The European Banking Authority (EBA) has launched a public consultation on proposed revisions to its Guidelines on internal governance under the Capital Requirements Directive (CRD), reflecting recent legislative changes and evolving supervisory priorities. The consultation, which runs until 5 October 2025, is limited to the proposed amendments and invites feedback from stakeholders across the financial sector.
It all starts with a phone call. Not a suspicious link. Not malware. Just a convincing voice on the other end of the line, claiming to be IT support. Before long, a well-meaning employee is clicking through a Salesforce setup page and, unwittingly, handing over the keys to their company’s data kingdom.
Two major lead generation companies, Assurance IQ and MediaAlpha, have recently agreed to pay a combined $145 million to settle Federal Trade Commission (FTC) charges that they misled millions of consumers seeking comprehensive health insurance and exposed them to a barrage of telemarketing calls and robocalls. The settlements, announced August 7, come in the form of two separate stipulated court orders that will also impose long-term bans on misleading health insurance marketing tactics.
FINTRAC doesn’t want to play the villain in your compliance story. That’s the unmistakable message behind Canada’s financial intelligence agency’s newly updated policy on administrative monetary penalties (AMPs). While penalties are still on the table, some of them quite hefty, the focus is firmly on education, behavioral change, and long-term compliance rather than finger-wagging or financial punishment.
The European Banking Authority (EBA) has issued a no-action letter signaling a temporary pause on enforcement of important ESG disclosure requirements. The decision comes as financial institutions across Europe brace for yet another wave of sustainability reporting reforms, and the regulators themselves admit things are in flux.
The European Insurance and Occupational Pensions Authority (EIOPA) has published a sweeping Opinion on the governance and risk management of artificial intelligence (AI) systems in the insurance sector, offering fresh clarity to national supervisors navigating the intersection of sectoral regulation and the EU AI Act.
There’s little doubt that regulation in the UK is picking up pace, and compliance professionals aren’t just being asked to keep up. They’re being asked to lead. COMPLY’s 2025 UK Regulatory Rundown, released this July, does what many frazzled in-house teams wish they had time to do: it maps the FCA’s recent and upcoming rules across two whirlwind years of consultation papers, policy statements, and strategic pivots. And it doesn’t just summarize what’s changed. It breaks down why it matters—who’s affected, what’s required, and where firms need to focus now.