Welcome to your daily GRC Times News Digest – your trusted source for the latest in Governance, Risk, and Compliance.
In today’s update, we cover the Top 10 GRC developments shaping 2025, including:
- Stricter U.S. data privacy laws – Utah, Oregon, California, Colorado, and new FTC biometric rules.
- Compliance trends in AML, FinTech, and cryptocurrency oversight.
- Dun & Bradstreet hit with a $5.7M penalty by the FTC.
- New financial regulations: CFTC stablecoin initiative, SEC crypto custody, and Treasury’s GENIUS Act.
- Extended compliance deadlines from CFPB & FDIC.
- UK to introduce mandatory ransomware reporting.
- EU fines Apple & Meta for GDPR violations.
- Focus on operational resilience: EU DORA, CRA, and global resilience standards.
- AI governance challenges under the EU AI Act.
- Third-party risk management regulations (DORA, NIS2, SEC Reg S-P).
📌 Stay ahead by understanding these shifts, their impact, and what organizations must do to remain compliant.