GRC resources

Discover blogs, news, events and more from CoreStream GRC’s experts.

Women in grc
ISO27001 Blog

  • US AI risk regulation and compliance explained: what the fragmented legal landscape means for businesses 

    Corey

    ·

    US AI risk regulation and compliance explained: what the fragmented legal landscape means for businesses 

    For teams who follow AI policy in the United States, the missing American equivalent to the EU AI Act is easy to misunderstand. Many readers assume this signals hesitation or a light touch approach. From a distance, the US model can appear unclear and even permissive.  That view gets the story wrong.  Regulation is already here, just…

  • UK to regulate crypto by 2027: What it means for global crypto and fintech firms

    Corey

    ·

    UK to regulate crypto by 2027: What it means for global crypto and fintech firms

    The UK’s decision marks the end of crypto’s regulatory grey zone. At CoreStream GRC, we’re seeing global crypto and fintech teams move from asking if regulation will land, to working out how to prepare for it in a way that does not slow the business down. In this piece our team at CoreStream GRC breaks…

  • What the team has learnt in 2025: 6 quick fixes for GRC

    Ava Kernan

    ·

    What the team has learnt in 2025: 6 quick fixes for GRC

    2025 has been a revealing year for Governance, Risk and Compliance teams. Across CoreStream GRC’s community events in London and New York, industry events like #RISK Europe, our design workshops and hundreds of conversations with clients and experts, one interesting theme kept surfacing. Many of the most common GRC challenges are not structural failures. They…

  • Why public sector teams choose CoreStream GRC for information asset management

    Ava Kernan

    ·

    Why public sector teams choose CoreStream GRC for information asset management

    Public sector organizations are under constant pressure to manage complex information environments and stay compliant with GDPR, the DSP Toolkit and internal information governance standards. A reliable information asset register is no longer a nice-to-have. It is the baseline for safe data processing, confident audits, and accountable governance.  This is where CoreStream GRC stands out.  Public sector teams choose…

  • What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRC

    Ava Kernan

    ·

    What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRC

    CoreStream GRC hosted community events, with industry risk and compliance leaders, in London and New York across a variety of sectors including retail, banking, technology and defense, to ask the key questions: “The best ideas come from the community. When we get everyone in a room, you see the value immediately, and we take that…

  • A practical guide to information asset management for public sector teams

    Ava Kernan

    ·

    A practical guide to information asset management for public sector teams

    How to understand, manage and secure public sector information assets with confidence. Public sector teams work in high-pressure information environments. Sensitive data sits across clinical systems, legacy tools, cloud services and spreadsheets. If you cannot see what you hold, why you hold it, or understand how it moves, you cannot meet GDPR or your governance…

Ready to chat with our experts?

Contact us today!

This form may not be visible due to adblockers, or JavaScript not being enabled.