2025 and Compliance - Legal Tech Connection

AI Compliance Might Seem Overwhelming, But Gartner Boils It Down to 4 Principles

Legal Tech Monitor

JULY 12, 2023

“While laws in many jurisdictions may not come into effect until 2025, legal leaders can get started while they wait for finalized regulation to take shape,” said Laura Cohn, a Gartner senior principal.

Compliance

Compliance Law Law

Data Act Becomes Law: What Next?

Inside Privacy

DECEMBER 15, 2023

As noted below, the Data Act will shortly be published in the Official Journal and become enforceable in 2025. The Data Act’s obligations are broad and may require significant engineering work to re-design products to ensure compliance. We provide below a brief overview of key takeaways and timelines.

Law

Law Law Compliance Software

New York Department of Financial Services Finalizes Second Amendment to Cybersecurity Regulation

Inside Privacy

NOVEMBER 14, 2023

Compliance periods for the newly finalized requirements in the Second Amendment will be phased over the next two years, as set forth in additional detail below. NYDFS also provided further context on its expectations for compliance in responding to public comments even where it did not make changes. See Section 500.17 (a). a)(2), 500.7,

Compliance

Advantages of Private Cloud Technology for Law Firms’

CaseFox

FEBRUARY 28, 2023

Enhanced Security and Compliance Law firms are entrusted with sensitive client data, including financial, legal, and personal information. Additionally, private cloud solutions can be customized to meet specific compliance requirements, ensuring that firms are meeting legal and regulatory compliances.

Law firm

Law firm Virtual Meeting Law Law

The EU’s Cyber Resilience Act Has Now Been Agreed

Inside Privacy

DECEMBER 1, 2023

In terms of timing, the CRA will come into force over a phased transition period starting in late 2025. As with most recent European technology regulation, the CRA will come with the threat of high penalties for non-compliance – up to €15 million or 2.5% of global turnover.

Due diligence

Due diligence Software Compliance Law

ENISA Releases Comprehensive Framework for Ensuring Cybersecurity in the Lifecycle of AI Systems

Technology Law Dispatch

JUNE 30, 2023

ENISA highlights the effectiveness of cybersecurity certifications, such as ISO/IEC 15408 for ICT security assessment or ISO/IEC 18045 for Common Criteria evaluation, in ensuring compliance. Once published, there will be a period of 24 months before it becomes effective (estimated Q3/4 2025).

Data protection

Data protection Compliance

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

Debevoise Data Blog

APRIL 20, 2023

This signals the likely increased regulatory expectation that Boards more closely oversee digital operational resilience-related risks than may currently be the case, including by ensuring, at a minimum, compliance with DORA’s varied and detailed technical and policy obligations. What is the “Management Body” ?

Compliance

Compliance e-records Hearing

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

Debevoise Data Blog

APRIL 20, 2023

This signals the likely increased regulatory expectation that Boards more closely oversee digital operational resilience-related risks than may currently be the case, including by ensuring, at a minimum, compliance with DORA’s varied and detailed technical and policy obligations. What is the “Management Body” ?

Compliance

Compliance e-records Hearing

How Enhanced Reporting Can Improve’s Legal Operations

MatterSuite

SEPTEMBER 4, 2023

Gartner experts expect legal departments to increase their spending on legal technology threefold by 2025. Organizations’ legal departments continually grapple with managing intricate matters, regulatory compliance, contracts, and numerous legal responsibilities. However, investing in data integration solutions is crucial.

Time-tracking

Time-tracking Compliance Case management Analytics

Clients Are Spending More on Legal Tech: Can Smaller Firms Keep Up?

Attorney at Work

JANUARY 20, 2022

the percentage of in-house legal budgets spent on technology is expected to increase threefold by 2025 from 2020 levels as legal departments “increase spending on technology to reduce the dependency on outside counsel, address COVID-19, and satisfy a long-overdue need to modernize, digitize and automate legal work.”.

Legal tech

Legal tech Legal tech Document automation Law firm

The UK Online Safety Act – Keeping you informed here

Technology Law Dispatch

NOVEMBER 22, 2023

Category 1 service providers must keep records of compliance with their obligations, publish them, enable functionality within the services to empower users to control the content they are exposed to, and, if children are likely to access their services, comply with specific child safety duties.

Compliance

Compliance Data protection

EU cyber regulation wave quietly rolls on – Commission set to finalize new cyber standards

Inside Privacy

DECEMBER 5, 2023

As with most recent European technology regulation, the Cyber Resilience Act will come with the threat of high penalties for non-compliance – up to €15 million or 2.5% of global turnover. What’s happening next?

Due diligence

Due diligence Compliance Law Law

How Will Technology Change in the Future for Lawyers?

Lawmatics

FEBRUARY 13, 2024

Cybersecurity and privacy compliance: With the increasing reliance on digital tools, lawyers will need to focus more on cybersecurity and privacy issues. Ensure the future of your law firm with Lawmatics According to Gartner research , legal departments will likely triple their investments in legal technology by 2025.

Lawyer

Lawyer Client Intake Time-tracking Document automation

UK Financial Regulators Publish Response to AI Consultation – Seven Takeaways

Debevoise Data Blog

OCTOBER 31, 2023

This could impact financial firms who are considering using the EU AI Act as their ‘high watermark’ for AI regulatory and governance compliance, who will have to accommodate any UK-specific requirements in their compliance programmes. The UK Financial Authorities could look to such existing resources when developing future guidance.

Compliance

Compliance Due diligence Machine learning Data protection

EU Rules Restricting the International Transfers of Non-Personal Data

Inside Privacy

FEBRUARY 1, 2024

Transfers of Non-Personal Data Outside of the EU The Data Governance Act (which applies as of September 24, 2023), the Data Act (which will apply as of September 12, 2025), and the forthcoming European Health Data Space (which is still in draft form) contain restrictions on the transfer of non-personal data outside the EU.

Intellectual Property

Intellectual Property State law Court Compliance

India’s renewed approach to Chinese investments in the electronics sector

Ikigai Law

MAY 29, 2023

The National Council of Applied Economic Research and Confederation of Indian Industry in their report titled ‘Building India’s Export Competitiveness in Electronics–2025-26’ called for easing regulations for investments from China. [iv] Which party would bear the cost of compliance?

Compliance

The EU Digital Operational Resilience Act (DORA): What you need to know and how to prepare

Debevoise Data Blog

NOVEMBER 21, 2022

Our key takeaways are: For financial services firms – determine if you are covered as a “financial entity” and, if so, begin charting a path to compliance: it is likely to be a resource-intensive undertaking and one which demands ongoing engagement from across the business, including management. What are the penalties for non-compliance?

Compliance

Compliance Due diligence Analytics Software

Connecticut’s Next Generation Data Privacy Law

Debevoise Data Blog

MAY 23, 2022

Here, we highlight key aspects of the CTPA with a focus on the provisions that companies should consider in their compliance preparations. The CTPA bolsters opt-out rights by requiring controllers to recognize a global opt-out preference by January 1, 2025. CTPA § 6(e)(1)(A)(ii). The global opt-out preference signal is not new.

Law

Law Law Compliance Attorney

Overview of Global AI Regulatory Developments and Some Tips to Reduce Risk

Debevoise Data Blog

MAY 2, 2023

While the latest draft EU AI Act is not yet publicly available, early reports indicate it will feature new rules concerning compliance obligations specific to generative AI and foundation models, including several unique components such as required disclosures of copyrighted works included in the models’ training data.

Compliance

Compliance Time-tracking Data protection Law

4 questions to ask before choosing an enterprise legal management system

Simple Legal

FEBRUARY 15, 2023

By 2025, a whopping 100% of all contract life cycle management (CLM) tools will rely on AI to help with scanning content in contracts. The answer is clear: investing in a tool with proper security features and up-to-date compliance regulations not only prevents catastrophe but can also save you money in the long run.

Time-tracking

Time-tracking Legal tech Legal tech Machine learning

The Future of Legal Technology

Lawmatics

DECEMBER 27, 2023

7 Regulatory compliance Legal tech addresses the growing complexity of regulatory compliance by offering solutions that help businesses stay updated and compliant with evolving requirements. 8 Legal analytics Data analytics in the legal field provides insights into case outcomes, litigation trends, and legal strategy optimization.

Legal technology

Legal technology Legal technology Dispute resolution Machine learning

Utah Joins the Comprehensive State Privacy Law Club

Debevoise Data Blog

APRIL 29, 2022

The UCPA is set to be reviewed by the attorney general who must submit a report to the legislature by July 1, 2025. The UCPA, effective on December 31, 2023, is largely consistent with other comprehensive state privacy laws, but includes several key differences.

Law

Law Law Data protection Attorney

A Summary of the Final Amendments to the NYDFS Cyber Rules

Debevoise Data Blog

NOVEMBER 14, 2023

The Second Amendment’s compliance requirements will take effect in phases. For legal and compliance teams, the new requirements on certification, risk assessments, and governance will call for cross-functional participation throughout the coming year as companies assess their compliance with NYDFS’s Cybersecurity Regulation.

Failure-to-appear

Failure-to-appear Compliance Time-tracking

What is a Legal Tech Platform?

Lawmatics

DECEMBER 5, 2023

In response, legal technology budgets are poised to triple by 2025, according to Gartner. These platforms prioritize data security and compliance with legal and ethical standards to protect sensitive client information. What is a Legal Tech Platform? Are you ready to grow your firm with Lawmatics? Sign up for a product demo today.

Legal tech

Legal tech Legal tech Client Intake Time-tracking

European Data Protection Roundup – January 2024

Debevoise Data Blog

FEBRUARY 27, 2024

EU Data Act: Legislation has entered into force which will impose a range of new obligations on businesses from September 2025. These new obligations and protections will take effect from September 2025. However, it remains to be seen how this new office will interact with companies in the context of cyber incidents.

Data protection

Data protection Compliance Court e-records

European Data Protection Roundup – December 2023

Debevoise Data Blog

JANUARY 25, 2024

They are also reminded of their obligation to maintain appropriate technical and organisational measures in relation to their data processing, and may wish to review their compliance with these measures. The costs of monitoring in compliance with DORA must be borne by the critical third-party IT providers, not the authorities.

Data protection

Data protection Court e-records Compliance

The UK’s Emerging Approach to AI Regulation

Debevoise Data Blog

FEBRUARY 22, 2024

Notably, the next UK General Election will take place before the end of January 2025 and, depending on the outcome, a new government could adopt an entirely different AI strategy. For the time being though, five key takeaways are: Individual UK regulators will oversee AI within their respective domains.

Data protection

Data protection Law Law Compliance

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

Berkley Technology Law Journal

JANUARY 2, 2024

By properly scoping these reporting requirements, CISA can encourage industry compliance with reporting requirements and focus its efforts on responding to high severity cyber incidents. CISA Rulemaking Process CISA is expected to publish a Notice of Proposed Rulemaking (NPRM) soon and must issue a final rule by September 15, 2025.

Failure-to-appear

Failure-to-appear Compliance Law Law

FinTales Issue 30: In Memoriam of the 2000-rupee note

Ikigai Law

JUNE 1, 2023

Main Course Finding a way around the circuitous KYC maze The challenge of KYC compliance haunts every financial institution. But even if KYC norms are simplified and ambiguities are clarified – compliance with the letter of the law is not enough.REs’ internal KYC practices must be tailored to the unique levels of risk exposure that they face.

e-records

e-records Compliance Due diligence Law

Sustainability Roundup 2022

Ikigai Law

JANUARY 25, 2023

SEBI is also expected to soon issue a framework for ESG rating providers – third party agencies that help determine ESG compliance of listed companies. She also said that SEBI will accommodate Indian companies’ need to comply with international standards on ESG, which is important to attract global funds.

Mediator

Mediator Software Compliance Law

The EU AI Act: Political Agreement Secured, We Await the Final Text

Debevoise Data Blog

DECEMBER 17, 2023

If this timeline is met, the first provisions of the Act to come into force (the prohibition on “unacceptable risk” AI systems) will take effect in late 2024, followed by the requirements related to “high risk” systems in early 2025, and the remaining provisions in 2026. Conduct a preliminary review of current AI systems.

Data protection

Data protection Compliance Time-tracking Law

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Debevoise Data Blog

JULY 9, 2021

These changes add rights for consumers, and compliance obligations for businesses, that take the U.S. Sensitive Data Like the VCDPA, Colorado’s bill follows the European model of according enhanced rights, and imposing enhanced compliance obligations, for so-called “sensitive” data. This cure provision will expire on January 1, 2025.

Data protection

Data protection Compliance Attorney State law

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Above the Law - Technology

DECEMBER 4, 2023

Lupl tackles the chaotic, fragmented nature of an attorney’s day by centralizing task management, documentation, access to knowledge, and communication, simplifying collaboration, and ensuring security and compliance with standards like ISO 27001 and SOC 2 Type 2. What problem do you solve? Who are your competitors?

Litigator

Litigator Litigation Mediator Law firm

Legal Tech Connection

AI Compliance Might Seem Overwhelming, But Gartner Boils It Down to 4 Principles

Data Act Becomes Law: What Next?

Trending Sources

New York Department of Financial Services Finalizes Second Amendment to Cybersecurity Regulation

Advantages of Private Cloud Technology for Law Firms’

The EU’s Cyber Resilience Act Has Now Been Agreed

ENISA Releases Comprehensive Framework for Ensuring Cybersecurity in the Lifecycle of AI Systems

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

How Enhanced Reporting Can Improve’s Legal Operations

Clients Are Spending More on Legal Tech: Can Smaller Firms Keep Up?

The UK Online Safety Act – Keeping you informed here

EU cyber regulation wave quietly rolls on – Commission set to finalize new cyber standards

How Will Technology Change in the Future for Lawyers?

UK Financial Regulators Publish Response to AI Consultation – Seven Takeaways

EU Rules Restricting the International Transfers of Non-Personal Data

India’s renewed approach to Chinese investments in the electronics sector

The EU Digital Operational Resilience Act (DORA): What you need to know and how to prepare

Connecticut’s Next Generation Data Privacy Law

Overview of Global AI Regulatory Developments and Some Tips to Reduce Risk

4 questions to ask before choosing an enterprise legal management system

The Future of Legal Technology

Utah Joins the Comprehensive State Privacy Law Club

A Summary of the Final Amendments to the NYDFS Cyber Rules

What is a Legal Tech Platform?

European Data Protection Roundup – January 2024

European Data Protection Roundup – December 2023

The UK’s Emerging Approach to AI Regulation

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

FinTales Issue 30: In Memoriam of the 2000-rupee note

Sustainability Roundup 2022

The EU AI Act: Political Agreement Secured, We Await the Final Text

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Stay Connected