Quantum Policy: The Legislative and Regulatory Decisions Being Made Now on Insufficient Evidence
Quantum technology is passing through the legislative window. Export control regimes are being updated. Data protection regulations are being interpreted against a cryptographic threat that most legislative drafters did not anticipate. Financial regulation is creating compliance obligations without quantum-specific technical standards. The policy instruments being written now will constrain or enable quantum security for a decade. This conversation is for the legislators, regulators, and advisors who are writing them and who need a peer-tested read on what the technology actually requires.
Event Details
- Who else is in the room
- Senior level executive peers, industry leaders, experts in risk, technology and business. Specifically: legislators, senior regulatory officials, and policy advisors with direct responsibility for legal and regulatory frameworks touching quantum technology, data protection, critical infrastructure, or financial regulation.
- Access
- Members only. Bundled with Expert Membership. Included with Expert Member tier
- Sponsor
- Organised by QSECDEF
- Facilitator
-
Anna Beata Kalisz Hedegaard Quantum Security Defence - Rules of engagement
- Chatham House Rule Chatham House Rule. Discussion is on the record; attribution is not. Participants may share what was said but not who said it.
- Format
- In-person Hosted Dinner Flexible between roundtable, structured Q&A or in-person hosted dinner
- Who Should Join
- This conversation is for legislators, senior regulatory officials, and policy advisors with direct responsibility for legal and regulatory frameworks that intersect with quantum technology, data protection, critical infrastructure, or financial regulation. Senior legal advisors to government and policy researchers embedded in the legislative process will find it most useful. It is not for compliance professionals implementing existing regulation, or for commercial organisations seeking regulatory intelligence. Participants are expected to be designing the instruments, not applying them.
About This Conversation
Why this matters now
NIST's August 2024 finalisation of post-quantum standards created a technical anchor that most legislative and regulatory frameworks have not yet referenced. The EU's NIS2, DORA, and AI Act were all drafted and finalised without explicit post-quantum cryptography provisions, creating a gap between legislative intent and technical requirement. The legal liability dimension is beginning to crystallise: organisations retaining data encrypted with quantum-vulnerable algorithms over long periods face a risk of legal challenge when those algorithms fail. The ICO has explicitly advised that the transition to PQC should begin now, given the harvest-now-decrypt-later risk, but most national regulators have not yet amended their sector-specific guidance.
Outcomes
What you will leave with
- A comparative legislative map: which jurisdictions are ahead in quantum policy design, which frameworks are creating unintended barriers to allied collaboration, and where the most consequential gaps remain
- A shared analysis of the legal liability exposure that existing data protection and financial regulation creates for organisations retaining cryptographically vulnerable data
- Practical framing for the legislative design challenge: how to write quantum policy that is specific enough to require action without becoming technically obsolete before it enters force
- Peer experience from regulatory advisors on the enforcement trajectory: where regulators are building quantum security into their supervisory approach and on what evidence base
- A framework for the inter-legislative dependency problem: where DORA, NIS2, AI Act, and national sector regulation need to be coordinated to avoid contradictory quantum obligations
Your Facilitator
Anna Beata Kalisz Hedegaard
Founder, QSECDEF
Anna Beata Kalisz Hedegaard has over 15 years of international experience in deep-tech, telecommunications, and defence communications networks. Her expertise spans intellectual property, advanced communications systems, and quantum secure communications. She has lived and worked across Poland, Denmark, the United States, Malaysia, the Netherlands, and Germany. Anna holds dual Master of Science degrees in Theoretical Cosmology from the University of Southern Denmark and Electrical Engineering from Wright State University, USA. She is the founder and board member of Quantum Security Defence.
View full profileExpert Membership
Industry Conversations are exclusive to Expert Members
Expert membership brings you into a closed community of senior security practitioners. Industry Conversations are included in the membership. Individual tickets are not available.
- Access to all Industry Conversations
- Speaker opportunities at the annual Paris Symposium
- Enhanced expert profile with lecture archive
- Advisory board nomination eligibility
- Co-branding opportunities and social amplification