Digital vs Legal

The European Commission’s Digital Network Act (DNA) marks a decisive break from the 2002 Electronic Communications Code, replacing it with a single, ecosystem‑wide framework. By treating digital infrastructure as a holistic network rather than isolated telecom assets, the DNA reshapes cross‑border operations, spectrum sharing, and market remedies for operators across the EU. This shift reflects a broader policy trend that prioritises data flows, cloud services, and AI‑enabled platforms, positioning telcos to compete in a converged digital market rather than a traditional voice‑centric arena.

Compliance pressure intensifies as the DNA dovetails with the NIS2 Directive, the Cyber Resilience Act, and the forthcoming AI Act. Companies—large and small—must now embed robust governance, supply‑chain security, and incident‑response capabilities without stalling investment cycles. Portugal’s regulator, Anacom, exemplifies this push, spearheading subsea connectivity standards and public consultations that could impose service‑continuity obligations on operators handling international capacity. Data‑center operators, in particular, grapple with ambiguous AI‑Act duties, needing clear policies on hosting AI models and meeting critical‑infrastructure cybersecurity requirements.

Beyond Europe, the regulatory wave reverberates in Africa, where nations such as Angola, Mozambique, and Nigeria are asserting digital sovereignty through stricter data‑localisation and communications laws. These moves challenge EU firms to adapt to divergent compliance regimes while fostering balanced partnerships rather than donor‑recipient dynamics. Simultaneously, the GDPR’s automated‑decision safeguards and the AI Act’s transparency mandates aim to curb weaponised deep‑fakes targeting vulnerable groups. Together, these developments underscore a pivotal moment: regulators, operators, and innovators must align legal frameworks with rapid technological change to ensure security, competition, and consumer trust.