We are privacy compliant without cookie banners. Further information in the privacy policy.
Compliance Blog
-
Riscreen Compliance Newsletter – Issue week 34/2025
In this issue, we look at the latest BaFin publications on DORA: The supervisory authority specifies the simplified ICT risk management framework, explains how the implementation of this framework must be documented and provides additional information on dealing with third-party risks. BaFin specifies simplified ICT risk management framework (Art. 16 DORA) Applicable for: Compliance officers,… more »
-
Riscreen Compliance Newsletter – Issue week 33/2025
Dear colleagues,In this issue, we look at recent developments in banking supervision, anti-money laundering and cybersecurity: the EBA sees the banking sector in the EU and EEA remaining robust despite rising costs; a new EBA report shows how SupTech technologies can make AML/CFT supervision more effective; and the US CISA publishes guidance to better inventory… more »
-
Messages | Typical errors in compliance 3
Part 3 of our series “Typical mistakes in compliance” deals with the topic of reporting. Reporting is a central element of the compliance system – but serious mistakes are often made here: either too much is reported, which leads to unnecessary effort, or it is not reported at all because processes do not work or… more »
-
USA and Germany | Current global situation from a compliance perspective
In the second installment of our series on the current global situation, we take a closer look at the relationship between the USA and Germany – from the perspective of compliance, business and history. What do current developments in the US, such as the labor market, rising tariffs and geopolitical tensions, mean for Germany and… more »
-
Riscreen Compliance Newsletter – Issue week 32/2025
Dear colleagues,In this issue, we look at current developments at national and international level: the EBA is strengthening the requirements for management bodies with revised guidelines on internal governance; BaFin has launched the consultation on the new MaRisk amendment, which will make the requirements of the WpIG for small and medium-sized securities institutions more specific;… more »
-
Riscreen Compliance Newsletter – Issue week 31/2025
Dear colleagues,In this issue, we look at current developments at national and international level: The BSI commented on the new government draft on NIS-2 implementation, the OAIC (Australia) published the regulatory priorities for 2025-26, the EBA launches a consultation on third-country branches of financial institutions and warns against the careless use of innovative compliance technologies… more »
-
Riscreen Compliance Newsletter – Issue week 30/2025
Dear colleagues,In this issue, we look at current developments at European and national level: the ESAs are fleshing out the supervision of critical ICT service providers as part of DORA, and ESMA is preparing regulatory changes to the volume cap mechanism. BaFin also provides an outlook on this year’s money laundering symposium with a focus… more »
-
TikTok: 530 million euros fine for data transfers from China. Can this also happen to German companies?
What happened?Ireland’s Data Protection Commission (DPC) imposed a record fine of €530 million (approx. $600 million) on TikTok in May 2025. The reason: personal data of EU users was partly stored or made accessible in China – without adequate safeguards against state access What is the authority demanding?TikTok must end data exports to China within… more »
-
Riscreen Compliance Newsletter – Issue week 29/2025
Dear colleagues,In this issue, we look at the latest guidance from the European supervisory authorities on technology and outsourcing risks as well as strategic impetus in the areas of data protection and money laundering prevention. The ECB and ESMA specify their requirements for cloud outsourcing, while the AMLA’s work program places a regulatory focus on… more »
-
Security incidents, incident management and business continuity management (BCM)
In the world of compliance, it’s important to look at security incidents not just as isolated events, but to place them within the bigger picture of business continuity management (BCM). This video dives into the depths of incident management and highlights how a holistic approach can not only minimize potential risks, but also strengthen the… more »