EU Digital Omnibus: How Proposed GDPR and AI Act Reforms Will Reshape Compliance Programs by 2028
Compliance & Risk Management

EU Digital Omnibus: How Proposed GDPR and AI Act Reforms Will Reshape Compliance Programs by 2028

The European Commission’s Digital Omnibus proposal would amend GDPR, the EU AI Act, and four other digital regimes simultaneously—extending breach-notification windows, creating a unified reporting point, and pushing high-risk AI deadlines to 2027–2028. For boards and compliance leaders, the proposal demands an immediate reassessment of integrated data governance and enterprise risk management programs.

EU Digital Omnibus: How Proposed GDPR Reforms Will Reshape Compliance, AI Governance, and Breach Notification for Mid-Market Firms
Compliance & Risk Management

EU Digital Omnibus: How Proposed GDPR Reforms Will Reshape Compliance, AI Governance, and Breach Notification for Mid-Market Firms

The EU Digital Omnibus reform package proposes material changes to GDPR’s Article 22, AI data processing rules, and breach notification thresholds that will require mid-market and enterprise firms to redesign compliance programmes and AI governance frameworks. Decision-makers should begin gap assessments now rather than waiting for final legislative text.