CCI workers share latest surveys, stories and evaluation on danger, compliance, governance, infosec and management points. Share particulars of your survey with us: editor@corporatecomplianceinsights.com.
Shadow AI & different AI governance matters transfer up checklist of enterprise dangers
The low-growth financial setting, pushed by tariff-related commerce tensions and different circumstances, has moved into the highest rank of rising dangers for the third quarter of 2025, in keeping with a survey from Gartner.
The survey of 184 senior danger and assurance executives discovered mounting concern round AI, with AI-related data governance dangers transferring from fourth place within the second quarter to second place within the third quarter. Shadow AI — the usage of unauthorized AI instruments by staff — moved from fifth to 3rd place as organizations face challenges in successfully monitoring its use.
Excessive climate frequency and severity ranked fourth, whereas deglobalization rounded out the highest 5 rising dangers. The survey discovered that whereas 72% of enterprise danger administration leaders say taking well timed motion on rising dangers is extremely vital, solely 15% really feel assured in figuring out what data to highlight for stakeholders.
Dealmakers count on US M&A market to strengthen in subsequent 12 months
Some 74% of M&A professionals count on the US mergers and acquisitions market to strengthen over the subsequent 12 months, with strategic acquisitions and mitigating financial uncertainty rising as high priorities, in keeping with a survey from regulation agency Dykema.
The survey of 216 executives, bankers, personal fairness leaders and advisers discovered that 69% of respondents anticipate making acquisitions within the coming 12 months, up from 61% in 2024. Non-public fairness continues to be a driving drive, with 83% of respondents anticipating that non-public fairness exercise will enhance deal quantity. Know-how, media and telecom lead anticipated deal exercise, with AI-enabled companies attracting explicit curiosity.
Dealmakers are emphasizing due diligence, ESG danger screening and the usage of illustration and warranties insurance coverage, significantly in complicated or high-value transactions. Nevertheless, tariffs, financial circumstances and valuation gaps are anticipated to be high obstacles to dealmaking.
Different key findings:
- Joint ventures (52%) and gross sales (50%) mirror elevated exercise in comparison with prior durations.
- Healthcare M&A is anticipated to be strategic and personal equity-backed, specializing in tech-driven companies, effectivity and specialty care platforms.
- Illustration and warranties insurance coverage is projected to rise in frequency, significantly in high-complexity transactions.
42% of finserv companies cite maintaining tempo with laws as high compliance problem
Staying present with evolving laws is the highest compliance problem for 42% of US monetary companies executives, whereas greater than a 3rd (36%) say they lack adequate inside experience to fulfill regulatory mandates, in keeping with a survey from managed IT and cybersecurity companies supplier Omega Techniques.
The survey of greater than 300 US monetary companies executives discovered important disconnects between monetary and technical management. Some 53% of CFOs rank evolving laws as a high concern in comparison with 38% of CIOs, revealing misalignment between monetary and technical groups on compliance priorities.
The survey included leaders from household workplaces, registered funding advisers, wealth managers, hedge funds, personal fairness and funding advisory companies with belongings underneath administration starting from $10 million to greater than $10 billion.
Evaluation finds monetary companies sector finest at aligning cyber coverage and follow
The monetary companies business has achieved a close to 1:1 ratio between written cybersecurity insurance policies and real-world follow, outperforming all different UK sectors analyzed, in keeping with a survey from compliance coaching supplier Skillcast.
The corporate analyzed the hole between cybersecurity insurance policies and operational follow throughout the most important UK companies in a number of sectors. Monetary companies scored 162 out of 260 for coverage and 157 for follow, representing a 0.97 ratio. In contrast, the vitality and utilities sector scored 154 for coverage however solely 59 for follow, a 0.38 ratio.
All monetary companies companies analyzed make use of a devoted chief data safety workplace (CISO) or head of cyber, and privateness insurance policies are up to date each six months on common, essentially the most frequent refresh cycle of any business studied. This contrasts sharply with manufacturing, the place updates happen roughly each 30 months.
Companies capturing ChatGPT communications surged practically 3,000% in previous 12 months
The variety of monetary establishments capturing ChatGPT knowledge for compliance functions elevated practically 3,000% between 2024 and 2025, with all companies doing so primarily based in North America, in keeping with a report from archiving software program supplier World Relay.
The report, primarily based on knowledge from greater than 12,000 monetary establishments throughout greater than 200 communications channels, discovered important shifts in compliance priorities pushed by regulatory enforcement actions. Companies additionally elevated seize of TikTok knowledge by greater than 2,000% year-over-year and Apple Messages by 114%.
Conventional enterprise communications channels proceed to dominate general seize charges, with e mail at 89%, LinkedIn private accounts at 23% and Microsoft Groups at 23%. Nevertheless, the surge in rising channel seize suggests companies are responding to latest regulatory themes. WhatsApp seize elevated 36% year-over-year, with 89% of these companies primarily based in North America, following years of aggressive regulatory enforcement round off-channel communications. Social media channel seize elevated 33%.
CCI workers share latest surveys, stories and evaluation on danger, compliance, governance, infosec and management points. Share particulars of your survey with us: editor@corporatecomplianceinsights.com.
Shadow AI & different AI governance matters transfer up checklist of enterprise dangers
The low-growth financial setting, pushed by tariff-related commerce tensions and different circumstances, has moved into the highest rank of rising dangers for the third quarter of 2025, in keeping with a survey from Gartner.
The survey of 184 senior danger and assurance executives discovered mounting concern round AI, with AI-related data governance dangers transferring from fourth place within the second quarter to second place within the third quarter. Shadow AI — the usage of unauthorized AI instruments by staff — moved from fifth to 3rd place as organizations face challenges in successfully monitoring its use.
Excessive climate frequency and severity ranked fourth, whereas deglobalization rounded out the highest 5 rising dangers. The survey discovered that whereas 72% of enterprise danger administration leaders say taking well timed motion on rising dangers is extremely vital, solely 15% really feel assured in figuring out what data to highlight for stakeholders.
Dealmakers count on US M&A market to strengthen in subsequent 12 months
Some 74% of M&A professionals count on the US mergers and acquisitions market to strengthen over the subsequent 12 months, with strategic acquisitions and mitigating financial uncertainty rising as high priorities, in keeping with a survey from regulation agency Dykema.
The survey of 216 executives, bankers, personal fairness leaders and advisers discovered that 69% of respondents anticipate making acquisitions within the coming 12 months, up from 61% in 2024. Non-public fairness continues to be a driving drive, with 83% of respondents anticipating that non-public fairness exercise will enhance deal quantity. Know-how, media and telecom lead anticipated deal exercise, with AI-enabled companies attracting explicit curiosity.
Dealmakers are emphasizing due diligence, ESG danger screening and the usage of illustration and warranties insurance coverage, significantly in complicated or high-value transactions. Nevertheless, tariffs, financial circumstances and valuation gaps are anticipated to be high obstacles to dealmaking.
Different key findings:
- Joint ventures (52%) and gross sales (50%) mirror elevated exercise in comparison with prior durations.
- Healthcare M&A is anticipated to be strategic and personal equity-backed, specializing in tech-driven companies, effectivity and specialty care platforms.
- Illustration and warranties insurance coverage is projected to rise in frequency, significantly in high-complexity transactions.
42% of finserv companies cite maintaining tempo with laws as high compliance problem
Staying present with evolving laws is the highest compliance problem for 42% of US monetary companies executives, whereas greater than a 3rd (36%) say they lack adequate inside experience to fulfill regulatory mandates, in keeping with a survey from managed IT and cybersecurity companies supplier Omega Techniques.
The survey of greater than 300 US monetary companies executives discovered important disconnects between monetary and technical management. Some 53% of CFOs rank evolving laws as a high concern in comparison with 38% of CIOs, revealing misalignment between monetary and technical groups on compliance priorities.
The survey included leaders from household workplaces, registered funding advisers, wealth managers, hedge funds, personal fairness and funding advisory companies with belongings underneath administration starting from $10 million to greater than $10 billion.
Evaluation finds monetary companies sector finest at aligning cyber coverage and follow
The monetary companies business has achieved a close to 1:1 ratio between written cybersecurity insurance policies and real-world follow, outperforming all different UK sectors analyzed, in keeping with a survey from compliance coaching supplier Skillcast.
The corporate analyzed the hole between cybersecurity insurance policies and operational follow throughout the most important UK companies in a number of sectors. Monetary companies scored 162 out of 260 for coverage and 157 for follow, representing a 0.97 ratio. In contrast, the vitality and utilities sector scored 154 for coverage however solely 59 for follow, a 0.38 ratio.
All monetary companies companies analyzed make use of a devoted chief data safety workplace (CISO) or head of cyber, and privateness insurance policies are up to date each six months on common, essentially the most frequent refresh cycle of any business studied. This contrasts sharply with manufacturing, the place updates happen roughly each 30 months.
Companies capturing ChatGPT communications surged practically 3,000% in previous 12 months
The variety of monetary establishments capturing ChatGPT knowledge for compliance functions elevated practically 3,000% between 2024 and 2025, with all companies doing so primarily based in North America, in keeping with a report from archiving software program supplier World Relay.
The report, primarily based on knowledge from greater than 12,000 monetary establishments throughout greater than 200 communications channels, discovered important shifts in compliance priorities pushed by regulatory enforcement actions. Companies additionally elevated seize of TikTok knowledge by greater than 2,000% year-over-year and Apple Messages by 114%.
Conventional enterprise communications channels proceed to dominate general seize charges, with e mail at 89%, LinkedIn private accounts at 23% and Microsoft Groups at 23%. Nevertheless, the surge in rising channel seize suggests companies are responding to latest regulatory themes. WhatsApp seize elevated 36% year-over-year, with 89% of these companies primarily based in North America, following years of aggressive regulatory enforcement round off-channel communications. Social media channel seize elevated 33%.
