On October 21, 2025, the New York Department of Financial Services (NYDFS) issued guidance to help licensees comply with its cybersecurity regulation. The non-exclusive checklists may be of interest to companies not licensed by NYDFS and even those not offering financial services, given NYDFS’ comment that the guidance is intended to “recommend industry best
Norton Rose Fulbright Blogs
Latest from Norton Rose Fulbright
The Australian IP Report 2025: Staying ahead of the pack
This article was co-authored with Alyson Poole, with thanks to Jerome Messiha.
Overview
IP Australia released the Australian IP Report 2025 (IP Report), providing the latest IP trends, statistics and policy developments across Australia. In this article we explore the trends and developments across key industries including consumer markets, energy and transport, pharmaceuticals and…
Are You Ready for an AI Compliance Check?
The Office of the Privacy Commissioner for Personal Data (PCPD) in Hong Kong conducted compliance checks on 60 local organizations across a wide range of sectors to study their use of Artificial Intelligence (AI) and its impact on personal data privacy, with the aim to monitor compliance with the Personal Data (Privacy) Ordinance (“PDPO”) in…
Happy Cyber Awareness Month
Happy October and Cyber Awareness Month! While October ends with ghosts and goblins and other scary monsters for Halloween, the entire month of October is dedicated to raising awareness of cyber security and preventing (and if necessary responding to) cyber security incidents.
It is hard in this day and age not to be aware of…
Italy’s Law No. 132/2025 on Artificial Intelligence
On September 23, 2025, Italy adopted Law no. 132/2025 on Artificial Intelligence (AI). The law will enter into force on 10 October 2025 and aims, inter alia, to complement the Regulation EU 2024/1689 (EU AI Act).
Managing AI-related cyber risks
On 6 October 2025, HM Treasury (HMT) issued, G7 cyber expert group statement on Artificial Intelligence and Cybersecurity.
Rather than set guidance or regulatory expectations, the statement seeks to raise awareness of artificial intelligence’s (AI) cybersecurity dimensions and outlines key considerations for financial institutions, regulatory authorities, and other stakeholders that support security and resilience…
Court Halts Anthropic’s Historic AI Copyright Settlement
Judge William Alsup expressed broad concerns about a proposed $1.5 billion settlement deal between Anthropic PBC and a number of author-plaintiffs, questioning whether the agreement adequately protects class members and Anthropic. At a September 8 preliminary hearing, Judge Alsup denied the parties’ motion for approval without prejudice, later issuing an order postponing approval until more…
New FCA webpage – AI and the FCA: Our approach
On 9 September 2025, the Financial Conduct Authority (FCA) published a new webpage, AI and the FCA: our approach.
The webpage briefly covers how the FCA’s rules apply to AI and how AI is helping the FCA become a smarter regulator.
FCA Feedback Statement 25/5: AI Live Testing
On 9 September 2025, the Financial Conduct Authority (FCA) published Feedback Statement 25/5: Summary of Feedback Received on the Engagement Paper proposing AI Live Testing (FS25/5).
In FS25/5 the FCA summarises the feedback it received to an Engagement Paper it published in April 2025 which set out a proposal for AI Live Testing.
The FCA…
NSW Work Health and Safety law update: New Work Health and Safety Regulation 2025 commences, and Reform and Modernisation Bill introduced to Parliament
This article was co-authored with Arabella Cull.
The Work Health and Safety Regulation 2025 commenced on 22 August 2025, replacing the Work Health and Safety Regulation 2017 and introducing changes such as the application of the hierarchy of control measures to psychosocial risks, and new information sharing duties for the silica worker register. At the…