Welcome to This Week in AI Regulations for May 24, 2026.
The European Commission has released draft guidelines to assist AI providers and deployers in determining whether their artificial intelligence systems qualify as high-risk under the AI Act. These guidelines include practical examples and support tools to ensure clarity and consistency in classification. Stakeholders across the European Union are invited to assess their AI systems against these draft guidelines and submit feedback exclusively through the official online questionnaire by June 23, 2026. This initiative is critical for managing regulatory risks related to health, safety, and fundamental rights under the AI Act.
In related news from the European Union, the Commission has launched a call for evidence to review the 2019 Directive on copyright rules. This review aims to address challenges posed by artificial intelligence, online piracy, remuneration for music performers and producers, and research access. Interested parties are encouraged to provide their contributions by June 25, 2026.
The European Union is also strengthening its economic security by mandating the screening of foreign investments in strategic sectors, including artificial intelligence, defence, semiconductors, critical raw materials, and financial services. This measure extends to intra-European Union transactions involving non-European Union ownership. Member states are required to implement mandatory screening procedures, streamline and harmonize national processes, and enhance cooperation with the European Commission and among themselves.
Turning to France, the Commission nationale de l’informatique et des libertés, or CNIL, reported significant regulatory enforcement in 2025, including a record €487 million in fines and a surge in data breach notifications. The agency is progressively applying the Artificial Intelligence Act starting in 2025, emphasizing cybersecurity as a top priority for 2026. Organizations processing personal data in France must comply with both the General Data Protection Regulation and the Artificial Intelligence Act, adopt robust security measures against hacking, and cooperate fully with CNIL investigations and enforcement actions.
In Germany, the Berlin State Government has introduced the TOP-Konzept plan to protect critical energy infrastructure. This plan includes technical measures such as AI-based attack detection systems, video surveillance, underground cabling, and georedundancies. Organizational measures involve 24/7 security patrols, enhanced personnel resources, visitor access regulation, and updated crisis management plans. Physical measures include the installation of high fencing and cooperation with police and security services.
On the global stage, the Basel Committee on Banking Supervision has agreed to publish a report on information and communication technology risk management practices. The committee is progressing with a targeted review of prudential standards for cryptoasset exposures and considering updates to liquidity risk principles. These efforts address emerging risks such as operational resilience to ICT incidents, cryptoasset exposures, liquidity risk, and financial risks from extreme weather events. Banks and supervisors worldwide are urged to maintain vigilance and enhance cross-border information sharing to uphold financial stability.
The International Organization of Securities Commissions, or IOSCO, concluded its 2026 Annual Meeting with the re-election of its Board Chair and Vice-Chairs. The meeting approved five reports, including one on an AI supervisory toolkit and another on market liquidity. IOSCO welcomed a new signatory to its Multilateral Memorandum of Understanding framework and outlined plans for the 2027 Annual Meeting.
Finally, in China, authorities responded to an incident involving an AI-generated fake video falsely depicting the collapse of the Zhangjiajie Glass Bridge. The dissemination of this video caused public panic and led to legal enforcement actions against its creator. Chinese regulators emphasize the importance of monitoring and controlling the spread of false AI-generated content and raising public and business awareness about the risks of AI misuse.
That wraps up today's regulatory updates. Visit carveragents.ai for more information.
Transcript source: Provided by creator in RSS feed: download file
