Ctrl+AI+Reg - 12 March 2026
Your shortcut to AI regulation, law and policy updates around the world.
AI Regulation Updates
In this issue:
Updates from EU, US, China (x3), Australia (x2), South Korea x UAE.
Lawsuit updates on Amazon v Perplexity and Anthropic v US government.
See more on my Global AI Regulation Tracker (English version | Chinese version)
Asia
🇨🇳 [11 March 2026] China moves to curb use of OpenClaw AI at banks, state agencies: It is reported that the Chinese government has issued directives to state-run enterprises and government agencies, including major banks, advising against the installation of OpenClaw AI software on office devices due to security concerns. Employees who have already installed the software are instructed to inform their superiors for security assessments and potential removal. OpenClaw, an open-source AI agent capable of autonomously performing tasks such as file sorting and internet browsing, has raised alarms over its extensive access to private data and potential vulnerability to external attacks. This move reflects Beijing’s heightened focus on data security and control over emerging technologies.
🇨🇳 [10 March 2026] CNCERT issues warning on OpenClaw risks amid adoption frenzy: The National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT) has issued a second warning regarding security and data risks associated with OpenClaw. Despite its rapid adoption in China, CNCERT highlights vulnerabilities such as ‘prompt injection’ attacks, where malicious instructions embedded in web pages can trick OpenClaw into leaking system keys, and ‘operational errors’ that may lead to unintended deletion of critical information. The agency attributes these risks to OpenClaw’s autonomous task execution, which requires high-level system permissions, increasing exposure to potential breaches.