Blog
News & insights
Company updates, regulatory intelligence insights, and product news from Cleo Labs.
FeaturedProduct2026-04-30
Naomie Halioua
Co-founder & CRO, AI Research
What’s new at Cleo — April 2026
Four product launches this month: +18 new countries (now 106 total, 234M+ legal documents), in-app AI chat with slash commands and @entity mentions, Cleo Insight as a connector inside Claude / Cursor / ChatGPT, and a public API v1 with seven endpoints.
Read more →
Company2026-04-295 min read
Cleo Labs raises €1.5M to automate product regulatory compliance at a global scale
Round led by Larry Berger, with Kima Ventures, Financière Saint-James, and several tech ecosystem figures — plus additional funding from Deel. Cleo Labs will accelerate technology development, structure European expansion, and prepare for entry into the U.S. market.
Naomie Halioua
Product Compliance2026-04-276 min read
When a lipstick becomes a legal risk: what 2025's cosmetic recalls reveal about product compliance
In 2024, cosmetics accounted for 36% of all alerts on EU Safety Gate — the leading category, ahead of toys, clothing and electronics. Three recent recalls (MCI/MI in leave-on creams, heavy metals in makeup, French PFAS law n°2025-188) show why compliance in cosmetics is not an event but a regulatory flow that has to be tracked across living annexes.
Naomie Halioua
Product Compliance2026-04-275 min read
One toy, two legal outcomes: why magnetic toys get recalled in some markets and not others
A product can look identical across markets — its legal status will not. Four real magnetic toy recalls from the UK and Canada show how a single technical threshold (flux index, small parts cylinder, warnings) separates a sellable product from one yanked off the shelves.
Naomie Halioua
Product Compliance2026-04-279 min read
CE marking in 2026: from physical goods to digital products
CE marking is the European passport for products. Roughly 25 harmonisation directives and regulations cover machinery, electrical equipment, radio devices, toys, medical devices, PPE, construction products and more — and from December 2027, software and connected devices join the list under the Cyber Resilience Act. Here is what 2026 actually requires across both worlds.
Alexandre Bloch
Company2026-04-176 min read
Global Product Compliance in 2026: Why We Won the Pitch by Deel
Every physical product sold globally faces 100+ regulations across R&D, manufacturing, labelling, and customs. Here's how Cleo Labs is automating global product compliance with AI — and why Deel just picked us as their winner at Station F.
Naomie Halioua
AI2026-03-315 min read
"Detective Work We Shouldn't Have to Do": Why Data Quality Is the Blind Spot of ML Compliance
A new research paper interviews EU-based data practitioners and exposes 5 systemic gaps between GDPR requirements and ML pipeline reality.
Naomie Halioua
Product Compliance2026-03-246 min read
8 Products That Are Legal Here, Illegal There
Kinder Surprise, Red Bull, melatonin gummies — these everyday products are perfectly legal in one country and completely banned in another. Here's why, and what it means for brands selling internationally.
Naomie Halioua
AI2026-03-179 min read
TRISM: Why Agentic AI Doesn't Have a Trust Problem — It Has an Architecture Problem
A landmark paper introduces TRISM, the first framework to separate trust, risk, and security in multi-agent AI systems. 66 citations in 3 months — here's why compliance teams should pay attention.
Alexandre Bloch
Product Compliance2026-03-1211 min read
Global Chemical Product Compliance: CAS Numbers, Formulations & Multi-Country Regulations
From CAS number screening to full formulation compliance across 106 countries — chemicals, packaging, labeling, and regulatory forecasting for South Africa, Mexico, EU, Brazil, China, India, and beyond.
Naomie HaliouaCompliance2026-03-1112 min read
Multi-Market Product Compliance for Retail & Consumer Goods: The Definitive Guide
Launching a product across 106 countries? Map every regulation — ingredients, labeling, safety, packaging — with AI-powered compliance intelligence.
Anaelle Guez
Product Compliance2026-03-119 min read
Digital Product Passport (DPP): What Retail Brands Need to Know
Starting in 2027, the EU will require Digital Product Passports for textiles, electronics, batteries and more — every product will need a QR code linking to a structured dataset on its composition, origin, repairability and end-of-life. Here's how retail brands should prepare under ESPR (Regulation 2024/1781).
Naomie Halioua
Product Compliance2026-03-1110 min read
GPSR Compliance Guide for Consumer Goods Brands (2026)
The EU General Product Safety Regulation (GPSR, Regulation 2023/988) replaced the General Product Safety Directive on December 13, 2024. It applies to every non-food consumer product sold in the EU — from cosmetics to electronics to toys. Here is what brands need to do, with risk assessment, documentation and online-marketplace obligations.
Anaelle Guez
Product Compliance2026-03-1111 min read
Cosmetic Regulation by Country: EU vs US vs Japan vs Brazil vs China
A cosmetic product sold globally must comply with completely different regulatory frameworks in each market. The EU bans over 1,600 ingredients; the US bans 11. Japan requires quasi-drug classification for anti-aging claims. China mandates animal testing for imported ordinary cosmetics. This guide maps the key differences across five major markets.
Anaelle Guez
AI2026-03-106 min read
What If Someone Fed Your Compliance AI a Fake GDPR Text?
Most compliance AI assumes regulatory text is authentic. A new research paper introduces DEF, the first framework that detects falsified legal documents.
Naomie Halioua
AI2026-03-108 min read
Multi-Agent AI for Compliance: What 2026 Research Says
Peer-reviewed 2026 studies confirm multi-agent AI can evaluate compliance across GDPR, AI Act, NIS2, and DORA — faster and more accurately.
Naomie HaliouaCompliance2026-03-0610 min read
Product Compliance in the EU: The Complete Guide for Tech Companies
Product compliance is the fastest-growing challenge for EU tech companies. This guide covers every framework from CE marking to AI Act.
Anaelle Guez
Compliance2026-03-0510 min read
Regulatory Compliance in France: A Complete Guide for Tech Companies
From CNIL enforcement to Sapin II and the Duty of Vigilance law, here's everything tech companies need to know about regulatory compliance in France.
Anaelle Guez
Compliance2026-03-0410 min read
CSRD 2026: The Real Challenges of Sustainability Reporting for Large Groups
Beyond the directive itself, CSRD compliance is a massive data aggregation challenge. Here are the concrete problems large companies face.
Anaelle Guez
Compliance2026-03-037 min read
Product Compliance vs. Corporate Compliance: What's the Difference and Why It Matters
Most companies confuse product compliance with corporate compliance. The distinction matters, especially in the EU, where product-specific regulations are multiplying faster than ever.
Anaelle Guez
Compliance2026-03-029 min read
GDPR Enforcement by Country: Fines and Trends in 2026
A data-driven breakdown of how GDPR enforcement varies across EU member states. Compare fines, enforcement patterns, and DPA priorities in 2026.
Anaelle Guez
Compliance2026-03-019 min read
NIS2 Compliance Guide: What Every EU Business Must Know
NIS2 dramatically expands cybersecurity obligations across the EU. This guide covers who's in scope, what's required, the penalties for non-compliance, and how to prepare.
Anaelle Guez
Compliance2026-02-288 min read
UK Post-Brexit Compliance: What EU Companies Must Know in 2026
The UK regulatory landscape has diverged from the EU since Brexit. From UK GDPR to FCA Consumer Duty, here's what European companies need to track.
Naomie Halioua
FinTech2026-02-278 min read
The Compliance IT Stack in 2026: Why Fintechs Need Regulatory Intelligence, Not More GRC Tools
GRC platforms were built for 5 regulations. Fintechs face 50+. Here's why compliance IT teams are switching to AI-powered regulatory intelligence.
Alexandre Bloch
Compliance2026-02-268 min read
Brazil's LGPD vs GDPR: Key Differences for Compliance Teams
Operating in both Brazil and the EU? Here's a practical comparison of LGPD and GDPR covering legal bases, DPO requirements, data transfers, and penalties.
Naomie Halioua
FinTech2026-02-259 min read
Product Compliance Checklist: Launching a Fintech Product Across the EU
Launching a fintech in the EU means navigating PSD2, MiCA, DORA, AML6, GDPR, and the AI Act. This checklist covers every regulatory step.
Anaelle Guez
Compliance2026-02-249 min read
EU AI Act Compliance Guide 2026: What You Need to Know Now
With high-risk AI system requirements taking effect in August 2026, compliance teams have months, not years, to prepare. A practical guide to AI Act obligations, timelines, and how to build readiness.
Anaelle Guez
Compliance2026-02-237 min read
DORA Compliance Deadline Tracker: Key Dates and Action Items for 2026
DORA is fully applicable, but many financial entities are still catching up. A practical tracker of every key deadline, requirement, and action item for ICT risk management compliance in 2026.
Anaelle Guez
AI2026-02-227 min read
Agentic AI for Regulatory Compliance: Why the Future of Compliance Is Autonomous
Regulatory complexity is outpacing compliance teams. Agentic AI — systems that reason, plan, and act autonomously — is the only viable response.
Alexandre Bloch
Compliance2026-02-218 min read
The Real Cost of Non-Compliance in the EU: 2026 Data
From GDPR's €5B+ in cumulative fines to AI Act penalties of 7% of global revenue, the cost of non-compliance in the EU has never been higher. Here are the numbers that matter.
Anaelle Guez
AI2026-02-208 min read
The Compliance Officer's Guide to AI Tools in 2026
AI tools for compliance are proliferating. But which ones actually deliver? A research-backed guide to evaluating AI compliance platforms, from regulatory monitoring to due diligence.
Naomie Halioua
AI2026-02-196 min read
How AI Is Transforming Compliance Monitoring in 2026
From keyword alerts to contextual intelligence: how AI-powered monitoring systems are replacing manual regulatory watch and giving compliance teams a decisive edge.
Alexandre Bloch
AI2026-02-189 min read
RegTech Market 2026: The Definitive Landscape Guide
The RegTech market is projected to reach $42B by 2026. This landscape guide maps the key players, emerging categories, and the shift from reactive GRC to proactive regulatory intelligence.
Naomie Halioua
AI2026-02-178 min read
How Multi-Agent AI Scores Regulatory Risk: Inside Cleo's Pipeline
A deep dive into the multi-agent AI architecture behind Cleo's regulatory risk scoring, from the 5-stage pipeline to the 30+ specialized agents that achieve 98.5% accuracy.
Alexandre Bloch
Compliance2026-02-168 min read
Cybersecurity Compliance for Tech Companies in the EU: NIS2, DORA and Beyond
NIS2 and DORA are rewriting the rules for cybersecurity compliance in the EU. For tech companies, this means new obligations for incident reporting, risk management, and supply chain security.
Alexandre Bloch
Compliance2026-02-158 min read
Regulatory Intelligence in 2026: 5 Trends Compliance Leaders Can't Ignore
From the EU AI Act enforcement wave to cross-border data transfer upheaval, here are the five regulatory trends shaping compliance strategy this year.
Anaelle Guez
AI2026-02-136 min read
Building Explainable AI for Compliance: Why Transparency Is Non-Negotiable
Regulators demand that AI-driven compliance decisions be auditable and explainable. Black-box models create risk even when they perform well. Here's how to build AI that regulators trust.
Naomie Halioua
Compliance2026-02-126 min read
Automating Third-Party Due Diligence: From 5 Days to 2 Hours
Manual third-party screening is slow, expensive, and error-prone. AI-powered due diligence collapses weeks of work into hours, with better coverage and full auditability.
Anaelle Guez
Compliance2026-02-117 min read
GDPR in 2026: Beyond the Compliance Checklist
Eight years after GDPR, enforcement has matured. Here's what compliance teams need to know about the regulation's new reality in 2026.
Anaelle Guez