European Union

Targets large online platforms designated as "gatekeepers" -- such as Apple, Google, Amazon, Meta, and Microsoft -- imposing obligations around interoperability, data portability, fair ranking, and prohibitions on self-preferencing. It aims to ensure contestable and fair digital markets. Applies to platforms meeting specific user and revenue thresholds in the EU.

Comprehensive EU regulation governing online intermediaries and platforms. Imposes content moderation, transparency, and risk-mitigation obligations — with tiered requirements based on platform size. Very Large Online Platforms face the strictest rules.

The world's first comprehensive AI regulation, classifying AI systems by risk level from prohibited (social scoring, manipulative AI) to high-risk (hiring, credit, law enforcement) requiring conformity assessments. Compliance deadlines are phased through 2027. Applies to any company deploying or developing AI systems used in the EU.

The EU's landmark data protection regulation and the global benchmark for privacy law. It establishes comprehensive rules for collecting, processing, and transferring personal data, with fines up to 4% of global annual revenue. Applies to any organization processing personal data of individuals in the EU, regardless of where the organization is located.

Governs electronic communications privacy across the EU, including the cookie consent rules that drive cookie banners, direct marketing restrictions, and confidentiality of communications. It complements the GDPR with sector-specific rules for electronic communications. Applies to providers of electronic communications services and any website or app using cookies or similar tracking technologies in the EU.