GRC Report Staff

PIPC Takes Action Against CLASSU & KT alpha for Data Breaches, Urges Stronger Privacy Safeguards

The Personal Information Protection Commission (PIPC) has stepped up its enforcement efforts, issuing penalties to two companies, CLASSU Inc. and KT alpha—following serious data protection failures. This action demonstrates a significant move in South Korea's ongoing battle to enforce privacy laws and push companies toward better safeguarding their users' data.

EU Takes Steps to Simplify Deforestation Regulation for Businesses

In a move that will surely be welcomed by businesses throughout the European Union (EU), the European Commission has announced new measures to simplify the implementation of the EU Deforestation Regulation (EUDR), reducing the burden on operators and traders while maintaining the regulation's environmental goals. As the EUDR is set to fully come into force at the end of this year, these changes aim to make compliance easier without sacrificing the core focus: tackling deforestation, climate change, and biodiversity loss.

EU ESAs Release 2024 Annual Report on Financial Risk, Sustainability & Digital Resilience

The European Supervisory Authorities (ESAs) have released their 2024 annual report, offering a detailed overview of their work across key areas of financial regulation, from joint risk assessments to sustainable finance and digital resilience. Throughout 2024, the ESAs’ Joint Committee (JC) focused on assessing cross-sectoral risks to financial stability, producing two significant reports, one in Spring and another in Autumn.

Google Hit with £5 Billion Lawsuit Over Alleged Abuse of Search Dominance in the UK

A major legal battle is brewing in the UK, with Google facing a class action that could cost the tech giant up to £5 billion, according to a report by Reuters. The lawsuit, filed at the Competition Appeal Tribunal on Tuesday, accuses Google of using its dominant position in the online search market to drive up advertising prices and shut out competitors.

EDPB Tackles Blockchain Privacy Challenges & Prepares to Weigh In on AI Act

The European Data Protection Board (EDPB) is stepping into the blockchain arena with new guidance aimed at helping organizations navigate the thorny intersection of distributed ledger technology and EU privacy law. In its April plenary, the Board officially adopted guidelines on the processing of personal data via blockchain, and signaled it’s ready to collaborate with the newly established EU AI Office on upcoming guidance around the AI Act.

Hertz Reports Data Breach Associated with Vendor Cleo Communications

Hertz has recently announced that the company is grappling with a data breach that stemmed from a vendor, Cleo Communications US, LLC. This breach, involving a file transfer platform used by Hertz, further demonstrates the vulnerabilities that third-party vendors can introduce to an organization’s data security.

Newly Released MAS Enforcement Report Demonstrates Strong Action Against Financial Misconduct

The Monetary Authority of Singapore (MAS) has just released its latest enforcement report, giving us a look behind the scenes at its efforts to keep Singapore’s financial markets clean and fair. From tackling market manipulation to holding institutions accountable for lapses in anti-money laundering practices, the authority’s recent actions highlight its unwavering commitment to maintaining trust in Singapore’s robust financial system.