European Strategy for Data – Overview of New Regulations

Last Updated: March 2024

This is a multipart series intended to provide privacy professionals with an overview of new EU legislation adopted since May 2022 under the European Union’s Strategy for Data, such as the EU AI Act, the Data Governance Act, the Digital Services Act, the Digital Markets Act and the NIS2 Directive. Each brief will depict a legislation’s objective, material and territorial scope, main requirements, enforcement, and oversight structure.

European Strategy for Data: 101 Charts

AI Act

The AI Act lays down down a comprehensive legal framework for the development, marketing and use of AI in the EU in conformity with EU values. It promotes the uptake of human-centric and trustworthy AI while ensuring a high level of protection of health, safety and fundamental rights, including democracy, the rule of law and environmental protections.

View AI Act Chart

Data Act

The Data Act creates new rules on who can access and use data generated in the EU across all economic sectors. It aims to ensure fairness in the allocation of value from data, stimulate a competitive data market, open opportunities for data-driven innovation and make data more accessible to all users.

View Data Act Chart

Data Governance Act

The DGA seeks to foster public sector information reuse; to create a supervisory framework for the provision of data sharing services; and to establish a framework for voluntary registration of entities which collect and process data made available for altruistic purposes.

View DGA Chart

Digital Markets Act

The DMA creates new obligations for big technology platforms acting as “gatekeepers providing core platform services” to create a fairer environment for business users that rely on gatekeepers, and to ensure consumers have access to better services and can easily switch providers.

View DMA Chart

Digital Services Act

The DSA aims to harmonize conditions for the provision of intermediary services and increases transparency requirements for online intermediaries.

View DSA Chart

NIS2 Directive

This chart explores the NIS2 Directive on measures for a high common level of cybersecurity across the EU, which further improves the resilience and incident response capacities of the public and private sectors, and the EU as a whole.

View NIS2 Chart