challenging federal demands for access to student data.  
  • South Dakota enacted legislation addressing criminal invasions of privacy and prohibiting digitally fabricated content. 
  • Maryland introduced a bill establishing consumer protection and liability rules for chatbot technologies. 
  • The President of Brazil signed two decrees regulating the Digital Statute of Children and Adolescents and the Data Protection Agency. 
   

APAC

  • Australian Office of Information Commissioner released guidance on age assurance technologies. 
  • Hong Kong’s Privacy Commissioner published an alert highlighting privacy risk associated with agentic AI agents, urging responsible use. 
  • Vietnam’s Ministry of Public Security launched a consultation on draft decree on penalties for violations related to cybersecurity and personal data protection.

   

Click here to read the complete newsletter with official links

   

Gurugram office: 1st Floor, AIHP Palms, 242 & 243, Udyog Vihar Phase-IV, Gurugram - 122015

Dubai office: Unit: 9, 9th Floor, Arabian Sky Business Centre, CitiBank Building, Sheikh Rashid Road, Dubai, UAE

Phone: +91-124-4309062 | Email: newsletter@Privacydesk.in 

Delhi (NCR) | Dubai 

   

Disclaimer: This update is the copyright of Reina Legal. The update is not intended to be a form of solicitation or advertising. The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate thereafter. No person should act on such information without appropriate professional advice based on the circumstances of a particular situation. Unsubscribe