New technologies law (ICT law) is the layer of legal rules that governs the lifecycle of digital products and services : contracts, IP, regulatory compliance, liability, data, AI and emerging technologies. In Europe, the framework has matured rapidly : AI Act in 2024, Cyber Resilience Act, Data Act, Data Governance Act, MiCA for crypto-assets. Dreyfus advises tech companies on the legal qualification of their products and the cascading obligations triggered by each new regulation.
Reviewed by Nathalie Dreyfus, European trademark and patent attorney. Last updated : May 2026.
ICT law and IP law are now inseparable in four scenarios.
Our team works at the seam of these areas, with a particular focus on AI, Web 3.0 and IoT.
The EU AI Act, in force since 2024 with phased application 2025-2027, introduces obligations for AI systems based on risk level : prohibited, high-risk, general-purpose, minimal risk.
Source: Regulation (EU) 2024/1689, AI Act.
The Markets in Crypto-Assets Regulation (MiCA), fully applicable since December 2024, regulates issuers and service providers of crypto-assets in the EU, including stablecoins and utility tokens.
Source: Regulation (EU) 2023/1114, MiCA.
From 2027, products with digital elements placed on the EU market must meet cybersecurity essential requirements throughout their lifecycle, with CE marking.
Source: Regulation (EU) 2024/2847, Cyber Resilience Act.
From September 2025, the Data Act regulates access to and sharing of data generated by connected products and related services in the EU, including B2B and B2G data flows.
Source: Regulation (EU) 2023/2854, Data Act.
Blockchain is a transparent, decentralised database that enables secure storage and transfer of value or information. We help clients leverage blockchain across two main use cases : digital evidence (timestamping creations via our proprietary Dreyfus Blockchain solution) and Web 3.0 strategy (smart contracts, NFTs, tokenisation, blockchain domains).
For dedicated Web 3.0 and NFT advisory, see also our Web 3.0 law silo, which covers NFT law, NFT compliance, NFT litigation and cybersecurity with a stronger product focus.
Web 3.0 raises new contracting needs that our team addresses in coordination with our IP contract law and Web 3.0 law teams.
Mapping, FRIA, transparency reports, downstream deployer contracts.
CRA gap analysis, supplier contracts, conformity assessment preparation.
Data access agreements, B2B and B2G data sharing, EU data spaces participation.
SaaS, API, licensing, partnership, sponsorship, and white-label agreements.
Technology-related disputes, breach of contract, IP infringement, regulatory actions.
Custom-built workshops for legal, engineering and product teams.
It covers the legal rules that apply to the development and deployment of digital products and services : AI, IoT, blockchain, cloud, software-as-a-service, and the regulations that govern them in the EU (AI Act, Data Act, Cyber Resilience Act, MiCA, GDPR, DSA).
Yes. The AI Act applies extraterritorially when an AI system is placed on the EU market, used in the EU, or its output is used in the EU. Non-EU providers must appoint an authorised representative established in the EU.
MiCA (Markets in Crypto-Assets Regulation) is the EU framework for issuers and service providers of crypto-assets, fully applicable since December 2024. It covers asset-referenced tokens, e-money tokens and other crypto-assets, with specific authorisation regimes.
The Cyber Resilience Act (CRA) requires manufacturers of products with digital elements to ensure cybersecurity throughout the product lifecycle, with CE marking and vulnerability handling obligations. Phased application starts in 2026.
The Data Act, applicable since September 2025, gives users of connected products and related services the right to access data they generate and to share it with third parties. It creates new obligations for data holders and reshapes industrial IoT business models.
On our website, new technologies law covers ICT law fundamentals (contracts, IP, EU regulations). Our Web 3.0 law silo dives deeper into product-specific topics : NFT law, NFT compliance, NFT litigation, and cybersecurity for Web 3.0 projects.
