Targets large online platforms designated as "gatekeepers" -- such as Apple, Google, Amazon, Meta, and Microsoft -- imposing obligations around interoperability, data portability, fair ranking, and prohibitions on self-preferencing. It aims to ensure contestable and fair digital markets. Applies to platforms meeting specific user and revenue thresholds in the EU.
Comprehensive EU regulation governing online intermediaries and platforms. Imposes content moderation, transparency, and risk-mitigation obligations — with tiered requirements based on platform size. Very Large Online Platforms face the strictest rules.
The EU AI Act establishes a comprehensive risk-based regulatory framework for artificial intelligence systems, including obligations for high-risk systems, transparency requirements, and governance rules for general-purpose AI models. It applies extraterritorially to many companies offering AI systems or AI-generated outputs to users in the European Union, even if the company is based in the United States.
The EU's landmark data protection regulation and the global benchmark for privacy law. It establishes comprehensive rules for collecting, processing, and transferring personal data, with fines up to 4% of global annual revenue. Applies to any organization processing personal data of individuals in the EU, regardless of where the organization is located.
Governs electronic communications privacy across the EU, including the cookie consent rules that drive cookie banners, direct marketing restrictions, and confidentiality of communications. It complements the GDPR with sector-specific rules for electronic communications. Applies to providers of electronic communications services and any website or app using cookies or similar tracking technologies in the EU.
