Point-of-Sale Finance Series: Understanding the Development and Regulation of Buy Now, Pay Later Products — The Consumer Finance Podcast
Enhancing Card Partnerships and Compliance: A Conversation With Matthew Goldman — Payments Pros – The Payments Law Podcast
Regulatory Rollback: CFPB’s Withdrawal of Informal Guidance Sparks New Litigation Dynamics – The Consumer Finance Podcast
Sunday Book Review: August 10, 2025, The More Books from The Ethicsverse Library Edition
AI Today in 5: August 6, 2025, The Rethinking Compliance Episode
Wild Times for the Community Reinvestment Act
Suluki Secrets: Behind the Scenes of Reasonable Investigations — FCRA Focus Podcast
The Current State of the Holder Rule: Friend or Foe? — Moving the Metal: The Auto Finance Podcast
Regulatory Rollback: Legal Challenges and Opportunities in Earned-Wage Access — Payments Pros – The Payments Law Podcast
Regulatory Rollback: Legal Challenges and Opportunities in Earned-Wage Access — The Consumer Finance Podcast
Daily Compliance News: July 22, 2025, The I-9 Hell Edition
Compliance Tip of the Day: Avoiding CCO Liability
2 Gurus Talk Compliance: Episode 55 – The From Worse to Worser Edition
Balch’s Consumer Finance Compass: How Standing Can Make or Break Certification for Class Action Lawsuits in Debt Collection
Top challenges with Compliance Management
Sittenfeld v. United States – Campaign Contributions as Crimes?
From Banks to FinTech: The Evolution of Small Business Lending — The Consumer Finance Podcast
From Banks to FinTech: The Evolution of Small Business Lending — Payments Pros – The Payments Law Podcast
The Capital Ratio Podcast | Entering the US Banking Market
Daily Compliance News: July 7, 2025 the Disaster on the River Edition
La Superintendencia Financiera de Colombia (SFC), publicó el 6 de agosto de 2025, la Circular Externa 009 de 2025 por medio de la cual se amplía el plazo que inicialmente se había otorgado a las entidades sometidas a la...more
The European Supervisory Authorities (ESAs) recently published a comprehensive guide (Guide) on the oversight of critical information and communications technology (ICT) third-party service providers (CTPPs) under the EU...more
The EU has introduced Delegated Regulation (EU) 2025/1190, establishing the first harmonized standards for threat-led penetration testing ("TLPT") across the financial sector. The regulation aims to strengthen the cyber...more
Artificial intelligence has become one of the most transformative forces in modern finance, reshaping how investment firms operate, analyze data, and interact with clients. AI is no longer a futuristic concept but rather a...more
Regulation (EU) 2025/1355 of the European Central Bank (ECB) adopted on 2 July has been published in the Official Journal of the European Union. This Regulation recasts and replaces Regulation (EU) No 795/2014, updating the...more
- What is new: The EU’s Delegated Regulation on Subcontracting has come into force, completing the legal framework of the Digital Operational Resilience Act (DORA). Attention will now turn to enforcement. - Why it matters:...more
RUSSIA SANCTIONS - UK Lowers Oil Price Cap on Seaborn Russian Crude Oil, OFSI publishes related FAQs: On July 18, 2025, the UK Government, alongside the EU, announced that it will lower to Oil Price Cap on seaborne Russian...more
In September 2024, the US Securities and Exchange Commission (SEC) adopted rule changes to its Electronic Data Gathering, Analysis, and Retrieval (EDGAR) file access and account management system (EDGAR Next), which went into...more
On July 14, the Commissioner of the CFTC, Kristin Johnson, spoke at an international regulators roundtable to discuss AI in the financial services sector and emerging cyber risks. The Commissioner’s speech highlighted AI’s...more
Don’t miss this complimentary webinar spotlighting the five most pressing regulatory developments reshaping compliance in Canada’s financial sector. From board-level liability, to shifting enforcement priorities, get up to...more
Federal banking regulators continue to promote a more "crypto-positive" regulatory environment through recent joint guidance issued to clarify risk management and compliance expectations for banks providing crypto-asset...more
With the seemingly never-ending updates to B2B contracts for compliance with new (and amended) comprehensive state privacy laws, the U.S. Department of Justice’s bulk data transfer rule, and artificial intelligence (AI)...more
The Digital Operational Resilience Act ("DORA") is the EU's latest legislative effort to enhance digital operational resilience across the financial sector through a harmonised set of rules for managing information and...more
According to a recent press release, the issuer of the USDC stablecoin has submitted an application to the Office of the Comptroller of the Currency (OCC) to establish a national trust bank, First National Digital Currency...more
The European Banking Authority (EBA) has published its spring 2025 risk assessment report alongside a press release, outlining key developments and emerging risks within the European Union/European Economic Area (EU/EEA). The...more
Earlier this year, North Dakota’s Governor signed HB 1127, which introduces new compliance obligations for financial corporations operating in North Dakota. This new law will take effect on August 1, 2025....more
Commission Delegated Regulation (EU) 2025/1190 of 13 February has been published in the Official Journal of the European Union. The Delegated Regulation supplements the Digital Operational Resilience Act (DORA) with regard to...more
Overview - On June 23, 2025, the New York State Department of Financial Services (“NYDFS”) issued an industry letter encouraging all regulated entities to review their cybersecurity and sanctions compliance programs in light...more
Citing “escalating global conflict,” the New York Department of Financial Services issued an alert on Monday, June 22, 2025, to its regulated covered entities, urging them to be vigilant against potential security threats,...more
On June 18, 2025, the Minister of Public Safety introduced Bill C-8, An Act respecting cyber security, amending the Telecommunications Act and making consequential amendments to other Acts (Bill C-8). If passed, Bill C-8...more
Join Tom Fox and hundreds of other GRC professionals in the city that never sleeps, New York City, on July 9 & 10 for one of the top conferences around, #Risk New York. The current US landscape, shaped by evolving policies,...more
Cyber, Privacy, and Technology Report - Welcome to your monthly rundown of all things cyber, privacy, and technology, where we highlight all the happenings you may have missed. State Action: North Dakota Passes Law...more
On June 12, the Securities and Exchange Commission (SEC) formally withdrew 14 proposed rules for investment advisers, broker-dealers and public companies, many of which had been pending for several years. Should the SEC...more
North Dakota recently passed a law establishing new rules for certain financial companies operating in the state – specifically “financial corporations.” The new obligations will take effect on August 1, 2025. They will apply...more
Adopted in July 2023, the US Securities and Exchange Commission (SEC)’s cybersecurity disclosure rules require public companies to report material cybersecurity incidents on Form 8-K and to annually report on their...more