GRC Report Staff

The Danish Data Protection Authority has stepped into a debate over how far suppliers can go when asked to hand over employee information as proof that they’re complying with employment clauses in public and private contracts. A new guidance statement, issued in response to a request from Accura Advokatpartnerselskab, lays out the Authority’s view on the data protection rules that govern these disclosures, and confirms that many suppliers have been right to question the legal footing.

One of the nation’s largest bedside wound-care providers will pay $45 million to resolve federal allegations that it routinely billed Medicare for procedures that were unnecessary, and in some cases, never performed.

EU governments have agreed on their starting position for revising the EU Deforestation Regulation, signalling that the legislation may not apply as early as previously planned. Member States endorsed a one-year postponement alongside several changes aimed at easing administrative pressure on companies and national authorities.

The global anti–money laundering community saw another shift this fall as the Financial Action Task Force (FATF) updated its lists of jurisdictions with strategic deficiencies. FinCEN, which acts as the United States’ financial intelligence unit, issued a notice on Friday advising U.S. financial institutions to take these changes into account as they review their risk-based controls and international relationships.

Deloitte Global’s 2025 C-suite Sustainability Report suggests that corporate sustainability is sharing the front row with technology adoption and artificial intelligence, not just holding steady in a crowded field of business priorities. Now in its fourth year, Deloitte’s survey of more than 2,100 executives across 27 countries paints a picture of organizations still pushing toward long-term sustainability goals even as the operating environment shifts under their feet.

The Federal Communications Commission is reversing a cybersecurity action it took earlier this year, pulling back a Declaratory Ruling that the agency now says misread federal law and would not have made U.S. networks any safer. The FCC also withdrew a related rule-making proposal built on that same interpretation.

The Federal Energy Regulatory Commission is taking stock of a busy year in enforcement, releasing its nineteenth Annual Report on Enforcement with a clearer picture of how the agency spent FY2025 policing the country’s natural gas and electricity markets.