Skip to main content
HomeTopicsRegulation

Regulation

Cybersecurity statistics about regulation

Showing 1-20 of 34 results

76% of healthcare practices say they are not ready for the proposed 2026 HIPAA Security Rule.

Omega Systems6/28/2026
HIPAAPreparedness

90% of organizations report high confidence in established frameworks such as GDPR.

Veeam6/20/2026
GDPR

89% of organizations expect increased regulation within five years or less, up from 66% in 2025.

Fortinet6/15/2026
Compliance

Emerging global statutory fines reach up to €35 million or 7% of an enterprise's total global annual turnover.

Lookout6/15/2026
Financial Risk

78% of security leaders cannot generate the audit-ready evidence required by emerging frameworks like the EU AI Act.

Lookout6/15/2026
Auditability

There is a 20-point increase in organizations expecting new regulations within two to five years rather than beyond five years.

Fortinet6/15/2026
Compliance

Nearly 70% of US CISOs and senior security leaders say they are actively following AI-related regulations or standards.

Sprinto6/6/2026
AI GovernanceAI Regulations

61% of organizations say the EU AI Act has already influenced AI investment strategies in the last 12 months.

Veeam6/6/2026
AI InvestmentEU AI Act

US SELF DRIVE Act of 2026 requires the Secretary of Commerce to brief Congress on connected vehicle supply chain security within 180 days

PCA Cyber Security5/27/2026
Automotive CybersecuritySELF DRIVE Act

US Commerce Department rule prohibits Chinese and Russian connected-vehicle software starting Model Year 2027

PCA Cyber Security5/27/2026
Automotive CybersecurityUS Commerce

US connected vehicle hardware restrictions arrive for Model Year 2030 or January 1, 2029 for non-model-year components

PCA Cyber Security5/27/2026
Automotive CybersecurityHardware

US connected vehicle rule covers vehicles under 10,001 pounds

PCA Cyber Security5/27/2026
Automotive CybersecurityConnected Vehicles

China's amended Cybersecurity Law took effect on 1 January 2026 (passed 28 October 2025) with raised penalties and extraterritorial reach

PCA Cyber Security5/27/2026
Automotive CybersecurityChina

UK SI 2025/1110 mandates UN R155 and R156 for type-approval effective 13 November 2025

PCA Cyber Security5/27/2026
Automotive CybersecurityUNECE R155

EU Delegated Regulation 2025/1455 extends UN R155 to L-category vehicles: new types compliant by 11 December 2027, existing types by 11 June 2029

PCA Cyber Security5/27/2026
Automotive CybersecurityEU

35% of CNI organisations now cite regulation as the primary driver of maturity.

Cyber Security in Critical National Infrastructure Organisations: 2026 5/27/2026
Critical National InfrastructureMaturity

72% of consumers support stronger government regulations to force carrier action.

Hiya5/27/2026
TelecommunicationsScam Calls

70% of CIOs expect new AI audit or explainability requirements within the next 12 months.

Dataiku2/14/2026
AI Audit RequirementsAI Explainability Requirements

The number of victim notices in 2025 (278,827,933) is the lowest number of victim notices since 2014 and the lowest number since the last U.S. state and territories adopted data breach laws in 2018 (2025)

Identity Theft Resource Center2/4/2026
Data Breaches

22% of IT leaders identified AI maturity and regulation as the second-largest disruptor in 2026.

Veeam12/13/2025
AIAI Maturity