The Brussels Effect (Again): Compliance Strategies for the EU’s New Digital and Cyber Laws

Edward Machin, Charlie Wood, David Cox, Jennifer Everett

This session will look at three of the European Union’s new data-related laws that should be on your radar in the next 18 months – and, spoiler alert, the AI Act is not one of them.  How and to whom do the Digital Operational Resilience Act, NIS2, and the Cyber Resilience Act apply? How should organizations leverage their existing compliance programs to meet the new and enhanced requirements of these laws?  Join us for an engaging discussion that will give actionable insights to help you advise on the application to your organization for the next wave of EU regulation.

Edward Machin, Counsel, Ropes & Gray
Charlie Wood, Vice President, Carlyle
David Cox, Assistant General Counsel; Privacy, Data Governance, & E-Discovery, Volkswagen of America
Jennifer Everett, Partner, Jones Day

Reading Materials:

• Cyber Resilience Act
• The Digital Operational Resilience Act – An Overview
• Directive (EU) 2022/2555 of the European Parliament and of the Council
• Regulation (EU) 2022/2554 of the European Parliament and of the Council
• The Network and Information Systems Directive (NIS2)