European policymakers are at the moment altering a tyre on a transferring automotive. They’re navigating the implementation of the AI Act whereas concurrently participating in crucial reflections on how the Act may be simplified and on the way forward for the GDPR. The central query: How do we discover the fitting stability between empowering companies to leverage the complete potential of AI and guaranteeing privateness safety stays uncompromised?
The findings from the Cisco 2026 Information and Privateness Benchmark Research, launched in the present day, present a transparent reply. To remain aggressive, regulatory approaches should meet the brand new realities of AI and allow companies to maintain tempo with speedy technological change. There may be an pressing want, highlighted each by trade suggestions and ongoing coverage debate, to maneuver in the direction of modernised agile knowledge governance frameworks.
Privateness as a Development Enabler
For years, privateness was typically framed in coverage circles as a defensive necessity, a brake on innovation. Our newest research means that narrative fails to color the entire image. As we speak, 90% of organisations globally (86% in Europe) report that their privateness programmes have expanded particularly due to AI, and 93% plan to extend investments in knowledge governance over the subsequent two years.
An awesome 99% of organisations report a minimum of one tangible profit from privateness investments. However the nature of that profit has modified. It’s not nearly compliance or avoiding fines. For instance, 94% of European organisations report that strong privateness frameworks unlock AI agility and innovation, and 93% recognise privateness is important for constructing buyer belief in AI-powered companies.
Bridging the Governance Hole
Whereas AI ambition is excessive, governance continues to be evolving. Regardless that 82% of EU organisations report having a devoted AI governance physique in place, solely 9% describe these buildings as mature.
One of many key bottlenecks is knowledge governance. Information is the lifeblood for AI coaching, fine-tuning, and inference. However 60% of organisations wrestle to entry the high-quality, related knowledge wanted to coach and deploy AI successfully, with many pointing to the related value of knowledge preparation and governance as a key barrier to AI success.
Whereas firms must spend money on knowledge governance, policymakers are starting to recognise additionally they must streamline overly advanced knowledge necessities that act as an inhibitor to AI success of their jurisdictions. Consequently, the EU is proposing to simplify a number of the knowledge governance necessities for AI coaching via reforms to the GDPR within the so-called ‘Digital Omnibus’ regulation.
Information Localisation vs. World Realities
One of the crucial urgent tensions in Europe includes knowledge localisation and digital sovereignty. Whereas the impulse to maintain knowledge inside borders is comprehensible, the operational actuality for companies is much extra nuanced than “black-or-white” political messaging suggests.
In line with the 1,700 safety and privateness professionals we surveyed within the EU, 72% say they face heightened demand for knowledge localisation and international knowledge complexity on account of AI. For the EU’s digital targets, it’s a important warning signal that 84% of organisations discover that knowledge localisation provides value, complexity, and threat to cross-border service supply.
We’re additionally seeing a shift in safety perceptions in Europe. The belief that domestically saved knowledge is inherently safer is eroding, falling from 91% in 2025 to 83% in 2026. In the meantime, 79% of organisations working globally consider that global-scale suppliers are higher outfitted to handle advanced, multi-jurisdictional knowledge flows than native entities.
To foster a aggressive AI ecosystem, Europe should tackle these “international strain factors.” The research reveals that 83% of respondents help extra harmonised worldwide knowledge switch guidelines to streamline compliance.
A Name for Modernisation
As the talk over a GDPR evaluate continues, we should be sure that our knowledge safety framework evolves to deal with AI. The EU should champion a regulatory atmosphere that favours interoperability-at-scale over isolation. By modernising Europe’s strategy to cross-border knowledge flows and specializing in streamlined knowledge governance, coverage can help accountable, safe innovation at velocity.
Extra on this on this Q&A with Dev Stahlkopf, EVP and Cisco’s Chief Authorized Officer and on Cisco’s Belief Middle.
