The Hungarian Parliament has adopted Act No. CXXXV of 2025 on the Hungarian implementation of the European Union’s Cyber Resilience Regulation and the amendment of certain cybersecurity provisions. Key changes include a modification of the scope of the law and the designation of the SzTFH (Szabályozott Tevékenységek Felügyeleti Hatósága – Supervisory Authority for Regulated Activities) as both the notifying authority and the market surveillance authority. In addition, a significant amendment was introduced to Act LX of 2025 on Certain Court Proceedings and Liquidation Concerning Legal Entities, empowering courts to temporarily prohibit chief executive officers from performing their executive duties in specific cases based on a final decision of the SzTFH.

The Hungarian Government has published a draft decree on the amendment of consumer protection legislation (hereinafter referred to as "Draft”) for public consultation, which affects the operation of retail businesses and especially those operating online webshops, partially due to the Hungarian implementation of the Directive (EU) 2023/2673 of the European Parliament and of the Council.

Hungarian companies are being hit by a wave of EU tech rules, according to BLB Legal Managing Partner Adam Liber, who stresses how this wave is reshaping the compliance function. 

Former Provaris Varga & Partners TMT and corporate law Partners Adam Liber, Tamas Bereczki, and Aron Bagdi have spun off to launch BLB Legal, effective July 1, 2025.

On 17 April 2025, the President of the Hungarian Supervisory Authority for Regulated Activities (SZTFH) issued Decree 3/2025. (IV. 17.), setting out detailed provisions on cybersecurity supervision, the conduct of regulatory inspections, and the role of the information security supervisor.

The Government of Hungary has recently adopted Government Decision 1089/2025 (III. 31.) on the country's Cybersecurity Strategy, effective between 2025–2030.

When I was invited by the CEE Legal Matters team to write a guest editorial for the CEE Legal Matters magazine, I was initially perplexed, as my career path has been far from traditional. Upon deeper reflection, though, having a second profession alongside a law degree offers unique advantages, particularly when combined with the opportunity to provide both legal and business consultancy services, such as information security consultancy.

On December 20, 2024, Hungary has enacted two new cybersecurity laws, namely the Act No. LXIX of 2024 on Hungary's Cybersecurity ("2024 Cybersecurity Act"), which replaces the former national implementation of the NIS2 Directive, and the Act No. LXXXIV of 2024 on the Resilience of Critical Entities (“The Act on the Resilience of Critical Entities”), re-implementing Directive (EU) 2022/2557 on the resilience of critical entities in Hungary.

The General Secretariat of the Belgian data protection authority has published an informational booklet outlining the relationship between the EU General Data Protection Regulation and the Artificial Intelligence Regulation, which came into force on 1 August 2024. The authority’s aim with the informational booklet is to provide insights into the application of data protection requirements during the development and deployment of artificial intelligence systems. Data protection requirements and legal standards are key to ensure that artificial intelligence systems operate ethically, responsibly and lawfully.

High-quality, diverse, and extensive datasets are fundamental for improving machine learning model performance, and web scraping helps gather the necessary data to develop more robust and generalizable models. Web scraping pose different legal challenges, such as data protection, copyright and contractual law related issues. Intellectual property concerns arise as website content, like text, images, and data, is often copyrighted, and scraping without the copyright owner’s permission may lead to infringement claims. Further to this, many websites prohibit scraping in their terms of service, and violating these terms can also result in legal action against the operators of web scrapers.

Contributed by Provaris.

Contributed by Provaris.