Spoiledlunch

Compliance Gets Better When Regulators Ship Tools Instead of Slogans

@spoiledlunch — Fri, 24 Apr 2026 08:20:00 -0400

Article • April 24, 2026 • 2 min read

Topics: GRC

A lot of compliance guidance dies as slideware because it explains principles without changing the operator’s daily work. The more interesting recent GRC signal is that standards bodies and …

Read full analysis →

]]>

Why AI Governance Frameworks Are Security Theater

@spoiledlunch — Mon, 20 Apr 2026 09:00:00 -0700

Article • April 20, 2026 • 4 min read

Topics: AI, GRC

Why AI Governance Frameworks Are Security Theater Most enterprise AI governance frameworks are elaborate exercises in checkbox compliance that miss the actual risks. They’re designed to satisfy …

Read full analysis →

]]>

The SOC 2 Compliance Cargo Cult

@spoiledlunch — Sat, 18 Apr 2026 14:30:00 -0700

Article • April 18, 2026 • 6 min read

Topics: GRC, Security

The SOC 2 Compliance Cargo Cult SOC 2 compliance has become a cargo cult ritual in enterprise security. Organizations implement the ceremonial controls, follow the prescribed procedures, and wait for …

Read full analysis →

]]>

EDPB Sharpens Research Guidance and Speeds Up Anonymisation Work

@spoiledlunch — Thu, 16 Apr 2026 12:00:00 +0000

News Brief • April 16, 2026

Topics: GRC

Summary: EDPB used its April plenary to tighten guidance on scientific-research processing, accelerate anonymisation work, and approve a new …

Read brief →

]]>

FTC Targets Noncompete Agreements in Pest Control Enforcement Action

@spoiledlunch — Wed, 15 Apr 2026 12:00:00 +0000

News Brief • April 15, 2026

Topics: GRC

Summary: The FTC ordered Rollins to stop enforcing noncompete agreements against thousands of workers and paired the action with warning letters to …

Read brief →

]]>

FTC Bars Forever Living From Deceptive Earnings Claims

@spoiledlunch — Tue, 14 Apr 2026 12:00:00 +0000

News Brief • April 14, 2026

Topics: GRC

Summary: The FTC settled with Forever Living and its operators, permanently barring deceptive earnings claims and reinforcing that consumer-protection …

Read brief →

]]>

EDPB Annual Report 2025 Highlights the Board's Enforcement Priorities

@spoiledlunch — Thu, 09 Apr 2026 12:00:00 +0000

News Brief • April 9, 2026

Topics: GRC

Summary: EDPB’s 2025 annual report summarizes the board’s guidance, coordination, and enforcement priorities, giving privacy teams a …

Read brief →

]]>

EDPB Publishes One-Stop-Shop Digest on Legitimate Interest

@spoiledlunch — Thu, 26 Mar 2026 12:00:00 +0000

News Brief • March 26, 2026

Topics: GRC

Summary: EDPB published a digest of one-stop-shop decisions on legitimate interest, giving privacy teams a clearer signal on how regulators are …

Read brief →

]]>

EDPB conference on cross-regulatory cooperation: what we learned

@spoiledlunch — Tue, 24 Mar 2026 12:00:00 +0000

News Brief • March 24, 2026

Topics: GRC

Summary: EDPB used its March conference to press for deeper coordination between privacy regulators and adjacent EU authorities, signaling that …

Read brief →

]]>

NIST Releases CSF 2.0 Quick-Start Guides for ERM and Informative References

@spoiledlunch — Mon, 23 Mar 2026 09:00:00 -0400

News Brief • March 23, 2026

Topics: GRC

Summary: NIST announced two Cybersecurity Framework 2.0 quick-start guide updates on March 23, 2026. The agency released the final SP 1308 guide on …

Read brief →

]]>

EDPB and EDPS Back Stronger EU Cybersecurity Rules While Guarding Personal Data

@spoiledlunch — Thu, 19 Mar 2026 12:00:00 +0000

News Brief • March 19, 2026

Topics: GRC

Summary: EDPB and EDPS issued a joint opinion on the Commission’s CSA2 and NIS2 proposals, arguing the EU can streamline cybersecurity …

Read brief →

]]>

EDPB Sets a 2026-2027 Programme Focused on Compliance and Regulatory Coordination

@spoiledlunch — Thu, 12 Feb 2026 09:00:00 +0100

News Brief • February 12, 2026

Topics: GRC

Summary: The European Data Protection Board adopted its 2026-2027 work programme on February 12, 2026. The programme emphasizes making GDPR compliance …

Read brief →

]]>