Marc ten Eikelder, Author at Kiteworks

Sovereign AI Depends on Control, Not Location

Sovereign AI Is a Governance Problem, Not a Geography Problem

by Marc ten Eikelder May 29, 2026May 29, 2026 | Cybersecurity Risk Management

Ninety-six percent of organizations are considering relocating AI infrastructure to specific regions — not because they want to, but because geopolitical pressure and supply-chain risk are forcing the question. Sovereign...

ITAR Compliance Through Data Governance Frameworks

ITAR Export Control Requirements for Netherlands Defense Contractors

by Marc ten Eikelder May 29, 2026May 29, 2026 | Regulatory Compliance

Defense contractors in the Netherlands face a complex landscape when implementing ITAR compliance export control requirements within their operational frameworks. The International Traffic in Arms Regulations establish stringent controls on...

Privacy by Design for Healthcare Data Security

What Healthcare Providers in England Need for Data Protection by Design

by Marc ten Eikelder May 29, 2026May 29, 2026 | Regulatory Compliance

Healthcare organisations in England face unprecedented challenges in managing sensitive patient data whilst maintaining operational efficiency. The National Data Guardian’s privacy by design principles, alongside evolving cybersecurity threats and regulatory...

ICO Guidance: AI Threats Meet Article 32

The ICO Just Made AI Security a UK GDPR Article 32 Duty

by Marc ten Eikelder May 25, 2026May 25, 2026 | GDPR Compliance

5 Key Takeaways 1. AI security is now a data protection duty. The ICO’s new guidance frames AI-powered threats as a present-day obligation under UK GDPR Article 32, not a...

Evidence Over Documentation: GDPR's New Standard

GDPR Enforcement in 2026 Just Stopped Caring About Your Policies

by Marc ten Eikelder May 25, 2026May 25, 2026 | GDPR Compliance

Key Takeaways Regulators are targeting systems, not paperwork. GDPR enforcement is accelerating, with regulators issuing more fines in 2023–2026 than in the preceding five years combined. The pattern increasingly punishes...

Beyond SCCs: Enforcing Real Data Controls

€100 Million Says Your SCCs Aren’t Enough for Data Sovereignty

by Marc ten Eikelder May 25, 2026May 25, 2026 | GDPR Compliance

Key Takeaways Contracts didn’t save the controller. The Dutch Data Protection Authority fined a taxi platform €100 million for transferring EU personal data to Russia — even though the company...

Austrian Healthcare Data Sovereignty Compliance Strategies

What Austrian Healthcare Providers Must Know About Data Sovereignty

by Marc ten Eikelder May 24, 2026May 24, 2026 | GDPR Compliance

Austrian healthcare organisations face unprecedented challenges maintaining control over sensitive medical data whilst complying with complex regulatory frameworks. The convergence of patient privacy requirements, cross-border data transfer restrictions, and cloud...

NIS 2 Supply Chain Security for Manufacturers

How Dutch Manufacturing Companies Secure Supply Chain Data Under NIS 2 Requirements

by Marc ten Eikelder May 22, 2026May 22, 2026 | Regulatory Compliance

The Netherlands’ manufacturing sector faces unprecedented cybersecurity obligations as NIS 2 Directive extends critical infrastructure protection requirements across industrial supply chains. Manufacturing companies must implement comprehensive security measures that protect...

Prepare Privacy Notices for EDPB GDPR Transparency Audits

25 EU Regulators Are About to Audit Your Privacy Notices — Here’s What to Fix Before They Arrive

by Marc ten Eikelder May 20, 2026May 20, 2026 | Regulatory Compliance

Key Takeaways EDPB 2026 Enforcement Targets Transparency. Approximately 25 EU data protection authorities will audit GDPR information obligations under Articles 5(1)(a), 12, 13, and 14 using questionnaires and investigations. Most...

AI Attack Autonomy Doubles Every 4.7 Months

AI Attacker Doubling Rate Hits 4.7 Months: Govern Data Now

by Marc ten Eikelder May 19, 2026May 19, 2026 | Cybersecurity Risk Management

The U.K. government just published the most uncomfortable benchmark in cybersecurity. The AI Security Institute (AISI), a research arm of the Department for Science, Innovation and Technology, has been tracking...

UAE AI Compliance: Navigating the Regulatory Stack

UAE Financial AI Compliance: The Stack Tightening Toward September 2026

by Marc ten Eikelder May 13, 2026May 13, 2026 | Regulatory Compliance

UAE financial AI compliance reads differently in May 2026 than it did three months ago. On February 11, 2026, the Central Bank of the UAE published its Guidance Note on...

EU Sovereignty Rules: May 27 Procurement Shift

May 27 EU Tech Sovereignty Reckoning: GCC High in Frankfurt Stopped Working

by Marc ten Eikelder May 13, 2026May 13, 2026 | Cybersecurity Risk Management

For nearly a decade, European data sovereignty has been argued in courts, conferences, and contract clauses. On May 27, 2026, it is expected to enter EU procurement law. Key Takeaways...

How Secure File Transfer Protects Your Data

Secure File Transfer: Cybersecurity Principles, Technologies, and Best Practices

by Marc ten Eikelder May 12, 2026May 12, 2026 | Secure File Transfer

In today’s hyper-connected digital landscape, data is the lifeblood of every organization. From sensitive customer information and proprietary intellectual property to critical operational data and financial records, the constant exchange...

AI Agents Threaten GDPR Article 32 Compliance

AI Agents Just Broke Your GDPR Article 32 Posture

by Marc ten Eikelder April 30, 2026April 30, 2026 | GDPR Compliance

Sixty percent of German organizations cite unauthorised onward sharing of data by partners and suppliers as a top compliance concern, according to the Kiteworks 2026 Data Security and Compliance Risk...

Four UK Regulators Just Mapped the AI Agent Compliance Crisis

by Marc ten Eikelder April 29, 2026April 29, 2026 | Regulatory Compliance

On 31 March 2026, four U.K. regulators did something they rarely do. They co-signed a warning. Key Takeaways Four U.K. regulators are speaking in unison. The Competition and Markets Authority,...

Security and Compliance Blog

Learn security strategies, compare vendors, and implement best practices to prevent breaches and compliance violations from risky third party communications.

Posts by Marc ten Eikelder

Sovereign AI Is a Governance Problem, Not a Geography Problem

ITAR Export Control Requirements for Netherlands Defense Contractors

How Dutch Manufacturing Companies Secure Supply Chain Data Under NIS 2 Requirements

AI Attacker Doubling Rate Hits 4.7 Months: Govern Data Now

UAE Financial AI Compliance: The Stack Tightening Toward September 2026

May 27 EU Tech Sovereignty Reckoning: GCC High in Frankfurt Stopped Working

Secure File Transfer: Cybersecurity Principles, Technologies, and Best Practices

Get started.