On 28 January 2026, we celebrate Data Protection Day, the anniversary of Convention 108. Between GDPR revision proposals, simplification measures, and new technologies, personal data protection requires constant vigilance. An analysis of current challenges supported by empirical data and institutional sources.
An in-depth analysis of the Gemini protocol: its origins in 2019, the reasons behind its creation, technical overview, advantages and disadvantages, and why having a Gemini capsule might be worthwhile for privacy advocates.
Denmark has proposed amending its copyright law to introduce new personality rights against AI-generated deepfakes. An analysis of the opportunities and risks of this innovative regulatory approach, with a look at the implications for the European debate.
Markdown is not just a formatting syntax. It represents a philosophy of digital independence, data portability, and long-term accessibility that aligns with the core principles of privacy and user empowerment.
In the final months of 2025 and early 2026, two independent studies highlighted significant vulnerabilities in WhatsApp鈥檚 metadata management. The University of Vienna and SBA Research demonstrated the ability to enumerate 3.5 billion accounts through the contact discovery mechanism, while Tal Be鈥檈ry (Zengo) showed how cryptographic key IDs allow inference of operating system, device type, and approximate session age. Meta has begun implementing fixes, but the privacy implications remain significant. This article analyzes the nature of metadata, WhatsApp-specific risks, and presents open source alternatives based on federated protocols such as XMPP and Matrix.
2025 closes with two publications that, read together, provide a comprehensive picture of the ongoing transformations in the online search sector. EPRS analyzes the macro-systemic impact on the open web, while Gartner focuses on the security risks of agentic browsers. The convergence of these perspectives reveals a transformation affecting online search as critical infrastructure, with implications for the digital market, data protection, cybersecurity, and the European regulatory framework.
On December 17, 2025, the European Commission publishes the first draft of the Code of Practice on the AI Act for marking and labelling AI-generated content. The document, structured in two sections dedicated to providers and deployers, establishes concrete rules to ensure transparency of deepfakes and synthetic content. Consultation open until January 23, 2026, with finalization expected by June 2026 and entry into force on August 2, 2026.
On December 9, 2025, the Council of the European Union agreed on an amendment to the EuroHPC regulation to create up to 5 AI Gigafactories. Complete analysis of the Cloud and AI Development Act and its three strategic pillars: research and innovation, data center investments, and European digital sovereignty.
On December 3, 2025, the European Commission announced the opening of Safer Internet Forum 2025, highlighting three fundamental pillars: DSA guidelines on protection of minors (July 14, 2025), age verification blueprint (July and October 2025), and first enforcement actions against platforms including Snapchat, YouTube, Apple App Store, and Google Play (October 2025). A comprehensive analysis of the European framework for child online safety.
DigComp 3.0 introduces substantial updates to address AI competence, cybersecurity, digital wellbeing, and misinformation challenges. With over 500 new learning outcomes, the framework guides digital skill development across the EU for citizens, workers, and students.