The UK’s privacy regulator has laid out an ambitious program of AI-related guidance, oversight, and public engagement as it seeks to support the government’s push for AI-driven economic growth while maintaining confidence in how personal data is used.
The Securities and Exchange Commission (SEC) just proposed rescinding the climate-related disclosure requirements it adopted in March 2024, a rule package that had consumed years of debate, generated fierce opposition from business groups and Republican lawmakers, and become one of the defining regulatory initiatives of former SEC Chair Gary Gensler's tenure.
Drawing on thematic inspections of selected fund management companies and reviews conducted by external auditors it appointed, The monetary Authority of Singapore (MAS) released an information paper outlining what it considers effective governance, risk management, and oversight across the investment process. The paper spans firms operating a range of investment strategies, including equity, fixed income, hedge fund, private credit, and fund-of-funds mandates.
ASIC has delivered its first substantive assessment of Australia's new mandatory climate reporting regime, telling companies that while the initial wave of disclosures has established a foundation for comparability, significant work remains before reporting practices reach a mature and consistent standard.
The European Commission has fined Temu €200 million for violating the European Union's Digital Services Act (DSA), concluding that the online marketplace failed to properly assess and address the risks posed by illegal products offered through its platform.
The UK's Financial Conduct Authority (FCA) said this week that firms have made meaningful progress in strengthening sanctions controls since February 2022, when Russia's invasion of Ukraine triggered an unprecedented expansion of sanctions requirements and compliance expectations across the financial sector.
Carnival Corporation has disclosed a cybersecurity incident that exposed personal information belonging to nearly six million individuals after an attacker successfully used social engineering tactics to gain access to an employee account.