Data Governance Redefined: The Evolution of EU Data Regulations from the GDPR to the DMA, DSA, DGA, Data Act and AI Act.

This study explores the evolution of EU Data Regulations from the GDPR, through the DMA, DSA, DGA, Data Act and the upcoming AI Act. It addresses a research gap of a comprehensive evolutionary view of a significant regulatory expansion in the scope of data, the diversification of regulated entities, and the increasing complexity of data management activities. Through a comparative legal analysis, it highlights how the regulations responded to digital challenges, from the often obscure and anticompetitive data management practices of big tech companies to the emergence of new technologies such as IoT, smart contracts and generative AI, and created the expansion of regulatory reach to new entities, including gatekeepers, online intermediaries, data intermediaries, data altruism organizations, manufacturers of connected products, AI system developers and many more, and a broadening scope of data from personal to non-personal and business data. Our analysis critically assesses the alignment of this evolution with the European Data Strategy of creating a single market for data through fostering innovation and competition, and shaping a society empowered by data by safeguarding fundamental rights through ensuring data access, accountability and transparency. This paper contributes to understanding the EU's evolving approach to data governance, fundamental rights and innovation.