Weekly newsletter

The AI Regulation Digest.

One email each week for the security and compliance leaders who are accountable for what AI does inside their organization. Movement on regulation, enforcement, and standards — and what each shift means for AI workflows already in production.

No marketing sequences. One email per week. Unsubscribe at the footer of any issue.

What is in each issue

Regulatory movement

EU AI Act implementing acts, US state laws (Colorado, California, Texas), sector regulator guidance from OCC, FINRA, HHS OCR, and FDA.

Enforcement actions

Recent fines, consent decrees, and investigations involving AI workflows. What the underlying control failure looked like and how the obligation maps to your stack.

Standards and frameworks

Updates to NIST AI RMF profiles, ISO 42001 implementation patterns, OWASP guidance for LLM applications, and the CSA AI controls matrix.

Implications for the control stack

Each item is paired with the practical question it raises for security and compliance teams: which policy, which evidence, which control owner.

Looking for something more concrete than weekly reading?

The two-week compliance audit produces a written record of where your AI workloads stand against the regulations that apply.

Book a compliance audit →