The European Union unveils a draft package to relax key digital rules, including GDPR and the AI Act, in a move aimed at accelerating AI innovation and maintaining global competitiveness, sparking debate over privacy standards and regulatory balance.
In a marked policy shift, the European Union is poised to scale back key components of its pioneering digital regulations, including the General Data Protection Regulation (GDPR) and the AI Act. This reorientation aims to strengthen Europe’s competitiveness in the global technology arena, particularly in artificial intelligence, amid mounting pressures from U.S. tech giants and concerns over European firms lagging behind their international counterparts.
The European Commission recently unveiled a draft package known as the “Digital Omnibus,” which proposes significant relaxations to existing privacy and AI rules. This initiative seeks to simplify compliance obligations for businesses, especially for small and medium enterprises, and facilitate broader AI development. Central to these proposals is the easing of restrictions on the use of European citizens’ personal data for AI training purposes, permitting companies such as Google, Meta, and OpenAI to access and process data with fewer hurdles. The scope of what constitutes “personal data” would be narrowed by treating more pseudonymized information as non-personal, thereby reducing consent requirements and enabling more extensive data utilisation for AI systems.
Furthermore, the enforcement timeline for the strictest elements of the AI Act, particularly regulations governing high-risk AI systems used in sectors like healthcare, biometric identification, credit assessments, and law enforcement, will be delayed from August 2026 to December 2027. This postponement follows intense lobbying efforts by major technology firms and reflects the EU’s intent to provide companies with additional time to adapt to complex regulatory demands. The delay applies not only to high-risk AI use cases but also includes a phased introduction of certain transparency requirements for AI-generated content.
These regulatory revisions are part of a broader attempt to harmonize and streamline digital rules across the EU. Alongside adjustments to the AI Act and GDPR, the Digital Omnibus also targets other frameworks such as the e-Privacy Directive and the Data Act. Among the proposed changes are simplified cookie consent mechanisms to reduce user friction, with fewer pop-ups and more flexible consent options, thus aiming to foster a friendlier environment for businesses and users alike. For businesses, the omnibus package promises substantial savings in compliance costs by cutting documentation and reporting burdens, notably benefiting cross-border operations through tools like the proposed ‘European Business Wallet’.
While officials insist these changes do not amount to deregulation but rather a refinement to maintain robust protections while enhancing Europe’s innovation potential, privacy advocates express serious concerns. Critics warn that narrowing definitions of sensitive data and expanding exemptions for AI training risks eroding the strong privacy standards established since GDPR’s inception in 2018. Privacy activist Max Schrems notably described the move as “death by a thousand cuts” to GDPR protections. There is also apprehension that reducing data subject rights, such as limiting user access to personal data to curb “abusive” requests, may undermine transparency and accountability, potentially making it harder for individuals to understand and control how their data is used by AI models.
The geopolitical context underpins much of the EU’s recalibration. With the United States and China making rapid strides in AI development, and with American tech giants exerting significant lobbying influence, the EU faces pressure to avoid stifling innovation through overly stringent regulations. France and Germany have publicly supported the simplification effort, highlighting the need to alleviate burdens on companies and retain digital talent within Europe. Nonetheless, this pragmatic pivot has generated resistance from various quarters, including several EU member states like France, Austria, and the Czech Republic, who fear weakening digital rights protections could set a harmful precedent.
For the tech industry, these changes offer a mix of relief and complexity. Firms deploying AI within the EU may gain greater flexibility and reduced regulatory uncertainty, but must remain vigilant about evolving compliance landscapes and ongoing political debates. Specialists emphasize that the interplay between GDPR and AI Act obligations will continue to require nuanced risk assessments, particularly in areas like biometrics and surveillance technologies, sectors likely to see their regulatory scrutiny recalibrated rather than removed.
As the European Commission calls for public consultation ahead of finalising the Digital Omnibus, stakeholders across industry, civil society, and government await robust parliamentary scrutiny. The outcome will decisively influence Europe’s stance as both a champion of digital rights and a competitive actor in the AI revolution. Balancing innovation with privacy remains a delicate task, with Europe’s tech future still very much in flux.
📌 Reference Map:
- [1] (WebProNews) – Paragraphs 1, 2, 3, 5, 7, 8, 9, 10
- [2] (Reuters) – Paragraphs 2, 3, 5
- [3] (Reuters) – Paragraphs 3, 4, 6
- [4] (Reuters) – Paragraph 4
- [5] (TechRadar) – Paragraph 3, 7
- [6] (Euronews) – Paragraph 3, 5
- [7] (Euronews) – Paragraph 7
Source: Noah Wire Services
Noah Fact Check Pro
The draft above was created using the information available at the time the story first
emerged. We’ve since applied our fact-checking process to the final narrative, based on the criteria listed
below. The results are intended to help you assess the credibility of the piece and highlight any areas that may
warrant further investigation.
Freshness check
Score:
8
Notes:
The narrative presents recent developments regarding the EU’s ‘Digital Omnibus’ package, announced on November 19, 2025, which includes delaying certain high-risk AI regulations until December 2027. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/eu-delay-high-risk-ai-rules-until-2027-after-big-tech-pushback-2025-11-19/?utm_source=openai)) This aligns with the publication date of the article, indicating high freshness. However, similar information has been reported by other reputable outlets, such as Reuters and Euronews, suggesting that the content may not be entirely original. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/how-eu-plans-ease-rules-big-tech-2025-11-19/?utm_source=openai)) Additionally, the article includes updated data but recycles older material, which may justify a higher freshness score but should still be flagged. ([lemonde.fr](https://www.lemonde.fr/en/economy/article/2025/11/19/european-commission-launches-digital-regulation-simplification_6747624_19.html?utm_source=openai))
Quotes check
Score:
7
Notes:
The article includes direct quotes from privacy activist Max Schrems, describing the move as “death by a thousand cuts” to GDPR protections. A search reveals that this exact quote has been used in earlier reports, indicating potential reuse of content. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/eu-ease-ai-privacy-rules-critics-warn-caving-big-tech-trump-2025-11-19/?utm_source=openai)) The wording of the quote varies slightly in different sources, suggesting some variation in reporting. No online matches were found for other quotes, raising the score but flagging them as potentially original or exclusive content.
Source reliability
Score:
6
Notes:
The narrative originates from WebProNews, a less well-known outlet, which may raise questions about its credibility. However, the article references reputable organizations such as Reuters and Euronews, which adds credibility to the information presented. The reliance on a single outlet for the primary narrative introduces some uncertainty.
Plausability check
Score:
8
Notes:
The claims about the EU’s ‘Digital Omnibus’ package and the delay of high-risk AI regulations are plausible and align with recent reports from reputable sources. ([reuters.com](https://www.reuters.com/sustainability/boards-policy-regulation/eu-delay-high-risk-ai-rules-until-2027-after-big-tech-pushback-2025-11-19/?utm_source=openai)) The narrative lacks supporting detail from other reputable outlets, which is a concern. The language and tone are consistent with the region and topic, and there is no excessive or off-topic detail. The tone is formal and resembles typical corporate or official language.
Overall assessment
Verdict (FAIL, OPEN, PASS): OPEN
Confidence (LOW, MEDIUM, HIGH): MEDIUM
Summary:
The narrative presents recent developments regarding the EU’s ‘Digital Omnibus’ package, with a publication date of November 19, 2025, indicating high freshness. However, similar information has been reported by other reputable outlets, suggesting potential reuse of content. The reliance on a less well-known outlet for the primary narrative introduces some uncertainty. While the claims are plausible and align with recent reports, the lack of supporting detail from other reputable outlets is a concern. Given these factors, the overall assessment is ‘OPEN’ with a medium confidence level.
