This update highlights key legislative and regulatory developments in the second quarter of 2026 related to artificial intelligence (“AI”), connected and automated vehicles (“CAVs”), and Internet of Things (“IoT”).
Continue Reading U.S. Tech Legislative & Regulatory Update – Second Quarter 2026Illinois Enacts Frontier Model Safety Law
On July 6, 2026, Illinois Governor JB Pritzker signed into law SB 315, a frontier model safety act that resembles the New York RAISE Act, discussed in our prior blog post here, and California’s Transparency in Frontier Artificial Intelligence Act (TFAIA), discussed in our prior blog post here. The law takes effect January 1, 2027, with transparency-reporting and audit obligations beginning January 1, 2028. Similar to the New York and California laws, SB 315 will apply to frontier developers (i.e., persons that train, or initiate the training of, a frontier model using computing power greater than 10^26 integer or floating point operations), with certain provisions applicable only to large frontier developers (i.e., frontier developers with annual gross revenue over $500 million in the preceding year). SB 315 also includes public safety disclosure and reporting requirements. Notably, SB 315 also imposes a third-party audit requirement not found in either the New York or the California law.
Continue Reading Illinois Enacts Frontier Model Safety LawBacklash to Bipartisan AI Omnibus Illustrates Preemption Impasse
On June 4, Representatives Jay Obernolte (R-CA) and Lori Trahan (D-MA) released a sweeping discussion draft of their Great American Artificial Intelligence Act. The latest bipartisan AI legislation quickly met bipartisan skepticism, particularly concerning the draft’s approach to federal preemption of state AI rules, with many House Democrats opposing the broad preemption for frontier model developers, while many House Republicans and other stakeholders lamented the bill’s omission of preemption for state laws reaching other parts of the AI ecosystem.
The bill would also establish mandatory disclosure and risk-mitigation requirements for frontier models and task the Center for Artificial Intelligence Standards and Innovation (CAISI) at the National Institute of Standards and Technology (NIST) with oversight of federal AI-related research and analysis, standards and guidelines development, and risk-mitigation activities.
Continue Reading Backlash to Bipartisan AI Omnibus Illustrates Preemption ImpasseFederal Vehicle Safety at Midyear: Regulatory Relief, Legislative Momentum, and the Road to the Broader AV Deployment
Executive Summary
2026 has been a dynamic year so far for federal regulation of automotive safety. Federal regulators have demonstrated a sustained commitment to regulatory reform and innovation, while simultaneously advancing efforts to facilitate the deployment of autonomous vehicles. Congress has also renewed its focus on vehicle safety and automation as lawmakers consider legislation that could significantly reshape the federal framework governing AVs and vehicle-safety regulation.
Although the path to a comprehensive federal framework for AVs remains uncertain, NHTSA and other agencies continue to pursue opportunities to advance a deregulatory agenda while promoting innovation. Efforts to pave the way for large-scale autonomous vehicle deployment are underway at the National Highway Traffic Safety Administration (NHTSA) and the Federal Motor Carrier Safety Administration (FMCSA). Congress is also paying attention to motor vehicle safety, with surface transportation reauthorization looming and numerous proposed bills that could provide a federal framework for AVs and reform NHTSA’s exemption process, long viewed as a roadblock for vehicle manufacturers.
The next year-and-a-half presents a window of uncommon opportunity for industry to help shape vehicle safety rules that deliver safety value without stifling innovation. These developments collectively suggest that industry stakeholders will continue to have meaningful opportunities to influence vehicle-safety policy through agency engagement, rulemaking participation, and legislative advocacy.
Continue Reading Federal Vehicle Safety at Midyear: Regulatory Relief, Legislative Momentum, and the Road to the Broader AV Deployment
Post-Quantum Cryptography: A Practical Guide
A key benefit of quantum computing is that it may, in the future, enable a very substantial increase in computing power. This could create significant benefits, in the life sciences and financial services sectors (see our prior posts on the potential implications for these sectors here and here). However, it also creates potential risks. In particular, it could lead to the breaking of many of the encryption methods currently used by governments and businesses alike. As commercially-viable quantum computers become an increasing reality, organisations must prioritise “quantum readiness” and specifically migration to post-quantum cryptography (“PQC”).
In this post, we set out a brief overview of the main steps that regulators and industry bodies (including the U.S. National Institute of Standards and Technology (“NIST”), the UK National Cyber Security Centre (“NCSC”), and the EU Agency for Cybersecurity (“ENISA”)) have indicated businesses should take to move towards PQC and protect their data and systems from the risks posed by quantum computing.
Continue Reading Post-Quantum Cryptography: A Practical GuideSingapore Updates Model AI Governance Framework for Agentic AI
Since our prior post on Singapore’s Model AI Governance Framework for Agentic AI, Singapore’s Infocomm Media Development Authority (“IMDA”) has published an updated version (Version 1.5) (the “Updated Framework”), incorporating feedback from over 60 organizations.
The Updated Framework, published on May 20, 2026, retains the same four-pillar structure—(1) assess and bound the risks upfront, (2) make humans meaningfully accountable, (3) implement technical controls and processes, and (4) enable end-user responsibility—but expands the guidance in several notable respects. These include a new discussion of multi-agent systemic risks, more granular guidance on technical controls, and real-world case studies illustrating how the Framework can be applied across sectors. We summarize some of the key updates below.
Continue Reading Singapore Updates Model AI Governance Framework for Agentic AICalifornia Reopens Opt-Out Period for Certain Interconnected VoIP Licenses and Refines Associated Regulatory Framework
Today, the California Public Utilities Commission (“CPUC”) issued a decision revising and clarifying its regulatory framework for providers of interconnected voice over Internet protocol (“iVoIP”) services. Most notably, the decision reopens the window for iVoIP providers to demonstrate that they do not provide services subject to a new license type that would, among other things…
Continue Reading California Reopens Opt-Out Period for Certain Interconnected VoIP Licenses and Refines Associated Regulatory FrameworkOnline Safety in the UK: Social Media Ban for Under 16s and Other Recent Developments
The UK Government today announced that it intends to ban social media platforms from offering services to children under 16, alongside wider restrictions on certain online functionalities that the Government has identified as harmful to children.
The announcement follows the conclusion of the Department for Science, Innovation and Technology’s (“DSIT”) consultation, “Growing up in the online world,” which received more than 116,000 responses (we originally wrote about that consultation here). The Government intends to bring the first regulations to Parliament before the end of the year using powers created by the Children’s Wellbeing and Schools Act 2026 (“CWSA”), with protections expected to come into force in Spring 2027. Today’s announcement is the latest in a series of significant developments reshaping the UK’s online safety framework. We summarize some of these latest developments below.
Continue Reading Online Safety in the UK: Social Media Ban for Under 16s and Other Recent DevelopmentsHow the European Commission aims to promote the EU quantum sector through the Cloud and AI Development Act
Much of the attention on the European Commission’s recent proposal for a Cloud and AI Development Act (“CADA Proposal”) has focused on its proposed cloud sovereignty framework, the implications for cloud service providers and public sector cloud use, and the mechanisms intended to encourage data centre development in the EU (we discuss those aspects of the CADA Proposal in more detail in our post here).
But the CADA Proposal also contains several express references to the development of the EU quantum computing sector, which suggests that quantum computing may be embedded within the EU’s wider cloud, AI, and data centre strategy, and that the Commission may promote the development of the technology in that context (rather than treating it as a separate technology policy issue). That approach is consistent with the Commission’s July 2025 Quantum Strategy and its expected proposal for a Quantum Act later this year, both of which focus on building the industrial base for quantum computers in Europe (we describe the Quantum Strategy and the likely themes of the forthcoming Quantum Act in our prior post here).
In this post, we outline the two main mechanisms through which the CADA Proposal would support the development and deployment of quantum computing in Europe, in advance of the Quantum Act.
Continue Reading How the European Commission aims to promote the EU quantum sector through the Cloud and AI Development ActThe EU Cloud and AI Development Act in Depth
On 3 June 2026, the European Commission (“Commission“) published its proposal for a Regulation establishing a framework of measures for strengthening Europe’s cloud and AI ecosystem—the Cloud and AI Development Act (“CADA Proposal“). The CADA Proposal sits at the heart of the Commission’s broader Tech Sovereignty Package (which we describe at…
Continue Reading The EU Cloud and AI Development Act in Depth