Madagascar has ratified the World Intellectual Property Organization (WIPO) Performances and Phonograms Treaty.

Madagascar is not a signatory of the 1996 World Trade Organization (WTO) Information Technology Agreement (ITA) nor the 2015 expansion (ITA II).

The Consumer Rights Directive 2011/83/EU provides an updated framework aimed at encouraging online sales. The Directive has been implemented by Law of April 8, 2011 introducing a Consumer Code.

Luxembourg has not signed the United Nations (UN) Convention on the Use of Electronic Communications in International Contracts.

Luxembourg has not adopted national legislation based on or influenced by the United Nations Commission on International Trade Law (UNCITRAL) Model Law on Electronic Commerce.

Luxembourg has not adopted national legislation based on or influenced by the United Nations Commission on International Trade Law (UNCITRAL) Model Law on Electronic Signatures.

Telecom service providers are required, pursuant to Art. 116 of the Law on electronic communications networks and services to collect the personal data of customers of a prepaid service. The provider shall collect the surname, first name, place of habitual residence, place and date of birth of the person. Additionally, the provider shall collect the type, country of issue and number of the person's identity document, as well as a copy of that identity document. In the case of a legal person, the business name, address of place of business and the identity of the person acting as a legal representative must be collected. For both legal and natural persons, the type of service, call number, and - if a SIM card is used, the number of the SIM card is also collected.

Art. 17 of Directive 2019/790 on Copyright in the Digital Single Market (DSM Directive) mandates that providers of content-sharing services seek authorisation from rights holders and implement technical solutions to remove and prevent unauthorised uploads by their users (so-called upload filters), under penalty of losing their liability safe harbour. Further arrangements are envisaged for complaints and dispute resolution mechanisms. Such upload filters are reported to be a significant cost for online platforms. Graduated exemptions are expected to be put in place for new providers active in the EU for less than three years with a turnover under EUR 10 million and with fewer than five million users. The provision is subject to a challenge in the Court of Justice by Poland (C-401/19).
To implement Directive 2019/790, the Copyright, Neighbouring Rights and Databases Act was amended in 2022, giving Royal Assent, making providers of online content sharing services partially liable for copyright infringements on their platforms.

The current gambling laws do not distinguish between online games and land-based games. However, the National Lottery (Loterie Nationale) has a de facto monopoly in the online gambling market as it is the only entity carrying out online activities in Luxembourg under a licence. This de facto monopoly is reported to be a significant restriction on online gambling operators.

The EU Directive on Audiovisual Media Services (AVMS) covers traditional broadcasting services as well as audiovisual media services provided on-demand, including via the Internet. Art. 13.1 provides for Member States to secure a minimum 30% share of European works in the catalogues as well as "ensuring prominence" of those works. "Prominence" involves promoting European works by facilitating access to such works using any appropriate means to ensure their prominence. The Directive has been implemented by Member States in different ways, ranging from very extensive and detailed measures to a mere reference to the general obligation to promote European works.
In Luxembourg, the EU Directive was transposed into domestic law through the amendment of the Grand-Ducal Regulation of July 2021 (Amended Grand-Ducal Regulation of 5 April 2001 on the promotion of European works in audiovisual media services). According to Art. 5bis of the Regulation, providers of on-demand audiovisual media services must secure at least a 30% share of European works in their catalogues and ensure the prominence of these works. Additionally, Luxembourg has not implemented financial contribution obligations for VOD service providers.

Art. 8 of the Commercial Code requires that accounting books, financial records and supporting documents relating to branches or operational offices of foreign undertakings established in the Grand Duchy be kept in Luxembourg, while allowing these to be preserved either in paper or electronic form.

The European Union General Data Protection Regulation (GDPR) provides a comprehensive framework for data protection that applies to all EU Member States. Luxembourg implemented the GDPR in 2018 through the Act of 1 August 2018 on the Organization of the National Commission for Data Protection and Implementing the GDPR.

Under the EU Directive on Data Retention, operators were required to retain certain categories of traffic and location data (excluding the content of those communications) for a period between six months and two years and to make them available, on request, to law enforcement authorities for the purposes of investigating, detecting and prosecuting serious crime and terrorism. On 8 April 2014, the Court of Justice of the European Union declared the Directive invalid. However, not all national laws that implemented the Directive have been overturned.
Pursuant to Art. 5 and Art. 9 of the Act of May 30 2005, any telecom service provider or operator who processes traffic or location data shall be required to retain such data for a period of six months for the purposes of investigating and prosecuting criminal offences, and for the sole purpose of making information available to the judicial authorities where necessary. Although the Court of Justice of the European Union declared the EU directive on Data Retention, upon which the articles are based, invalid, Luxembourg has kept the data retention period of six months in its legislation. However, in order to (partly) comply with the Court's reasoning, the amended articles require that the retained data must be deleted irrevocably and without any delay at the expiration of the retention period.