Swedens’s Cybersecurity Act has now entered into force
From 15 January 2026, Sweden’s Cybersäkerhetslagen implements NIS2 and reshapes how organisations must govern cybersecurity and digital risk. This article explains who is in scope, key governance expectations, and why structured risk management and accountability are now essential.
€530 Million in Fines: TikTok’s Costly Data Transfer Mistake and GDPR Lessons Learned for other companies
TikTok’s €530 million GDPR fine reveals critical data protection lapses in cross-border data transfers. From misleading regulators to exposing European data to unauthorized access, TikTok’s compliance failures are a wake-up call for global businesses. Could your data transfer practices withstand similar scrutiny? Discover the key lessons and strategies to avoid costly penalties.
How to Operationalize Human Oversight in HR: Key Steps for AI Governance and Privacy
Meaningful human oversight is a legal obligation under the EU AI Act for high-risk AI systems, requiring active, informed intervention by individuals with the authority and in-depth understanding of AI systems (AI literacy) to override decisions and identify compliance risks. This article explores how oversight must function in practice and how it intersects with automated decision-making under GDPR Article 22.