On May 25, 2026, Vietnam’s Ministry of Health issued Circular No. 16/2026/TT-BYT governing free-of-charge medicine support programs for medical establishments (Circular 16). Circular 16 will take effect on July 10, 2026, replacing Circular No. 31/2018/TT-BYT, which currently regulates the same subject matter. Circular 16 introduces several significant changes compared to the existing legal framework. Removal of Prior Approval Requirement Under the current regulations, free-of-charge medicine support programs are divided into two categories: (1) entirely free-of-charge provision of medicines for all types of drugs and (2) partially free-of-charge provision applicable only to brand-name drugs under patent protection or drugs whose generic products with identical active ingredients and dosage forms are available in Vietnam. Under the current regulations, partially free-of-charge programs are subject to mandatory registration with the competent authority, while entirely free-of-charge programs could be implemented without prior approval. A key reform under Circular 16 is that it stipulates only entirely free-of-charge medicine support programs applicable to all types of medicines, thereby eliminating the partially free-of-charge category. In addition, free-of-charge medicine support programs may be carried out solely based on a written agreement between the pharmaceutical company and the medical establishment, without any requirement for prior approval from competent authorities prior to implementation. Written Agreement Requirements Circular 16 requires the pharmaceutical company and medical establishment to enter into a written agreement in accordance with a prescribed template. This agreement must include the following compulsory information: Information on the supported medicines Form of support (entirely free-of-charge provision to patients) Quantity of medicines provided Target patient groups and applicable indications Duration of the program Rights and obligations of each party Transitional provisions on the protection of patients’ rights upon completion of the program The agreement may contain other contents as agreed by the parties, provided that these do not contradict applicable laws.

Thailand’s Office of Insurance Commission (OIC) has opened a public hearing on proposed amendments to the OIC Notification on Criteria for Information Technology Risk Governance and Management for Life Insurance and Non-Life Insurance Companies B.E. 2563 (2020) via the centralized Law platform. The public consultation period runs from May 8, 2026, to June 9, 2026. The proposed amendments aim to elevate the IT risk governance and cybersecurity risk management framework to be more modern and aligned with international standards, with a focus on strengthening cyber resilience, enhancing the role of IT audits, and establishing data governance and data quality controls. The parties affected by these amendments include life insurance companies, non-life insurance companies, and external IT auditors. Key Changes Elevated Role of Board of Directors The proposed notification requires the company’s board of directors to oversee data governance, cybersecurity, and the responsible use of AI. Additionally, the board should include at least one director with IT knowledge or experience. Companies are also required to designate a head of security responsible for information security. The board’s duties are expanded to include oversight of data governance and AI usage, including establishing relevant policies and committees. Enhanced IT Security and Cybersecurity The revised notification consolidates the existing chapters on IT project management, IT security and cybersecurity to reduce redundancy, and introduces significant new measures. These include mandatory multi-factor authentication for material systems, enhanced data security measures such as data masking and data leakage prevention, security hardening requirements, web filtering, and mandatory vulnerability assessment and penetration testing at least annually. New requirements are also introduced for mobile application security, API security, and security measures for emerging technologies such as cloud computing and post quantum cryptography. The cybersecurity framework now encompasses identification, protection, detection, response, and recovery. The draft also introduces source code review

Indonesia’s Minister of Health has issued Decree No. HK.01.07/MENKES/301/2026 on the Affixation of Nutritional Labels and Health Information to Ready-to-Eat Processed Food Products. The decree came into force on April 14, 2026, and was issued to implement the Health Law and Minister of Health Regulation No. 3 of 2026 on Disease Control. The decree requires the inclusion of Nutri-Level labeling on the front-of-pack nutrition labeling (FOPNL) to indicate the product’s nutritional level based on the content of sugar, salt, and fat (“gula, garam dan lemak (GGL)”). Changes from 2024 Draft Regulation The Nutri-Level labeling was previously proposed in 2024 by the Indonesian FDA (BPOM) through a draft regulation concerning nutrition information. While the categories of Nutri-Level labeling remain the same in the issued decree, the content requirements of sugar, salt and fat in the decree are different from the earlier proposal introduced in the 2024 draft BPOM regulation. In addition, the decree has further specified that the content of fat in the Nutri-Level labeling is the content of saturated fat, not total fat as previously proposed in the 2024 draft. The decree requires Nutri-Level labeling to be implemented in beverage products, which is the same as previously proposed in the 2024 draft BPOM regulation. Other food products may gradually become subject to mandatory Nutri-Level labeling under future implementing regulations. Nutri-Level Labeling Food levels as shown by the Nutri-Level labeling are classified into four color-coded categories from A to D: Level A (lowest amount) in dark green Level B in light green Level C in yellow Level D (highest amount) in red The Nutri-Level labeling is represented by the following image. The requirements for each level for sugar, salt, and fat content, based on amounts per 100 milliliters of product in beverage form, are as follows. Nutri-Level information must be

Indonesia’s Food and Drug Authority (BPOM) has issued Regulation No. 7 of 2026 on Drug Promotion and Advertising, establishing an updated framework for promotional activities involving medicinal products in Indonesia. The regulation took effect on April 16, 2026, and supersedes BPOM Regulation No. 2 of 2021 on Drug Advertising Supervision. The new regulation maintains general principles for advertising content, including requirements that advertisements be objective, complete, and not misleading, as further detailed in its annex. It also confirms that advertisements for nonprescription drugs directed to the public must obtain prior approval from BPOM before publication and must be in Bahasa Indonesia. The regulation provides a more comprehensive framework governing how drug promotion is conducted, introducing several notable additions and changes, as described below. Procedure and Requirements for Drug Advertisement Approval To apply for a drug advertisement approval, applicants must create an online account through the dedicated portal SIAPIK. Advertisement approval is available only for registered drugs; unregistered drugs are not eligible for advertisement approval with BPOM. The application must include the advertisement design, along with a translation if the design contains any wording in a foreign language. The submission format varies by media type, requiring, for example, copies in the form of print advertisements for visual media, scripts for audio media, and storyboards for audiovisual media. For online media—including social media—submissions should include any captions, descriptions, and hashtags that form an integral part of the advertising material. The approval timeline takes approximately 3–4 months, as BPOM will generally request additional information or revisions during the verification and evaluation process. Applicants have 20 days to submit any such requested documents. BPOM may also conduct a reevaluation of advertisements that have already received approval, based on monitoring results or new information regarding the safety and quality of the advertised drug. This