Industry Conversation

Quantum Policy: The Legislative and Regulatory Decisions Being Made Now on Insufficient Evidence

Quantum technology is passing through the legislative window. Export control regimes are being updated. Data protection regulations are being interpreted against a cryptographic threat that most legislative drafters did not anticipate. Financial regulation is creating compliance obligations without quantum-specific technical standards. The policy instruments being written now will constrain or enable quantum security for a decade. This conversation is for the legislators, regulators, and advisors who are writing them and who need a peer-tested read on what the technology actually requires.

In-person Hosted Dinner Expert Member access Chatham House Rule

Event Details

Who else is in the room
Senior level executive peers, industry leaders, experts in risk, technology and business. Specifically: legislators, senior regulatory officials, and policy advisors with direct responsibility for legal and regulatory frameworks touching quantum technology, data protection, critical infrastructure, or financial regulation.
Access
Members only. Bundled with Expert Membership. Included with Expert Member tier
Sponsor
Organised by QSECDEF
Facilitator
Anna Beata Kalisz Hedegaard, Quantum Security Defence
Anna Beata Kalisz Hedegaard Quantum Security Defence
Rules of engagement
Chatham House Rule Chatham House Rule. Discussion is on the record; attribution is not. Participants may share what was said but not who said it.
Format
In-person Hosted Dinner Flexible between roundtable, structured Q&A or in-person hosted dinner
Who Should Join
This conversation is for legislators, senior regulatory officials, and policy advisors with direct responsibility for legal and regulatory frameworks that intersect with quantum technology, data protection, critical infrastructure, or financial regulation. Senior legal advisors to government and policy researchers embedded in the legislative process will find it most useful. It is not for compliance professionals implementing existing regulation, or for commercial organisations seeking regulatory intelligence. Participants are expected to be designing the instruments, not applying them.

Proud to recommend our expert members

Qrypto Cyber
Eclypses
Arqit
QuantBond
Krown
Applied Quantum
Quantum Bitcoin
Venari Security
QuStream
BHO Legal
Census
QSP
IONQ - ID Quantique
Patero
Entopya
Belden
Atlant3D
Zenith Studio
Qudef
Aries Partners
GQI
Upperside Conferences
Austrade
Arrise Innovations
CyberRST
Triarii Research
QSysteme
WizzWang
DeepTech DAO
Xyberteq
Viavi
Entrust
Qsentinel
Nokia
Gopher Security
Quside
QIZ
Global Quantum Intelligence
Qrypto Cyber
Eclypses
Arqit
QuantBond
Krown
Applied Quantum
Quantum Bitcoin
Venari Security
QuStream
BHO Legal
Census
QSP
IONQ - ID Quantique
Patero
Entopya
Belden
Atlant3D
Zenith Studio
Qudef
Aries Partners
GQI
Upperside Conferences
Austrade
Arrise Innovations
CyberRST
Triarii Research
QSysteme
WizzWang
DeepTech DAO
Xyberteq
Viavi
Entrust
Qsentinel
Nokia
Gopher Security
Quside
QIZ
Global Quantum Intelligence

About This Conversation

Why this matters now

NIST's August 2024 finalisation of post-quantum standards created a technical anchor that most legislative and regulatory frameworks have not yet referenced. The EU's NIS2, DORA, and AI Act were all drafted and finalised without explicit post-quantum cryptography provisions, creating a gap between legislative intent and technical requirement. The legal liability dimension is beginning to crystallise: organisations retaining data encrypted with quantum-vulnerable algorithms over long periods face a risk of legal challenge when those algorithms fail. The ICO has explicitly advised that the transition to PQC should begin now, given the harvest-now-decrypt-later risk, but most national regulators have not yet amended their sector-specific guidance.

Outcomes

What you will leave with

  • A comparative legislative map: which jurisdictions are ahead in quantum policy design, which frameworks are creating unintended barriers to allied collaboration, and where the most consequential gaps remain
  • A shared analysis of the legal liability exposure that existing data protection and financial regulation creates for organisations retaining cryptographically vulnerable data
  • Practical framing for the legislative design challenge: how to write quantum policy that is specific enough to require action without becoming technically obsolete before it enters force
  • Peer experience from regulatory advisors on the enforcement trajectory: where regulators are building quantum security into their supervisory approach and on what evidence base
  • A framework for the inter-legislative dependency problem: where DORA, NIS2, AI Act, and national sector regulation need to be coordinated to avoid contradictory quantum obligations
Anna Beata Kalisz Hedegaard, Founder, QSECDEF

Your Facilitator

Anna Beata Kalisz Hedegaard

Founder, QSECDEF

Anna Beata Kalisz Hedegaard has over 15 years of international experience in deep-tech, telecommunications, and defence communications networks. Her expertise spans intellectual property, advanced communications systems, and quantum secure communications. She has lived and worked across Poland, Denmark, the United States, Malaysia, the Netherlands, and Germany. Anna holds dual Master of Science degrees in Theoretical Cosmology from the University of Southern Denmark and Electrical Engineering from Wright State University, USA. She is the founder and board member of Quantum Security Defence.

View full profile

Expert Membership

Industry Conversations are exclusive to Expert Members

Expert membership brings you into a closed community of senior security practitioners. Industry Conversations are included in the membership. Individual tickets are not available.

  • Access to all Industry Conversations
  • Speaker opportunities at the annual Paris Symposium
  • Enhanced expert profile with lecture archive
  • Advisory board nomination eligibility
  • Co-branding opportunities and social amplification