• |

    Jan. 7, 2026

A Baker’s Dozen AI Governance Resolutions for 2026

Many companies spent 2025 scrambling to integrate AI into all aspects of business, just as a second transformative technology, which allows for independent decision-making by an AI agent, was entering early adoption. With pressure building throughout the business environment to incorporate these new technologies, the humans responsible for corporate AI efforts should pause at the start of 2026 to reflect on how risks have, and continue to, evolve. The Cybersecurity Law Report asked a group of experts, including presenters at the AI Summit NYC conference in December 2025, what company leaders should resolve to do for their AI governance efforts in 2026. They recommended a baker’s dozen practical resolutions for organizations to develop greater trust in their AI use, advance responsible AI development, mitigate the technology’s array of risks and respond in a balanced way to the AI-related pressure building inside and outside organizations. See “Nine Cybersecurity Resolutions for 2025” (Jan. 22, 2025).

Lessons From the Trenches on How Data Brokers Can Manage Consumer Rights Requests

As regulators and lawmakers focus increasingly on data brokers’ practices, these middlemen are fielding more requests from individuals seeking deletion of their personal data or making other data subject requests (DSRs). Unlike many customer-facing businesses, data brokers often face myriad challenges authenticating DSRs because they lack individuals’ information. In this guest article, Prince Lobel Tye partner Joshua Cook details the distinct challenges for data brokers when processing DSRs, analyzes the complications that privacy brokers create, and offers practical, defensible solutions that data brokers and other companies can adopt to more safely process deletion and other DSRs. See “Touring California’s New Dashboard for Permanent Erasure of Personal Information” (Nov. 12, 2025).

Ransomware Enforcement Trends Under Trump 2.0

U.S. federal and state authorities have changed their approaches to ransomware in recent years, particularly since the start of the second term of President Donald Trump. The tactics of ransomware threat actors and how companies respond to the problem have also changed. This article examines those trends and presents several best practices to combat ransomware, based on an expert panel discussion at the Incident Response Forum’s Ransomware 2025 conference. John Carlin, a partner at Paul Weiss, who previously served as the top national security official for the DOJ and as Chief of Staff of the FBI, moderated the session, which included speakers from Latham & Watkins, Orrick and Kirkland & Ellis. See “Strengthening Cyber Defenses in an Ever-Evolving Threat Landscape” (Jun. 4, 2025).

Most-Read Articles

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.