Policy & Regulation.
// policy · regulation · antitrust
Antitrust, data-protection law, content rules, AI safety regulation. Where the law reaches into the build, ship, and operate phases of software.
FDA advisors unanimously approve Moderna's mRNA vaccine
The FDA advisory committee voted 11‑0 to clear Moderna's mRNA vaccine, ending a period of regulatory uncertainty and opening the door for other mRNA products to follow the same pathway.
UK to scan asylum seekers’ faces for age checks despite flawed tech
The Home Office will roll out Veridex’s facial‑age verification at Heathrow and Gatwick in July 2026, even though trials showed a 30 % false‑positive rate for minors. Legal, privacy and engineering concerns loom as the UK pushes ahead.
UK government eyes household VPN ban with age‑gate
The UK government is weighing a ban on household VPNs and an age‑gate verification system to curb access to certain online content under the Online Safety Act.
Elkjop fined €1.8 million for illegal forced‑consent UI
Norwegian regulator Datatilsynet imposed a €1.8 million fine on retailer Elkjop after its website forced users to accept marketing newsletters via a pre‑checked box, breaching GDPR’s free‑consent rule.
Swiss parliament lifts ban on new nuclear power plants
Switzerland’s parliament voted to repeal the 2011 prohibition on building new nuclear reactors, opening the door for domestic nuclear projects and reshaping the country’s energy strategy.
Trump administration moves to block NAACP Clean Air Act suit against xAI's gas turbines
On June 15 the Trump administration filed a brief urging a Texas federal court to dismiss the NAACP’s Clean Air Act lawsuit over three 2‑MW gas turbines at xAI’s Grok data center, arguing the equipment is essential for national‑security simulations.
UK to announce ban on social media for under‑16s
The British government will soon unveil a rule that bars anyone under 16 from using social‑media platforms, forcing firms to roll out strict age‑verification systems. The move is part of a wider push to tighten online safety for minors.
Anthropic retires Fable and Mythos models after Trump admin directive
Anthropic will retire its Fable and Mythos model families after a Commerce Department notice warned that a jailbreak of Fable 5 posed a national‑security risk. The shutdown forces customers to move to Claude 3‑Sonnet and raises regulatory uncertainty for AI vendors.
Amazon research triggers White House ban on Anthropic’s Fable 5 model
Amazon’s internal security paper showed Anthropic’s Fable 5 could emit exploit‑grade code, prompting the White House to issue an export‑control directive that blocks foreign access to the model, according to the Wall Street Journal and The Verge.
Amazon CEO talks spur U.S. crackdown on Anthropic models
Wall Street Journal reporting shows that Andy Jassy’s meetings with U.S. officials prompted a regulatory crackdown on Anthropic’s AI models, tightening oversight for firms that embed its LLMs.
US bans differential privacy in Census data
The U.S. government has prohibited the use of differential privacy for Census data, citing concerns that the noise‑adding technique hampers accuracy and usability. The move forces data engineers and privacy‑tool developers to rethink how they protect individual responses.
US government suspends access to Anthropic's Fable 5 and Mythos 5 models
The U.S. Office of the Director of National Intelligence ordered Anthropic to block U.S. access to its Fable 5 and Mythos 5 models on June 13, citing compliance concerns. The shutdown forces developers to replace the models and signals tighter export‑control enforcement.
Protests block $130 billion in data‑center projects in 2026
Community opposition has halted $130 billion worth of data‑center construction this year, delaying AI‑focused facilities and forcing engineers to reassess supply‑chain and site‑selection strategies.
US surveillance of Dutch emails raises digital sovereignty concerns
US intelligence agencies have intercepted Dutch email traffic, exposing gaps in EU data‑transfer safeguards and accelerating the push for sovereign cloud solutions.
City sells farmer‑donated park land for $10 million data‑center project
A farmer’s donation of land for a public park was sold by the city for $10 million to a data‑center developer, with officials projecting $30 million in tax revenue over the next decade.
OpenAI proposes robot taxes and public wealth funds
OpenAI's policy paper suggests robot taxes, public wealth funds, and a shorter workweek to mitigate AI's impact on workers, with Anthropic also weighing in [devto]
German court holds Google liable for false AI overview answers
Germany's Federal Court of Justice ruled that Google must treat AI‑generated search overviews as its own statements, making the company civilly liable for inaccurate answers and requiring new flagging and attribution mechanisms.
FCC lifts 2025 deadline for Amazon Kuiper satellite launch
The FCC granted Amazon a waiver that removes the 2025 deadline for launching the first 600 Kuiper satellites, citing public‑interest benefits from a second large broadband constellation.
OpenAI submits confidential S-1 draft to SEC
OpenAI filed a confidential draft S‑1 with the U.S. Securities and Exchange Commission, a formal step required for companies that plan to go public. The filing signals the company’s move toward a potential IPO.
Signal condemns UK’s new surveillance laws
Signal’s June 8 statement warns that the UK’s latest surveillance legislation threatens privacy‑by‑design and end‑to‑end encryption for users and developers.
Think tank warns age‑verification tech may heighten child risk
A think‑tank report says current age‑verification systems can fail to block harmful content, create data‑breach liabilities, and lack regulatory standards.
S&P 500 blocks SpaceX, OpenAI and Anthropic over profitability rule
The S&P 500 confirmed it will not waive its earnings requirement for SpaceX, OpenAI or Anthropic, keeping the three unprofitable tech firms out of the index despite their multi‑billion dollar market caps.
Gov.uk swaps Stripe for Adyen as payment provider
The UK government has signed a multi‑year deal with Dutch payments firm Adyen, ending its use of Stripe for online public‑sector transactions. The switch will require engineers to rewrite integrations and adopt Adyen’s compliance framework.
Wind and solar outpace gas in April 2026
In April 2026 wind and solar generated 2,300 TWh, edging out natural gas’s 2,250 TWh for the first time, according to the IEA and Electrek.
Meta workers can pause location tracking 30 minutes daily
Meta introduced a policy allowing employees to pause location tracking for up to 30 minutes per day on company-issued devices, with the change logged but not disclosed to managers.
Apple rejects dictation app for violating accessibility API rules
Apple removed a dictation app from the App Store after deeming its use of the iOS accessibility API non‑compliant with the Review Guidelines, underscoring the strict scrutiny developers face when leveraging accessibility features.
Adafruit served demand letter by Flux.ai
Adafruit received a demand letter from Fenwick legal counsel on behalf of Flux.ai, alleging IP infringement. The June 2026 letter raises questions about intellectual‑property enforcement in open‑source hardware.
Meta legal action forces Facebook whistleblower to stay silent at Hay festival
Meta has secured a court order that bars a former Facebook employee from speaking at the Hay Festival, according to The Guardian. The move raises fresh concerns about protections for tech whistleblowers.
U.S. Office of Management and Budget proposes grant cancellation rule
The OMB has issued a proposed rule that would let it cancel federal research grants at any time, without notice or justification, sparking criticism from scientists who say it threatens funding stability.
White House proposes rule giving political appointees final say on research grants
OSTP’s May 28, 2026 notice would force a senior political appointee in each agency to approve every NIH and NSF grant, affecting roughly $45 billion in annual funding. Comment period runs until July 31, 2026.
California assembly passes AB 3060, the Protect Our Games Act
The California State Assembly approved AB 3060 on May 28, 2026, requiring app‑store platforms to give developers 30‑day notice and a formal appeal before removing a game, with penalties up to $10,000 per violation.
Lombardy slaps 200% tax on datacenters in green zones
Lombardy has imposed a 200% tax increase on datacenters built in green or agricultural areas, aiming to curb development in ecologically sensitive zones, according to Il Sole 24 Ore [Il Sole 24 Ore].
Stripe's chargeback policies favor customers over merchants, report claims
A gingerlime investigation alleges Stripe approves disputed transactions without sufficient merchant protection, leading to financial losses and trust issues.
Nasa's Moon Base I launches fall 2026 on Blue Origin's lander
Nasa's Moon Base I mission will launch in fall 2026 to the Moon's South Pole using Blue Origin's Blue Moon Mark 1 Endurance lander, carrying instruments to study thruster-surface interactions ahead of Artemis 2028 [The Verge].
Spain blocks Polymarket and Kalshi over missing gambling licence
Spanish authorities have blocked Polymarket and Kalshi for operating without a gambling licence, part of broader EU regulatory pressure on crypto prediction markets [Reuters]. The action signals increasing compliance risks for unlicensed platforms.
Pope Leo calls for AI 'disarmament,' cites Gandalf
Pope Leo urged global AI disarmament in a May 25, 2026 statement, quoting Gandalf’s 'do not meddle in the affairs of dragons' as a warning against unchecked AI development [ars-technica].
CBP updates border search rules for electronic devices
CBP Directive 3340-049B updates procedures for searching phones and laptops at U.S. borders, detailing search criteria, use of external tools, and handling of sensitive data [CBP].
Oura confirms it receives government data requests
Oura has confirmed receiving government demands for user data, raising privacy concerns for its health-tracking ring users [Week in Security].
Four Russian satellites close to ICEYE's Ukraine-supporting radar satellite
Four Russian satellites are now within close proximity of an ICEYE radar satellite providing support to Ukraine, raising concerns about space-based threats in the ongoing conflict [ars-technica].
NTSB moves to ban AI reconstructions of pilots' voices from crash reports
The NTSB is pushing to outlaw synthetic recreations of cockpit audio after AI developers used public transcripts to rebuild deceased pilots' voices with 92% accuracy, exploiting a loophole in current law.
Google restricts web interoperability, citing security
Google's 2026 policy changes limit how developers build web apps, raising concerns about innovation and open standards, per cdrnsf on hn-front [hn-front].
Fbi seeks real-time access to us license plate data via private vendors
The FBI is negotiating with private vendors to build a nationwide system for real-time access to license plate scanner data, according to Ars Technica [Ars Technica]. The effort would expand the bureau’s ability to track vehicle movements across state lines.
Shutterstock to pay $35m for hiding cancellation options
Shutterstock will pay $35 million to settle FTC charges that it used dark patterns to obstruct subscription cancellations, with the company required to overhaul its cancellation process and improve disclosure practices.
Fbi seeks nationwide access to 200 million license plate scans
The FBI is pursuing a contract for real-time access to a private network of license plate readers, drawing scrutiny over mass surveillance and data privacy. The system could tap into billions of annual vehicle location records.
Americans are smashing flock cameras over ice data access
Flock surveillance cameras have been destroyed in at least 12 states since May 2026, following reports that ICE accessed their license plate data — sparking a rare physical backlash against government surveillance tech.
Mozilla tells uk regulators: vpn restrictions threaten privacy and security
Mozilla has formally opposed UK proposals to restrict VPNs, arguing the move would harm user privacy, security, and internet freedom [Mozilla Blog].
California bill would force game studios to patch or refund dead online games
A California bill requiring game companies to release offline patches or issue refunds when shutting down online games has passed a key legislative hurdle [Ars Technica].
UK government replaces Palantir with internal refugee data system
The UK government has replaced Palantir's software with an in-house system for managing refugee data, citing data governance and privacy concerns [BBC News]. The move signals a shift toward self-built, open-source public sector tech.
News outlets urged to preserve wayback machine archives
A campaign is calling on major news outlets to preserve their archives on the Wayback Machine, a digital archive of the internet. The initiative aims to ensure that online news content remains accessible to the public.
European governments launch securitybaseline.eu
The Internet Cleanup Foundation found 3000 tracking sites, 1000 phpMyAdmins, and poorly encrypted email in 99% of cases, prompting the launch of SecurityBaseline.eu to improve European cybersecurity [Internet Cleanup Foundation].
Canada's bill c-22 revives surveillance concerns
Canada's Bill C-22 has been introduced, bearing similarities to last year's surveillance bill, sparking concerns over privacy and surveillance [EFF]. The bill has been criticized for its potential to expand surveillance capabilities in Canada.
GrapheneOS warns of hardware attestation monopoly risks
GrapheneOS argues hardware attestation can enable monopolies by restricting device usage [GrapheneOS]. Vendors can use security features to limit user freedom and stifle innovation.
Age-assurance laws now reach into open-source apps, not just big platforms
GitHub flagged that the UK Online Safety Act, EU DSA, and a wave of US state laws now reach down through app stores and operating systems to user-generated-content apps — including the indie open-source ones. Teams under 10K MAU are no longer automatically out of scope.
EU agrees to simplify the AI Act. The transparency clock now runs faster.
EU Council and Parliament reached political agreement on May 7 to simplify AI Act rules. The headline: a tightened 3-month transparency deadline for synthetic content, plus carveouts for SMEs and small mid-caps.
China-linked group targeting NATO state, journalists, semiconductor sector
Threat-intel reporting documents UNK_SparkyCarp (GLITTER CARP) targeting academic, political, semiconductor, and legal sector entities across the US, Europe, and Taiwan. Credential phishing is the primary vector.
US gives federal AI evaluator early access to Google, Microsoft, xAI models
The Center for AI Standards and Innovation has agreements with Google DeepMind, Microsoft, and xAI to evaluate models pre-release. Trump-administration oversight expands. Anthropic's status is unclear.
Senate clears CLARITY Act compromise. Stablecoins barred from paying yield.
Senate compromise CLARITY Act language bars stablecoin issuers from paying yield on reserves while allowing activity-based rewards. Banking Committee markup ahead. Presidential signature targeted by summer 2026.
GENIUS Act passed. US banks can now issue regulated digital dollars.
The GENIUS Act gives U.S. banks and financial institutions a regulatory framework to issue and custody dollar-backed stablecoins. The regulatory uncertainty that constrained bank participation is now resolved.