On 2 August 2025, the second wave of requirements under the EU AI Act (the “Act”) entered into force, following the first implementation phase six months ago. This latest set…
Ahead of the EU AI Act’s (the “Act”) General Purpose AI (“GPAI”) model requirements coming into force on 2 August 2025, EU authorities have released further guidance and Codes of…
Yesterday, the White House released “Winning the Race: America’s AI Action Plan” (the “Action Plan”), a comprehensive framework that emphasizes AI adoption, innovation, and competitiveness over previous priority areas, such…
In a recent Debevoise Data Blog post, we provided a quick guide on selecting the appropriate OpenAI models offered through GPT Enterprise for various legal tasks (e.g., o3 for research, GPT-4.5…
With federal preemption of AI regulation appearing unlikely, having been removed by a vote of U.S. senators in the negotiation over the federal budget bill, it is a good time…
Luke Dembosky, Avi Gesser, Erez Liebermann, Jim Pastore, and Matt Kelly were all recognized by The Legal 500 USA in the category Cyber Law (Including Data Privacy and Data Protection) with Luke Dembosky…
We’re proud to share that Debevoise & Plimpton’s Data Strategy & Security group has been recognized as one of the few elite law firms ranked by Chambers for both Artificial…
Many businesses use customer-tracking technology and other tools—such as pixels, session replay, software development kits (“SDKs”), and chatbots—to improve website user experiences, understand customer behavior, train their technology, and gauge…
Artificial intelligence (“AI”) is improving, but even the best models still can hallucinate, miscite, and miscalculate. The primary strategy for managing these and other risks associated with AI deployment is…
As AI adoption continues to increase, businesses are looking for familiar risk management protocols for AI governance. One obvious governance framework to use is cybersecurity, which is another area where…