EDPB Issues Recommendations to Strengthen Privacy in Online Shopping: The European Data Protection Board (EDPB) has issued new recommendations clarifying when e‑commerce websites may require users to create accounts, emphasizing that shoppers should generally be able to make purchases in “guest mode” without unnecessary data collection. Mandatory account creation is deemed acceptable only in limited cases, such as subscription services or access to exclusive offers, in line with GDPR principles of data minimization and privacy by design. The EDPB also discussed the EU’s proposed Digital Omnibus regulation and highlighted the need for clearer, simpler digital rules that safeguard fundamental rights while easing compliance for organisations.

California Launches DROP Tool to Let Residents Delete Their Data from Brokers: California has introduced the Delete Requests and Opt-Out Platform (DROP), a centralized system that allows residents to send a single deletion request to all registered data brokers, replacing the previously burdensome process of contacting each company individually. Although users can begin submitting requests now, brokers are not required to start processing them until August 2026, after which they have 90 days to act and report back; some data types—such as public records or information protected under laws like HIPAA—are exempt. The California Privacy Protection Agency says DROP will give residents greater control over their personal data and help reduce risks like identity theft, fraud, and unwanted solicitations. 

EU’s Omnibus VII Package Proposes Digital Rule Simplifications: The European Commission’s Omnibus VII package introduces two proposed regulations aimed at simplifying and harmonizing EU digital legislation, including amendments to the AI Act to reduce administrative burdens, expand regulatory sandboxes, clarify obligations, and give companies more time to comply with high‑risk AI requirements. It also proposes updates to the GDPR and other data‑related laws to clarify key concepts, ease compliance, consolidate rules on data re‑use, allow higher fees for large‑scale commercial reuse of public‑sector data, and establish a single entry point for incident reporting across multiple digital acts. The Swedish government welcomes the goal of reducing regulatory burden and strengthening competitiveness, emphasizing support for simplifications that generate real benefits while safeguarding privacy and other core policy objectives.  

EU Advances Digital Connectivity with the Digital Networks Act: The European Commission has proposed the Digital Networks Act (DNA) to modernise and harmonise EU rules, making it easier for operators to invest in advanced fibre, mobile, and satellite networks by enabling cross‑EU service provision with a single registration and creating more predictable, longer, and renewable spectrum licences. The act strengthens the single market for connectivity by reducing fragmentation, encouraging spectrum sharing, and introducing EU‑level satellite authorisation, while also requiring Member States to plan the phase‑out of copper networks to accelerate the transition to next‑generation infrastructure. Aimed at boosting Europe’s competitiveness and digital sovereignty, the DNA supports investment, innovation, and secure high‑capacity networks that underpin emerging technologies such as AI and cloud services, ultimately replacing the 2018 EU Electronic Communications Code. 

Advanced Satellite‑Based Direct‑to‑Device Services Expected to Be Delayed in Sweden: The Swedish Post and Telecom Authority (PTS) concludes that advanced satellite‑based direct‑to‑device (D2D) services will not be feasible in Sweden for at least five years due to uncertain demand, limited service and device support, and unclear cooperation models between mobile and satellite operators. Coverage challenges also persist, as northern Europe may not be fully served by next‑generation satellite constellations, raising the risk of a single‑operator monopoly unless EU licensing for the 2 GHz MSS band introduces coverage requirements that enable multiple providers. With EU harmonisation of D2D rules in mobile bands not expected before 2028—and advanced services unlikely to be available sooner—Sweden can afford to wait for these regulatory developments while current basic D2D services (IoT, voice, text, low‑rate data) remain technically possible today. 

Telia Sets New Record in 2025 by Blocking 92 Million Fraudulent Calls: Telia blocked 92 million fraud attempts in 2025, a 70% increase from the previous year—equivalent to three fraudulent calls per second never reaching customers, enabled by advanced real‑time detection systems and strengthened industry collaboration. Of these blocked calls, 57 million were wangiri scams and 35 million were spoofed calls, reflecting both improved defenses and increasingly aggressive activity from fraudsters as countermeasures become more effective. Telia credits the results to new technical solutions, joint anti‑spoofing efforts among operators, and cooperation with the Police and MSB—while urging continued public vigilance to maintain trust in digital services.

EU Commission Releases Practical Guidelines to Support AI Act Implementation: The EU’s AI Office is developing a comprehensive set of practical guidelines throughout 2026 to support smooth implementation of the AI Act, covering areas such as high-risk classification, transparency requirements, serious incident reporting, and fundamental rights impact assessments. These guidelines also address responsibilities across the AI value chain, post-market monitoring, quality management systems tailored for SMEs, and the interplay between the AI Act and other EU legislation. This initiative aims to foster predictable enforcement, support innovation, and strengthen Europe’s global leadership in safe AI deployment. 

UK Opens Investigation Into X Over Grok’s Sexualised AI Imagery: The UK media regulator Ofcom has launched a formal investigation into X after reports that its Grok AI chatbot generated undressed deepfakes of adults and sexualised images of children, potentially amounting to intimate image abuse or child sexual abuse material under UK law. The probe will assess whether X failed to conduct proper risk assessments, protect users—especially children—from illegal content, or remove such material once aware of it, obligations required under the Online Safety Act. Ofcom warned that non‑compliance could lead to severe penalties, including fines of up to 10% of global revenue or even restrictions on platform access in the UK. 

EU Publishes First Draft Code of Practice on Transparency for AI‑Generated Content: The European Commission has released the first draft of its Code of Practice on Transparency of AI‑Generated Content, providing non‑binding but practical guidance to help providers and deployers comply with Article 50 of the EU AI Act, particularly around marking, detecting, and labelling AI‑generated or manipulated content. Developed collaboratively with industry, academia, civil society, and Member States, the draft introduces a multilayered transparency approach—including metadata provenance, imperceptible watermarking, and detection tools—to ensure AI‑generated outputs are both machine‑readable and recognisably artificial to users. Serving as an early implementation guide ahead of Article 50’s enforcement in 2026, the draft aims to reduce risks of deception and strengthen trust in digital information ecosystems without creating new legal obligations. 

Sweden’s Cybersecurity Act Enters Into Force: Sweden’s new Cybersäkerhetslag (Cybersecurity Act), which implements the EU’s NIS2 Directive into Swedish law, came into force on 15 January 2026, replacing the prior NIS Act and aiming to raise cybersecurity standards across multiple sectors by requiring organisations to manage risks and protect their network and information systems. According to PTS, the law applies broadly across 18 sectors, places obligations on affected entities including appropriate security measures and incident reporting, and grants supervisory authorities powers to enforce compliance with sanctions including fines up to 2 percent of global turnover. As a supervisory authority for five sectors under the law (e.g., digital infrastructure and post services), PTS is preparing related regulations and oversight activities while also, as a covered entity itself, adjusting to its own obligations under the new regime. 

Google Cloud Designated as Critical Provider Under EU DORA: Google Cloud EMEA has been officially recognized by the European Supervisory Authorities as a critical ICT third-party service provider under the EU Digital Operational Resilience Act (DORA), reflecting its systemic importance to the financial sector. This designation introduces direct regulatory oversight through a Lead Overseer, fostering transparency and collaboration to strengthen ICT risk management and resilience. Google Cloud remains committed to supporting customers’ compliance journeys with resources like risk management guides, contract updates, and subcontractor transparency tools. 

ESAs Release Practical Tips to Combat Online Fraud and Scams: The European Supervisory Authorities (EBA, EIOPA, and ESMA) have issued two new factsheets to help consumers identify, prevent, and respond to online and crypto-related fraud, warning that AI-generated content like deepfake voices and videos is making scams more deceptive. These guides explain common schemes—such as phishing, impersonation, investment scams, and Ponzi operations—provide real-life examples, and translate warning signs into actionable advice on verifying sources, safeguarding personal data, and pausing before responding. Available in all EU languages and distributed via national authorities, the factsheets aim to boost financial safety and resilience among EU consumers. 

New Swedish Law Expands Criminal Liability for Technical Trade Secrets (Effective January 1, 2026): Sweden has introduced a new law that makes it a criminal offense not only to unlawfully access but also to misuse or disclose technical trade secrets—even when the individual originally had lawful access through employment or business relationships. The law specifically targets technical trade secrets such as drawings, manufacturing processes, prototypes, and research results, with violations now subject to fines or imprisonment—reflecting the growing importance of safeguarding innovation and preventing industrial espionage in Sweden’s economy.  The reform forms part of a broader government effort to strengthen protection against insider threats and ensure a more comprehensive criminal framework against attacks on trade secrets, supporting Swedish technological development and national competitiveness. 

“Intellectual Property Support for Small Businesses” Website Launched: The EU has launched a redesigned Intellectual Property Support for Small Businesses website, marking the next stage of the EUIPO’s Ideas Powered for Business initiative and aiming to make IP more understandable, accessible, and practical for SMEs across Europe. The updated platform provides a single hub offering practical tools, expert advice, IP funding, online assessment tools like IP Scan, step‑by‑step guides, training resources, and event updates, all available in 23 EU languages to support businesses at every stage of their IP journey. By centralising free, personalized support and improving access to reliable IP information, the initiative strengthens SME competitiveness and highlights the EU’s commitment to promoting effective intellectual property management for small businesses. 

Disney Signs Agreement with OpenAI and Sends Google a Cease‑and‑Desist Notice –  Belgian Court Rejects Copyright Claim: Disney has entered a three‑year licensing agreement with OpenAI, allowing Sora to create short fan‑inspired videos featuring over 200 Disney, Marvel, Pixar, and Star Wars characters, with some content to appear on Disney+; the deal also includes API usage, employee access to ChatGPT, and an €850,000 investment with warrants for Disney. One day later, Disney issued Google a cease‑and‑desist letter accusing it of copying large amounts of Disney IP to train AI models and distributing unauthorized AI‑generated images and videos, requesting that Google cease returning infringing results and implement technical safeguards. Separately, the Commercial Court of Ghent dismissed a copyright infringement claim by Flemish writer Piet Baete against the producers of the series High Tides, ruling that it was not an unauthorized adaptation of his novel. 

EU Issues Guidance for Price Undertaking Offers on Chinese Battery Electric Vehicles: The European Commission has published a new Guidance Document outlining how Chinese exporters of battery electric vehicles (BEVs) may submit price‑undertaking offers as an alternative to existing EU anti‑subsidy duties imposed in October 2024, which currently range from 7.8% to 35.3%. The guidance details key elements required in any offer—including minimum import prices, acceptable sales channels, rules to prevent cross‑compensation, and expectations around future EU investments—all of which will be assessed under uniform legal criteria aligned with WTO rules. This step follows ongoing EU‑China consultations aimed at finding WTO‑compatible solutions to trade distortions in the EV sector and signals both sides’ willingness to resolve the dispute while maintaining stability in global automotive supply chains.  

EU–Mercosur Free Trade Agreement Opens New Opportunities for Swedish Companies: Business Sweden highlights that the EU’s upcoming free trade agreement with Mercosur represents a major breakthrough for Swedish exporters, creating improved access to some of Latin America’s largest and fastest‑growing markets. The deal is expected to eliminate or phase out high tariffs on key Swedish export sectors—such as machinery, electrical equipment, and transport goods—while simplifying customs procedures and increasing predictability for trade across Argentina, Brazil, Paraguay, and Uruguay. With more transparent rules, fewer trade barriers, and stronger cooperation frameworks, the agreement positions Swedish companies to expand their presence in the region and compete more effectively in one of the world’s biggest emerging free‑trade zones.   

USD100 Billion in U.S. Goods Face Tariff Risk Amid Trump’s Greenland Pressure Campaign: The European Union has prepared a list targeting roughly $100 billion worth of American goods, ranging from aircraft to bourbon, as potential retaliation should trade talks collapse in response to President Trump’s push to secure U.S. control over Greenland. These tariff plans were drawn up as leverage ahead of high‑stakes meetings, signaling that Brussels is ready to escalate if Washington proceeds with threatened duties on European countries that oppose the Greenland initiative. The dispute underscores a growing transatlantic rift, with the EU considering broader economic countermeasures under its Anti‑Coercion Instrument as the U.S. ties tariff relief to Greenland’s political status. 

• AI Sweden – GenAI Lunch n’ Learn 

Date:  January 30, 2026

Time:  To be announced

Location: Online

Registration: Link 

• Swedish Intellectual Property Office: What’s new in the Nice Classification 2026?

Date:  5 February 2026

Time:  09:00-09:45 (CEST)

Location: Webinar

Registration:  Link

• European Commission: Building an ecosystem for GenAI in Public Administrations

Date: 09 February 2026

Time: 10:00-12:00 (CEST) 

Location: Online

Registration: Link