Blog

Insights, guides and news from the compliance and RegTech world

AI Act: Political Agreement on the Digital Omnibus. What Changes for Businesses.

AI Act: Political Agreement on the Digital Omnibus. What Changes for Businesses.

On May 7, 2026, the EU Council and European Parliament reached a provisional political agreement on Omnibus VII. Fixed new dates, watermarking, new prohibitions: what concretely changes for SMEs.

A Teenager, an IDOR, Eleven Million French Citizens

A Teenager, an IDOR, Eleven Million French Citizens

The French agency that issues national ID cards and passports was breached through one of the most elementary API vulnerabilities in the catalogue. The attacker's profile tells a lot about the security maturity of the ecosystem.

How Sovereign Is Your Cloud? The European Commission's SEAL Framework

How Sovereign Is Your Cloud? The European Commission's SEAL Framework

Server location is just one of the factors that determine the digital sovereignty of a cloud service. The European Commission has introduced SEAL levels to measure — objectively — how effective that sovereignty actually is.

What Meta Is Doing to Its Employees Would Be Illegal in Europe

What Meta Is Doing to Its Employees Would Be Illegal in Europe

Meta tracks every click and screen of its employees using AI. In Europe, systems like MCI would be classified as high-risk under the AI Act. What Italian SMEs need to know before adopting similar tools.

When AI Becomes a Weapon: The IMF Warns on Systemic Cyber Risk

When AI Becomes a Weapon: The IMF Warns on Systemic Cyber Risk

The IMF warns: AI transforms cyber risk into a systemic threat to financial stability. Analysis of NIS2 and DORA implications and the actions to take.

DORA Register of Information: Only 6.5% Passed All Checks. What This Tells Us.

DORA Register of Information: Only 6.5% Passed All Checks. What This Tells Us.

The 2024 dry run revealed 93.5% of financial entities were not ready. The DORA RoI is not a compliance document: it is a structured data submission with three precise bottlenecks.

The Smart Contract Paradox

The Smart Contract Paradox

Immutability and security are in tension: no software is bug-free, and frontier models accelerate the surfacing of latent vulnerabilities. What changes for designers and on-chain compliance.

AI Procurement in Italian PA: AgID's Public Consultation Closes

AI Procurement in Italian PA: AgID's Public Consultation Closes

AgID's public consultation on AI procurement guidelines for Italian Public Administration has closed. Analysis ahead of the Italian DPA opinion.

Q-Day and Quantageddon: Post-Quantum Cryptography Can't Wait

Q-Day and Quantageddon: Post-Quantum Cryptography Can't Wait

Mosca's Theorem helps determine when to start the post-quantum cryptography transition: it's not just about Q-Day, but the real time needed to get there ready.