— Edition 1.247 52 verified trackers
ES EN
Politics · Technology · Digital regulation  ·  where data speaks before headlines
Snapshot data
AML/OFAC enforcement against banks and fintech — 418 penalties documented 418 AML/OFAC penalties documented across 177 countries and 379 regula… Corporate bankruptcy and insolvency (Chapter 11) — 4 major corporate bankrup… Corporate bankruptcies hit decade highs: over 717 in the year per S&P… High-impact litigation risk index — 4 high-impact litigations… The risk index (0-100) aggregates five objective factors —procedural … Merger control: multi-jurisdiction competition … — 9 decisions and jurisdict… Merger control diverges by jurisdiction in 2026: the Trump administra… PEPs and sanctions networks · Ibero-American graph — 40 PEP/company nodes with … Ibero-American PEP→company→sanction graph (core: Mapa del Poder, 424 … Sovereign debt distress and restructurings — 5 distress/restructuring … The IMF's 6th Global Sovereign Debt Roundtable report (April 15, 2026… Forced labor in supply chains: entity lists — 4 forced-labor exposure i… Upstream exposure intelligence densifies: the UFLPA Entity List reach… EU AI Act — designation of national authorities — 3/10/14 / 27 Member States Tracker's first event: 3 states with both authorities / 10 partial / … AI Act · Notified bodies for conformity assessment — 1 body with AI-specific a… Ecosystem 'not ready' as of Mar-2026 (standards unpublished, insuffic… Scandal → conviction gap — — milestones logged +1 mirror case: Uribe — 7 years to convict, 8 weeks to reverse, open-… Technology ↔ regulation gap — 26 regulatory milestones +1: Peru closes the generative-AI gap in ~3 years (DS 115-2025-PCM), … CNMC Spain · the Digital Services Coordinator g… — 6 documented milestones The gap becomes chronic: Congress struck down the CNMC's legal empowe… Corporate data breaches: from incident to response — 11 breaches documented +1: Canvas/Instructure, the largest known education breach (≈275M rec… Migration friction in corporate and event mobility — 3 incidents and policies … The 2026 World Cup works as a live stress test: 39 countries under fu… Power and corruption in the courts in Ibero-Ame… — 29 documented cases Jun-2026 review: Uribe updated — first-instance conviction overturned… Crypto · Licenses and authorizations by jurisdi… — 40+ CASPs with full MiCA au… July 1, 2026 cliff: the transitional regime expires (ESMA, Apr 17) wi… Data breaches · Class-action settlements — 5 settlements and mass ca… 271 million dollars across four settlements approved or with deadline… Digital regulatory risk index by country — 16 countries profiled Jun-2026 review: Brazil updated on two layers (EU adequacy Jan 26, 20… Digital services taxes (DST) by country — 3 tax-map milestones docu… About half of European OECD countries have a DST announced, proposed … Global election risk 2026: democracy and digita… — 32 elections profiled 32 electoral processes of 2026 profiled by political regime and digit… ESG · Greenwashing enforcement — 3 enforcement milestones … The legal floor arrives Sep 27, 2026 (ECGT across the 27; transpositi… EU · Digital & sustainability regulatory deadli… — 6 calendar milestones doc… Next critical deadlines: Jun 23, 2026 closes the high-risk classifica… Export controls · Entity List and advanced chips — 6 regime milestones docum… The 2026 shift: licensing for H200/MI325X and equivalents to China mo… GDPR · International transfers and adequacy dec… — 6 framework milestones do… The EU-US DPF remains in force after surviving its first judicial cha… LATAM · AI bills in legislative process — 150+ bills identified 150+ count re-verified; milestones: Peru only country with a regulate… LATAM · Judicial and regulatory sanctions on pl… — $5,2M USD · fine on X Corp. i… Paradigm shift: the STF declared Art. 19 of the Marco Civil partially… Digital political ad spending 2026 — 6 country-platform observ… AdImpact's revised projection (Jun 11): $11.6bn for the 2026 cycle — … Shadow fleet · Sanctioned vessels and enablers — 632 vessels designated by t… +46 vessels in the 20th package (Reg. 2026/506/509/511) to 632; Art. … Whistleblower awards · SEC, CFTC and equivalent… — 3 program milestones docu… The SEC awarded over $60M to 48 whistleblowers in fiscal year 2025 (2… AI Act · Sanctions regime and its actual enforc… — 0 documented AI Act fines… 0 AI Act penalties issued to date: enforcement of high-risk obligatio… Beneficial ownership transparency (UBO / CTA / … — 4 transparency milestones 4 beneficial-ownership transparency milestones documented; the EU req… Crypto industry: collapses, sanctions and convi… — 13 documented cases 13 cases of collapses, sanctions and convictions in the crypto sector… AI harms in court — litigation, rulings and set… — 103 documented cases 103 AI-related harm and rights lawsuits documented; 2026 milestones: … DMA · designated gatekeepers and real compliance — 9 documented DMA acts 9 DMA compliance actions documented against gatekeepers; 2026 develop… Documented electoral disinformation 2026 — 7 documented campaigns 7 electoral disinformation campaigns or patterns documented with open… GDPR · which national authority really sanctions — 11 authorities profiled 11 GDPR enforcement country profiles and milestones documented; 2026 … LATAM · Internet shutdowns and platform blocks — 8 documented events · 202… 8 internet shutdown and blocking episodes documented in Latin America… Operational resilience & cyber (DORA / NIS2 / SEC) — 4 regulatory milestones 4 operational-resilience milestones documented; 2026 is the first rea… Digital fines actually imposed — 61 sanctions recorded 61 high-value penalties across 18 jurisdictions and 6 continents; cov… Commercial spyware: documented cases worldwide — 23 documented cases 23 spyware and surveillance cases documented across the Ibero-America… Trade compliance & forced labor (UFLPA) — 4 actions documented 4 trade-compliance actions on forced labor documented; under UFLPA ar… US · the state AI regulation patchwork — 10 laws and milestones 10 state AI laws or milestones documented in the U.S.; 2026 developme… Electoral digital integrity 2026 — 13 elections profiled 13 elections profiled by digital integrity; 5 with transparent politi… Climate: the gap between pledge and action — 12 countries assessed 12 countries assessed by the Climate Action Tracker: 10 with insuffic… Content moderation: appeals and reversals — 19 documented decisions 19 appealed and reviewed moderation decisions, with their policy, ori… Public AI spending — global government contracts — 50 documented contracts 50 public AI contracts across 15 jurisdictions on 5 continents (45 wi… Campaign promises → fulfillment — 29 term evaluations 29 terms evaluated across 25 countries on five continents EU · Consolidated DSA enforcement decisions — €120M first DSA fine · X · 5 … 5 Member States referred to CJEU for insufficient DSC implementation LATAM · Digital spending in 2026 electoral camp… — $14.794M COP · highest declared … Only 8 of 13 campaigns had reported in Cuentas Claras by mid-May Ibero-America · documented public contracts wit… — 3 contracts verified with… DC registry kickoff · ongoing monthly manual sweep RSF · Press freedom in Latin America — 144 Peru's rank (the region… AR -11 · PE -14 · SV -8 · EC -31 · USA -7 AML/OFAC enforcement against banks and fintech — 418 penalties documented 418 AML/OFAC penalties documented across 177 countries and 379 regula… Corporate bankruptcy and insolvency (Chapter 11) — 4 major corporate bankrup… Corporate bankruptcies hit decade highs: over 717 in the year per S&P… High-impact litigation risk index — 4 high-impact litigations… The risk index (0-100) aggregates five objective factors —procedural … Merger control: multi-jurisdiction competition … — 9 decisions and jurisdict… Merger control diverges by jurisdiction in 2026: the Trump administra… PEPs and sanctions networks · Ibero-American graph — 40 PEP/company nodes with … Ibero-American PEP→company→sanction graph (core: Mapa del Poder, 424 … Sovereign debt distress and restructurings — 5 distress/restructuring … The IMF's 6th Global Sovereign Debt Roundtable report (April 15, 2026… Forced labor in supply chains: entity lists — 4 forced-labor exposure i… Upstream exposure intelligence densifies: the UFLPA Entity List reach… EU AI Act — designation of national authorities — 3/10/14 / 27 Member States Tracker's first event: 3 states with both authorities / 10 partial / … AI Act · Notified bodies for conformity assessment — 1 body with AI-specific a… Ecosystem 'not ready' as of Mar-2026 (standards unpublished, insuffic… Scandal → conviction gap — — milestones logged +1 mirror case: Uribe — 7 years to convict, 8 weeks to reverse, open-… Technology ↔ regulation gap — 26 regulatory milestones +1: Peru closes the generative-AI gap in ~3 years (DS 115-2025-PCM), … CNMC Spain · the Digital Services Coordinator g… — 6 documented milestones The gap becomes chronic: Congress struck down the CNMC's legal empowe… Corporate data breaches: from incident to response — 11 breaches documented +1: Canvas/Instructure, the largest known education breach (≈275M rec… Migration friction in corporate and event mobility — 3 incidents and policies … The 2026 World Cup works as a live stress test: 39 countries under fu… Power and corruption in the courts in Ibero-Ame… — 29 documented cases Jun-2026 review: Uribe updated — first-instance conviction overturned… Crypto · Licenses and authorizations by jurisdi… — 40+ CASPs with full MiCA au… July 1, 2026 cliff: the transitional regime expires (ESMA, Apr 17) wi… Data breaches · Class-action settlements — 5 settlements and mass ca… 271 million dollars across four settlements approved or with deadline… Digital regulatory risk index by country — 16 countries profiled Jun-2026 review: Brazil updated on two layers (EU adequacy Jan 26, 20… Digital services taxes (DST) by country — 3 tax-map milestones docu… About half of European OECD countries have a DST announced, proposed … Global election risk 2026: democracy and digita… — 32 elections profiled 32 electoral processes of 2026 profiled by political regime and digit… ESG · Greenwashing enforcement — 3 enforcement milestones … The legal floor arrives Sep 27, 2026 (ECGT across the 27; transpositi… EU · Digital & sustainability regulatory deadli… — 6 calendar milestones doc… Next critical deadlines: Jun 23, 2026 closes the high-risk classifica… Export controls · Entity List and advanced chips — 6 regime milestones docum… The 2026 shift: licensing for H200/MI325X and equivalents to China mo… GDPR · International transfers and adequacy dec… — 6 framework milestones do… The EU-US DPF remains in force after surviving its first judicial cha… LATAM · AI bills in legislative process — 150+ bills identified 150+ count re-verified; milestones: Peru only country with a regulate… LATAM · Judicial and regulatory sanctions on pl… — $5,2M USD · fine on X Corp. i… Paradigm shift: the STF declared Art. 19 of the Marco Civil partially… Digital political ad spending 2026 — 6 country-platform observ… AdImpact's revised projection (Jun 11): $11.6bn for the 2026 cycle — … Shadow fleet · Sanctioned vessels and enablers — 632 vessels designated by t… +46 vessels in the 20th package (Reg. 2026/506/509/511) to 632; Art. … Whistleblower awards · SEC, CFTC and equivalent… — 3 program milestones docu… The SEC awarded over $60M to 48 whistleblowers in fiscal year 2025 (2… AI Act · Sanctions regime and its actual enforc… — 0 documented AI Act fines… 0 AI Act penalties issued to date: enforcement of high-risk obligatio… Beneficial ownership transparency (UBO / CTA / … — 4 transparency milestones 4 beneficial-ownership transparency milestones documented; the EU req… Crypto industry: collapses, sanctions and convi… — 13 documented cases 13 cases of collapses, sanctions and convictions in the crypto sector… AI harms in court — litigation, rulings and set… — 103 documented cases 103 AI-related harm and rights lawsuits documented; 2026 milestones: … DMA · designated gatekeepers and real compliance — 9 documented DMA acts 9 DMA compliance actions documented against gatekeepers; 2026 develop… Documented electoral disinformation 2026 — 7 documented campaigns 7 electoral disinformation campaigns or patterns documented with open… GDPR · which national authority really sanctions — 11 authorities profiled 11 GDPR enforcement country profiles and milestones documented; 2026 … LATAM · Internet shutdowns and platform blocks — 8 documented events · 202… 8 internet shutdown and blocking episodes documented in Latin America… Operational resilience & cyber (DORA / NIS2 / SEC) — 4 regulatory milestones 4 operational-resilience milestones documented; 2026 is the first rea… Digital fines actually imposed — 61 sanctions recorded 61 high-value penalties across 18 jurisdictions and 6 continents; cov… Commercial spyware: documented cases worldwide — 23 documented cases 23 spyware and surveillance cases documented across the Ibero-America… Trade compliance & forced labor (UFLPA) — 4 actions documented 4 trade-compliance actions on forced labor documented; under UFLPA ar… US · the state AI regulation patchwork — 10 laws and milestones 10 state AI laws or milestones documented in the U.S.; 2026 developme… Electoral digital integrity 2026 — 13 elections profiled 13 elections profiled by digital integrity; 5 with transparent politi… Climate: the gap between pledge and action — 12 countries assessed 12 countries assessed by the Climate Action Tracker: 10 with insuffic… Content moderation: appeals and reversals — 19 documented decisions 19 appealed and reviewed moderation decisions, with their policy, ori… Public AI spending — global government contracts — 50 documented contracts 50 public AI contracts across 15 jurisdictions on 5 continents (45 wi… Campaign promises → fulfillment — 29 term evaluations 29 terms evaluated across 25 countries on five continents EU · Consolidated DSA enforcement decisions — €120M first DSA fine · X · 5 … 5 Member States referred to CJEU for insufficient DSC implementation LATAM · Digital spending in 2026 electoral camp… — $14.794M COP · highest declared … Only 8 of 13 campaigns had reported in Cuentas Claras by mid-May Ibero-America · documented public contracts wit… — 3 contracts verified with… DC registry kickoff · ongoing monthly manual sweep RSF · Press freedom in Latin America — 144 Peru's rank (the region… AR -11 · PE -14 · SV -8 · EC -31 · USA -7
/ trackers / dma-gatekeepers-compliance
EU · Digital competition

DMA · designated gatekeepers and real compliance

Tracking of the gatekeepers designated by the European Commission under the Digital Markets Act (DMA, Regulation EU 2022/1925) and their level of real compliance. The DMA imposes obligations on large platforms with a systemic role —prohibition of self-preferencing, interoperability, no combining data without consent— with fines of up to 10% of global turnover (20% for repeat offenders). The tracker measures the gap between formal designation and effective compliance: which companies were designated, for which services, what investigations they face and what sanctions have been confirmed. Each record documents the company, the service or decision, its status and its official source.

Snapshot · June 8, 2026
9
documented DMA acts
↑ 9 DMA compliance actions documented against gatekeepers; 2026 development: Meta modified its 'consent or pay' ads model after the non-compliance decision, amid sustained enforcement promised by Commissioner Ribera despite U.S. tariff threats

Evolution

Data analysis

Statistical readings derived from the attributes of each recorded case. All figures come from the documented events; amounts are computed only over cases with a sum expressed in the indicated currency, without converting between currencies.

Record status

The outcome of each DMA act: designated, investigated, sanctioned (final), appealed or de-designated. The tracker's most differential field.

Company

Distribution of DMA records by designated gatekeeper.

Act type

The nature of each record: designation, investigation, sanction or status change.

Reading the data

The Digital Markets Act designated seven gatekeepers —Alphabet, Amazon, Apple, ByteDance, Meta, Microsoft and Booking— and imposed obligations with fines of up to 10% of their global turnover. In April 2025 the first final sanctions arrived: €500 million to Apple, €200 to Meta. This tracker measures the gap between designating a gatekeeper and getting it to comply.

YV
Yaneth Vickari S. · Digital regulation expert · Madrid
May 26, 2026 · 6 min read

The Digital Markets Act (DMA) is the European Union's most ambitious bet to open the digital ecosystems controlled by big tech. It does not regulate content —that is the DSA's job— but market power: it prohibits a gatekeeper from self-preferencing, requires it to allow interoperability, and bars it from combining its services' data without consent. The incentive to comply is brutal: fines of up to 10% of global turnover, which for Amazon could exceed $60 billion.

This tracker does not narrate the political tug-of-war between Brussels and Silicon Valley. It documents its verifiable acts: who was designated a gatekeeper, for which services, what investigations it faces and what sanctions have been confirmed. The unit of measure is the outcome, not the announcement. Because, just as with GDPR fines, an open investigation is not a final sanction, and a final sanction can end up appealed.

Seven designated gatekeepers, 23 core platform services, and only two final fines so far: €500 million to Apple over App Store rules and €200 to Meta over the 'pay or consent' model, both in April 2025. The gap between the rule's ambition —up to 10% of global turnover— and what has been sanctioned to date remains enormous.

Designating is easy; getting compliance, not so

The pattern the tracker reveals is the same that runs through all European digital regulation: the bottleneck is not in writing the law nor in designating the obligated parties, but in enforcement. The Commission designated the first six gatekeepers in September 2023 relatively quickly; but the first final sanctions did not arrive until April 2025, a year and a half later, and only against two companies. Meanwhile, ByteDance appealed its designation —and lost—, Meta got Facebook Marketplace de-designated, and Alphabet remains under investigation for self-preferencing.

For a competition team, a law firm or a company operating on these gatekeepers' platforms, the useful question is not 'what does the DMA say' but 'which obligation is actually being enforced, against whom and with what outcome'. Apple changed its App Store rules under pressure; Meta redesigned its consent model and rolled out a less-data option in January 2026. Those behavioural changes —not just the fines— are the real metric of whether the DMA works.

Methodology note

The primary source is the European Commission's official DMA Gatekeepers portal, complemented with European Parliament monitoring and specialised analysis. A distinction is drawn between designation, investigation, final sanction, appeal and de-designation. The amounts are those of the Commission's decision; it is noted when a fine is appealed. No unpublished figures are imputed. This tracker is informational infrastructure, not legal advice.

The charts are computed from each record's attributes: status, company and act type. The regime's status updates as the Commission publishes new decisions.

Documented events (9)

February 1, 2024 EU confirmed

ByteDance appeals its gatekeeper designation and loses interim measures

ByteDance appeals its gatekeeper designation for TikTok before the EU General Court, but loses its bid for interim measures in February 2024. No designated gatekeeper has succeeded in overturning its designation.

March 25, 2024 EU confirmed

Investigation into Alphabet over self-preferencing and steering rules

The Commission investigates Alphabet over possible self-preferencing in Google Search and over Google Play steering rules that would limit developers from directing users outside the store.

January 1, 2026 BE confirmed

EU · Meta changes its advertising model in January 2026 to comply with the DMA

After the European Commission's April 2025 non-compliance decision on its 'consent or pay' model, Meta announced that from January 2026 it would give EU users the option to share all their data to see fully personalized advertising or share less data to see more limited personalized advertising. The change is a direct response to DMA regulatory pressure, which requires gatekeepers to obtain user consent to combine their data. Competition Commissioner Teresa Ribera has promised sustained enforcement of the digital rules despite tariff threats from the U.S. administration.

April 23, 2025 EU confirmed

The Commission withdraws Facebook Marketplace's designation

The Commission de-designates Meta for its online intermediation service Facebook Marketplace, reducing the total of designated core platform services to 23.

April 23, 2025 EU confirmed

€200 million DMA fine to Meta over the 'pay or consent' model

The Commission fines Meta €200 million over its 'pay or consent' model, which forced EU users to accept personalised advertising or pay a subscription. Meta later agreed to offer a less-data option, rolled out in January 2026.

April 23, 2025 EU confirmed

First DMA fine: €500 million to Apple over App Store steering rules

The Commission issues the first DMA non-compliance decisions and fines Apple €500 million for failing to comply with the App Store steering rules, which prevented developers from informing users of offers outside the store.

May 13, 2024 EU confirmed

The Commission designates Booking.com as the seventh gatekeeper

The Commission designates Booking as gatekeeper for its online intermediation service Booking.com, with a compliance deadline in November 2024. It is the DMA's seventh gatekeeper.

April 29, 2024 EU confirmed

The Commission designates Apple as gatekeeper for iPadOS

The Commission extends Apple's designation to include iPadOS, its operating system for tablets, as a core platform service subject to the DMA.

September 6, 2023 EU confirmed

The Commission designates the first six DMA gatekeepers

The European Commission designates for the first time six gatekeepers —Alphabet, Amazon, Apple, ByteDance, Meta and Microsoft— under the DMA, over 22 core platform services. They had until 6 March 2024 to comply with the obligations of Articles 5, 6 and 7.

Methodology

Type
event-log
Construction
DC editorial construction
Cadence
event-driven

Each record documents a verifiable act in the DMA gatekeeper regime: a designation, a non-compliance investigation, a non-compliance decision with a fine, or a status change (appeal, de-designation). The status —the outcome— is the most differential field: it distinguishes between designated, investigated, sanctioned (final), appealed or de-designated. The amounts are those of the Commission's decision; where a fine is appealed it is noted. No unpublished figures are imputed. Primary source: the European Commission's official DMA portal.

Sources consulted

  1. Comisión Europea — Portal de Guardianes de Acceso del DMA ↗ official
  2. Comisión Europea — Reglamento (UE) 2022/1925 (DMA) ↗ official
  3. Parlamento Europeo — DMA enforcement: state of play ↗ academic