Gain insights on the latest regulatory updates related to digital, data and tech and what action they require of you by reading the latest updates (including alerts).
Only some are linked below. To read all previous insights and be alerted to future insights, join the relevant Michalsons programme. You can view the public and the “Members only” ones if you are a member and logged in.
As of 2 August 2025, the EU AI Act Commencement date for GPAI laws has come into effect, introducing new regulatory obligations for GPAI providers. Although, earlier this year, critics warned that the law could stifle innovation, regulators admitted [...]
South Africa has built one of the most detailed regulatory frameworks for cryptocurrency on the African continent. With innovative fintech players leading the way, more people are turning to cryptocurrency for payments, investments, and cross-border transfers. But with growth comes [...]
The EU AI Act commencement date was 2 August 2024. The Act has taken effect and will continue to be implemented in a phased approach. Now that the EU AI Act has been published in the Official Journal (12 [...]
The information officer of every public body in South Africa must submit a PAIA section 32 report to the Information Regulator annually. Section 32 of PAIA makes it compulsory - a regulatory requirement. PAIA gives effect to section 32 [...]
All private bodies must submit a PAIA section 83(4) report (PAIA report) to the information regulator according to a notice the regulator published. The regulator has requested private bodies to submit this report annually in terms of section 83(4) [...]
Zimbabwe’s Cyber and Data Protection Act clearly sets out how organisations must collect, use, and protect personal information. Alongside the Cyber and Data Protection (Licensing of Data Controllers and Appointment of Data Protection Officers) Regulations, it forms a comprehensive legal [...]
Today, the South African information regulator held a webinar called "Ask the Regulator". The purpose of the webinar was to allow participants to ask the regulator questions and for the regulator to encourage and support them in complying with POPIA […]
The POPIA Amendment Regulations commenced with immediate effect on 17 April 2025. These amended regulations cover new proposed rules of procedure, administrative fines, and expand the data subject's rights to their personal information. In this post, we summarise the regulations, [...]
The information regulator published a Guideline on notification of security compromises to the information regulator in July 2020. The guideline explains the procedure responsible parties or information officers should follow to notify the regulator of a security compromise or data [...]
The Department of Trade, Industry, and Competition (DTIC) plans to make CPA amendments to the Consumer Protection Act (CPA) regulations. These CPA regulation amendments aim to address direct marketing practices in South Africa by introducing a National government-run opt-out registry [...]
The Copyright Amendment Bill will have a significant impact on publishers. The bill aims to strike a balance between creators’ rights and the public's access to copyrighted works. While the bill includes some much-needed updates, it has sparked considerable debate [...]
The Botswana Data Protection Act, 2024 (the new Act) has officially come into effect on 14 January 2025 after the Data Protection Act of 2018 (the 2018 Act) was repealed after facing multiple delays since its transition in 2021. The [...]
