US Lawmaker Criticizes Foreign Tech Regulations

- The European Union’s Digital Markets Act (DMA) and Digital Services Act (DSA) impose significant obligations on large tech platforms, designated as "gatekeepers"—the majority of which are American firms. The DMA, which began enforcement in March 2024, takes a proactive *ex-ante* approach to prevent anti-competitive practices, while the DSA uses an *ex-post* model to regulate illegal content and enhance platform accountability. - Non-compliance with the EU's new wave of regulations carries steep financial penalties. Violating the AI Act can result in fines up to €35 million or 7% of a company's global annual revenue, whichever is higher. The Digital Services Act allows for fines up to 6% of global revenue, and the DMA has already led to combined penalties of over $800 million for Apple and Meta. - In response to these regulations, the tech industry has massively increased its lobbying efforts in Brussels, with annual spending reaching a record €151 million. This represents a 33% increase in just two years, with companies like Meta, Microsoft, and Google aiming to delay or weaken the implementation of rules on AI, data privacy, and competition. - China has implemented its own comprehensive legal framework affecting foreign technology firms, including the Cybersecurity Law, Data Security Law, and the Personal Information Protection Law (PIPL). These regulations often require localization of data and compel companies to provide government access to data for national security purposes. - The geopolitical tensions are directly spilling over into international standards development organizations (SDOs). The US-China rivalry has led to concerns about a potential decoupling of global standards, which could force companies to manage two distinct supply chains governed by different technical systems. - Some US national security policies have had unintended consequences for standards participation. For example, after Huawei was placed on the Department of Commerce's Entity List, some US companies withdrew from standards bodies for fear of legal repercussions, creating a vacuum that non-US entities filled. - The U.S. government has officially threatened countermeasures against the EU, stating that if "discriminatory" actions against American service providers continue, it will use tools at its disposal, such as imposing fees or restrictions on European services. This follows a bipartisan letter from the U.S. House of Representatives to President Biden, warning that the EU was unfairly targeting American tech companies. - The EU's AI Act, ratified in March 2024, is the world's first comprehensive law on artificial intelligence and applies to any company providing AI systems or services within the EU, regardless of where it is based. The regulation uses a risk-based framework, prohibiting "unacceptable risk" systems like social scoring and placing significant compliance burdens on "high-risk" applications, such as those used in recruitment or employee monitoring.