Vellum Intelligence
For people who need decision-grade regulatory intelligence without standing up a research team — in-house counsel, policy and compliance leads, founders, consultancies, and advisory firms of any size.
Vellum produces recurring intelligence briefs on the regulatory frameworks that shape technology, financial services, and platform governance across the EU, UK, US, Canada, GCC, Singapore, Hong Kong, Turkey, and Morocco. Each brief is time-bounded, source-disciplined, and structured around the decisions our clients are making.
What you receive
Every Vellum brief is anchored to a defined coverage window and built around the same architecture: what changed in the period, what it means operationally, what remains uncertain, and what to watch on a 30/60/90-day horizon. Each development carries a status, a confidence rating, a date, a named actor, and an assessment of the likely landing zone.
The same standard applies whether the brief covers DSA enforcement, GCC financial regulation, or a scoped framework relevant to your specific exposure. Source ratings, evidentiary treatment, and explicit treatment of uncertainty are non-negotiable.
See the full sample brief →The Commission opened formal proceedings against Snap Inc. under DSA Articles 34–35 (systemic risk) to investigate whether Snapchat is ensuring a high level of safety, privacy, and security for children. The investigation covers five areas including age assurance, grooming risk, and access to illegal goods.
The five-area scope and the absorption of the Dutch DSC investigation signal that the Commission assessed sufficient evidence to proceed to formal proceedings rather than issue a preliminary RFI — pointing to interim measures or preliminary findings within 6–12 months absent proactive remediation.
Coverage
Twenty-six monitors across digital and financial regulation in the jurisdictions where our clients operate. Each instrument we track — binding law, regulator guidance, implementation act, consultation, or active proposal — connects to a dedicated monitor.
Where geopolitics shapes regulation — investment screening, foreign subsidy rules, platform restrictions, cross-border data controls — we track those instruments as regulation, not as commentary.
How we work
We scope coverage to the question, gather and structure evidence within the period, distinguish fact from inference from uncertainty, and deliver a single structured output. Recurring clients receive cumulative coverage: each brief shows what is genuinely new, what remains stable, and where attention should focus next.
See methodology in full →One product: a recurring intelligence brief, available on any monitor in our catalogue or scoped to your specific exposure.
Product
Vellum produces one product: a structured intelligence brief delivered at agreed cadence on a defined coverage area. Subscribe to any monitor in our catalogue — or commission a scoped brief on a framework relevant to your specific exposure that we don't continuously cover. The editorial standard is identical across both modes.
Catalogue
Twenty-six monitors across digital and financial regulation. Each tracks the binding law, regulator guidance, implementation acts, consultations, and active proposals that materially affect compliance, product, and market access.
If your exposure isn't covered by the catalogue, we scope monitors on demand — same editorial standard, same delivery format. Discuss scoped coverage.
Delivery
Each brief is delivered at an agreed cadence — typically biweekly or monthly for recurring coverage, or as a single output for scoped one-off engagements. The format is identical: a structured intelligence brief built around the period and your exposure, with executive summary, key developments, decision points on a 30/60/90-day horizon, source ratings, and full sourcing.
Coverage can begin with one monitor and expand as exposure grows. Multi-monitor clients receive coordinated coverage across the frameworks they subscribe to.
We'll come back with a scoped proposal — which monitors, what cadence, what's in or out of scope.
Coverage
Twenty-six monitors across digital and financial regulation in the jurisdictions where our clients operate. Each instrument we track — binding law, regulator guidance, implementation act, consultation, or active proposal — connects to a dedicated monitor. The map is maintained continuously and refreshed monthly.
Coverage is maintained continuously from primary regulator sources and reputable secondary reporting. Status reflects the most current available signal and is reviewed on each publication cycle.
Changes this month
Status transitions, new proposals, and notable enforcement actions added to the registry in the last publication cycle.
Last publish: 14 May 2026
Behind the map
The coverage map is maintained by a dedicated agent in our intelligence pipeline. Each week it checks every instrument we track against its source feeds, flags changes, and routes them through editorial review. Approved updates publish monthly.
No instrument moves on the map without human sign-off. No "last updated" claim is made without a corresponding entry in our changelog.
Tell us which frameworks matter and we'll come back with a scoped proposal.
How It Works
Vellum combines structured intelligence methods, source discipline, and high-quality analysis to produce outputs that are clear, credible, and operationally useful.
The process
We begin by defining the issue, jurisdictions, time horizon, and exposure areas that matter to the client. That may involve a standing coverage mandate, a specific commissioned question, or a narrower decision point requiring targeted analysis.
Vellum gathers and organises relevant developments within a defined coverage window. This includes careful attention to:
The aim is not to gather everything. It is to gather what matters and structure it properly.
We assess what the evidence shows, what can reasonably be inferred, and what remains uncertain. This stage is where Vellum's work moves beyond summary. We examine significance, direction of travel, client exposure, and decision relevance without overstating what the evidence can support.
The final product is delivered as a clear, organised intelligence output rather than an undifferentiated update. Depending on format, that may include:
For recurring clients, Vellum coverage is cumulative. Each cycle is designed to help the client understand what is genuinely new, what remains stable, what is becoming more likely, and where further action or attention may be required. This creates continuity over time rather than isolated updates.
Principles
Clear date windows make changes easier to track and compare.
Named sourcing, careful attribution, and evidentiary clarity remain central throughout.
We do not collapse fact, assessment, and uncertainty into one undifferentiated conclusion.
Analysis is framed around the client's likely exposure, operating environment, and decision horizon.
About
Vellum Intelligence serves clients navigating regulatory, policy, compliance, and geopolitical complexity across technology, digital markets, and cross-border environments.
Who we are
Vellum is an AI-native intelligence service. We produce structured intelligence for decision-makers who need a clearer view of what is changing, why it matters, and what may need attention next.
Our work is designed to be useful to professionals whose time is limited and whose decisions carry real legal, commercial, strategic, or reputational consequences.
What we believe
In fast-moving policy and regulatory environments, the problem is rarely lack of information. It is lack of clarity.
Vellum is built on a simple view: intelligence should be precise, transparent about uncertainty, and directly relevant to the decisions ahead.
The aim is not to provide more information. It is to provide better judgment.
That means:
Editorial standard
Commercial incentives do not determine analytical framing, topic selection, or evidentiary standards.
We are careful about conflicts, disciplined in sourcing, and clear about the limits of what can be known at a given moment.
Client confidentiality is treated as an absolute commitment. If a conflict of interest would affect the integrity of our analysis, we decline or scope around it.
What makes Vellum distinctive
Rigorous analytical frameworks applied with consistency across every brief, regardless of cadence or scope.
The capability of a full in-house research team, delivered through a focused, high-quality operation.
Named sourcing, exact dates, and clear evidentiary treatment throughout.
We separate fact from inference and inference from uncertainty at every stage.
Analysis is always framed around the client's actual exposure and operational environment.
Fast enough to be useful on live issues. Disciplined enough to be trusted over time.
Methodology
Vellum's methodology is designed to make analysis more useful, more transparent, and more accountable to evidence.
Core commitments
We anchor developments in time so clients can understand what happened, when it happened, and how the picture is changing. Precision in dating is not a formality — it is how change becomes trackable.
Where relevant, we identify the institutions, officials, companies, regulators, and other actors shaping the issue. Anonymous attribution is used only where sourcing genuinely requires it.
We rely on verifiable material and treat evidence carefully. Attribution matters. We do not present inference as fact or assessment as certainty.
We distinguish between enacted measures, draft proposals, political intent, enforcement signals, and implementation uncertainty. These categories carry very different operational significance.
We separate what is directly supported by the evidence from what is assessed and what remains unclear. Clients should always be able to understand not just the conclusion, but the confidence behind it.
We do not stop at describing developments. We explain why they matter for the client's operating environment, legal position, and decision horizon.
In practice
Why this matters
Vellum is designed to be clear about both knowledge and limits. Strong intelligence does not depend on pretending uncertainty does not exist. It depends on handling uncertainty honestly and using evidence with discipline.
Sample Brief
The Vellum Brief is designed to be practical, precise, and easy to use under real decision pressure.
Sample outputs
A live sample of the Vellum Brief format — covering DSA enforcement developments with what changed, why it matters, and 30/60/90-day decision points.
Open PDF →A sample of the Vellum Monitor format — tracking EU AI Act implementation with structured analysis of regulatory milestones, compliance deadlines, and exposure areas.
Open PDF →What a brief includes
A clearly defined period so the client can track developments in sequence. Every brief is time-anchored from the outset.
The most important developments, implications, and near-term watchpoints — structured for the time-constrained reader.
A focused account of the developments that materially changed the picture during the coverage window.
Clear explanation of relevance to the client's legal, policy, operational, or strategic position — not generic commentary.
Direct treatment of what is known, what is assessed, and what remains unresolved — expressed as explicit confidence ratings. Clients see the evidential basis, not just the conclusion.
Issues that may require attention over the next 30, 60, and 90 days — structured for forward planning.
Signals likely to matter in the next reporting cycle. Designed to inform standing attention rather than reactive monitoring.
A Vellum Brief is not designed to look busy. It is designed to be useful. The structure is intentionally restrained so that clients can identify the signal quickly, understand the evidentiary basis, and act with greater confidence.
Delivery modes
The brief format is the same whether it is delivered at a recurring cadence on a monitor in our catalogue, or as a one-off scoped brief on a framework relevant to your specific exposure. The editorial standard does not change.
Either mode produces the same kind of output:
Recurring coverage runs monthly or quarterly. Scoped one-off briefs are agreed individually. To discuss either, contact us.
Tell us what you are tracking or where you are exposed and we will respond with the most relevant materials.
Contact
If you would like to discuss coverage, product fit, or a specific intelligence requirement, get in touch.
Get in touch
Tell us what you are tracking, where you are exposed, or what decision is approaching. We will respond with a clear view of fit and next steps.
Direct contact
contact@vellumintel.comAlready a client?
If you have already agreed terms with Vellum Intelligence, use our secure onboarding form to share the context we need to begin your programme.
Start onboarding →Legal
How Vellum Intelligence collects, uses, and protects your information.
Vellum Intelligence Corp. ("Vellum Intelligence", "we", "us", or "our") operates the website at vellumintel.com and provides AI-native intelligence services covering regulatory, policy, compliance, and geopolitical risk. We are the data controller for any personal data you provide to us.
For all data protection enquiries, contact us at: privacy@vellumintel.com
We collect personal data only when you voluntarily provide it to us. This includes:
We do not collect sensitive personal data (such as health information, political opinions, or financial data) through this website.
We use your personal data for the following purposes:
We rely on the following legal bases under UK GDPR and EU GDPR:
We use a small number of trusted third-party services to operate this website. Each processes data only as necessary for the specified purpose:
We do not sell, rent, or share your personal data with any other third parties for marketing or commercial purposes.
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:
This website uses cookies in two categories:
We do not use advertising, tracking, or social media cookies.
Under UK GDPR and EU GDPR, you have the following rights regarding your personal data:
To exercise any of these rights, contact us at privacy@vellumintel.com. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the UK at ico.org.uk, or with your local supervisory authority within the EU.
Vellum Intelligence operates primarily from the United Kingdom. If any personal data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place, including reliance on adequacy decisions or standard contractual clauses.
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at:
Vellum Intelligence Corp.
Email: privacy@vellumintel.com
Monitor
Digital Services Act enforcement across the full tier of obligations — Commission proceedings, national DSC supervision, hosting providers, marketplaces, online platforms of all sizes, and VLOPs.
What this monitor covers
The DSA Enforcement Monitor tracks how the Digital Services Act is being applied — not just what the law says, but what regulators are doing and how obligations are landing in practice for intermediaries of all sizes. Coverage spans the full tiered structure: hosting providers, online platforms below the VLOP threshold, marketplaces, search engines, and designated VLOPs / VLOSEs.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Track AI Act implementation and enforcement — prohibited practices, high-risk AI obligations, GPAI rules, AI Office activity, and delegated acts.
What this monitor covers
The EU AI Act Monitor follows how the AI Act moves from text to practice — tracking implementing acts, guidance documents, AI Office decisions, and the evolving compliance landscape for general-purpose and high-risk AI systems.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Media pluralism rules, ownership transparency, editorial independence, obligations on platforms and intermediaries carrying media content, and the intersection with DSA enforcement.
What this monitor covers
The EMFA Monitor tracks how European media freedom rules are taking shape across the supply chain — affecting media organisations of all sizes, online platforms and intermediaries that carry media content, and the regulators supervising them. Coverage includes the overlap with DSA enforcement and national transposition activity.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Track DMA gatekeeper obligations, Commission enforcement, interoperability and access obligations, and designated platform compliance.
What this monitor covers
The DMA Monitor tracks how the Commission enforces gatekeeper obligations, how designated platforms are responding to compliance requirements, and where interoperability, self-preferencing, and data-access rules are generating friction or litigation.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Track national-level implementation and enforcement overlaying EU digital regulation frameworks — scoped to your jurisdictions and issue areas.
What this monitor covers
EU regulation is only part of the picture. This monitor tracks how member states implement, interpret, and enforce alongside EU instruments — covering national digital services coordinators, local enforcement postures, and jurisdiction-specific requirements that affect compliance obligations.
Scope is agreed at onboarding — tell us which jurisdictions and issues matter to you.
Monitor
Track active EU legislative proposals and policy files at Commission, Council, and Parliament level — before they become binding obligations.
What this monitor covers
This monitor covers proposals under active negotiation or consultation that carry forward-looking regulatory risk. It is structured to show where each file sits in the legislative process, what is likely to change, what remains contested, and what the near-term decision points are.
Track the EU legislative pipeline so you can plan ahead, not react.
Monitor
Track Ofcom enforcement, category thresholds, safety duties, age assurance requirements, children's online safety, and platform compliance activity.
What this monitor covers
The UK Online Safety Act Monitor tracks how Ofcom is implementing and enforcing the Online Safety Act across the full range of regulated services — user-to-user services, search services, and providers of pornographic content, of every size and category. Coverage includes codes of practice, category determinations, age assurance standards, and enforcement signals.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Track UK-specific regulatory activity beyond the Online Safety Act — scoped to your issue areas across the CMA digital markets regime, investment screening, data law, AI policy, and more.
What this monitor covers
This is the UK equivalent of the EU National Overlay Monitor. Scope is defined at onboarding and capped at five issue areas — covering the CMA digital markets regime, UK investment screening, data law reform, AI policy, media regulation, and cybersecurity frameworks.
Choose up to five issue areas — tell us what matters to your position.
Monitor
Track what EU and UK regulators, legislators, and enforcement bodies do or say that could affect Chinese-owned or Chinese-operated businesses in European markets.
What this monitor covers
This monitor focuses exclusively on the European regulatory and enforcement environment as it affects Chinese-owned or Chinese-operated businesses. It does not cover Chinese domestic policy — only what European regulators are doing that creates exposure for Chinese businesses operating in EU and UK markets.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Track technology, digital policy, and data regulation across all six GCC jurisdictions — Saudi Arabia, UAE, Qatar, Bahrain, Kuwait, and Oman.
What this monitor covers
The GCC Monitor covers the regulatory and compliance environment for technology businesses across the Gulf — not political or macroeconomic risk, but the practical regulatory landscape that affects operations, market entry, and data handling.
Tell us what you are tracking and we will respond with the most relevant coverage options.
Monitor
Federal and state activity shaping AI, platforms, and data — White House and Congressional action, FTC and SEC enforcement, sectoral agency guidance, and the fast-moving patchwork of state-level laws.
What this monitor covers
The US Digital & AI Regulation Monitor tracks the practical landscape in the absence of comprehensive federal legislation — executive action, agency rulemaking, enforcement signals, and the rapidly growing volume of state-level AI, privacy, and platform laws. Coverage spans the institutions that actually shape obligations today.
Federal action, state laws, and enforcement signals — structured for the decisions you're making.
Monitor
Federal direction after AIDA's lapse — provincial AI activity, Treasury Board instruments, CAISI, OSFI Guideline E-23, and the evolving privacy and platform-liability files.
What this monitor covers
Bill C-27 — and with it AIDA — died on the order paper in January 2025. This monitor tracks what fills the gap: provincial efforts such as Ontario's Bill 194, Treasury Board directives, the Canadian AI Safety Institute, sectoral instruments like OSFI's Guideline E-23 on model risk, and the eventual federal successor legislation.
Federal direction, provincial action, and sectoral guidance — structured for your position.
Monitor
PCPD privacy enforcement, the evolving cybersecurity and critical infrastructure regime, AI policy direction, and the operational implications of Hong Kong's regulatory positioning between Mainland frameworks and international norms.
What this monitor covers
The Hong Kong Digital & Tech Regulation Monitor covers the practical regulatory environment for technology businesses — PCPD enforcement and PDPO reform, the new critical infrastructure cybersecurity framework, AI policy signals from the Office of the Government Chief Information Officer, and the operational consequences of Hong Kong's distinct positioning.
Privacy enforcement, cybersecurity, AI policy — the practical landscape, not commentary.
Monitor
IMDA and PDPC activity, the Online Safety regime, AI governance frameworks, cybersecurity obligations, and Singapore's expanding role as a regulatory standard-setter for the region.
What this monitor covers
Singapore continues to set regional standards for AI governance, online safety, and data protection. This monitor tracks IMDA's online safety codes, PDPC enforcement, the Model AI Governance Framework and successor activity, cybersecurity rules for CII operators, and the country's regulatory positioning across ASEAN.
What Singapore does, the region watches — structured intelligence for operators and regional teams.
Monitor
BTK telecoms and online intermediary regulation, KVKK data protection enforcement, Law No. 7545 cybersecurity, content and social media rules, and the practical regulatory environment for tech businesses in Turkey.
What this monitor covers
The Turkey Digital & Tech Regulation Monitor covers the practical landscape for technology businesses — BTK's role as the lead telecoms and intermediary regulator, KVKK privacy enforcement, the expanded cybersecurity framework under Law No. 7545 (March 2025), and content regulation including the social-media representative regime.
BTK, KVKK, cybersecurity, content rules — structured for operators and regional teams.
Monitor
CNDP data protection, ANRT telecoms and digital regulation, the cybersecurity law framework, and the emerging policy direction on AI and platform regulation across Morocco's digital economy.
What this monitor covers
Morocco is a growing regional tech and outsourcing hub with a regulatory framework that's still taking shape. This monitor tracks CNDP data protection activity under Law 09-08, ANRT regulation of telecoms and digital services, the cybersecurity law and DGSSI activity, and the policy direction on AI and platform regulation as the country develops its digital strategy.
Practical intelligence for operators in a market still defining its regulatory framework.
Monitor
ECB Banking Supervision, EBA and ESMA activity, the MiCA crypto-asset framework, DORA operational resilience, AMLR and the AMLA roll-out, and the practical implications of the EU's evolving financial-services rulebook.
What this monitor covers
The EU Financial Regulation Monitor tracks the practical application of the EU's financial rulebook — ECB Banking Supervision and SSM activity, EBA and ESMA guidance and enforcement, MiCA implementation, DORA operational resilience, the AML/CFT package and the AMLA's establishment, and the sustainable-finance regulatory pipeline.
The rulebook, the supervisory signals, and the operational consequences — structured for decision-makers.
Monitor
FCA, PRA, and Bank of England activity — supervisory priorities, enforcement, the post-Brexit rulebook, the stablecoin and crypto regime, consumer duty, and the operational resilience and AI agendas.
What this monitor covers
The UK Financial Regulation Monitor tracks how the FCA, PRA, and Bank of England exercise their post-Brexit rule-making and supervisory authority. Coverage spans annual business plans, enforcement activity, the developing stablecoin and crypto regime, Consumer Duty supervision, operational resilience expectations, and AI-related supervisory work.
The FCA, PRA, and Bank of England — structured intelligence on how the rulebook lands in practice.
Monitor
Federal Reserve, OCC, FDIC, SEC, and CFTC activity — supervisory priorities, enforcement, the digital-assets framework, FinCEN AML rulemaking, and the practical regulatory landscape facing financial services and fintech.
What this monitor covers
The US Financial Regulation Monitor tracks the federal regulators that shape practical obligations — Federal Reserve, OCC, FDIC for banking supervision; SEC and CFTC for capital markets and derivatives; FinCEN for AML; the CFPB for consumer finance; and state regulators for licensing-driven activity. Coverage includes the digital-assets framework and the ongoing rulemaking, enforcement, and Congressional pipelines.
Practical intelligence on what the Fed, SEC, CFTC, FinCEN, OCC, and FDIC are doing — and why it matters.
Monitor
SAMA supervision of banks, insurers, and payment institutions, the CMA's capital markets framework, and the practical regulatory landscape for financial services and fintech in Saudi Arabia under the Vision 2030 financial-sector development agenda.
What this monitor covers
The KSA Financial Regulation Monitor covers the two principal regulators — the Saudi Central Bank (SAMA) for banks, insurers, finance companies, and payment service providers; and the Capital Market Authority (CMA) for capital markets. Coverage spans SAMA's prudential and conduct framework, the open banking programme, fintech licensing, the developing AML/CFT regime, and the practical regulatory landscape as the Financial Sector Development Programme advances under Vision 2030.
The two principal regulators, the open banking programme, the developing fintech and AML regimes — structured for decision-makers.
Monitor
CBUAE and the new Capital Market Authority on the federal side, DFSA in DIFC, FSRA in ADGM, and VARA for Dubai virtual assets — the full multi-jurisdiction picture under the 2025 unified financial-sector reforms.
What this monitor covers
The UAE Financial Regulation Monitor covers the country's distinctive multi-regulator structure — the Central Bank (CBUAE) for federally licensed banks, insurers, and payment institutions; the newly reconstituted Capital Market Authority under Federal Decree-Laws 32 and 33 of 2025 for onshore capital markets; the DFSA in DIFC and FSRA in ADGM for common-law free-zone regimes; and VARA for Dubai mainland virtual assets. Coverage includes the 2025 Unified Financial Sector Law and the September 2026 regularisation deadline.
Federal, DIFC, ADGM, and VARA — coverage that respects the actual regulatory geography.
Monitor
QCB supervision of banks and insurers, QFMA capital markets activity, QFCRA regulation of the Qatar Financial Centre, and the practical regulatory environment for financial services and fintech operating in Qatar.
What this monitor covers
The Qatar Financial Regulation Monitor covers the three principal regulators — Qatar Central Bank for banking, insurance, and payments; the Qatar Financial Markets Authority for capital markets; and the Qatar Financial Centre Regulatory Authority for QFC-licensed firms operating under a separate common-law framework. Coverage includes the QFCRA's GENE sustainability reporting rules and the broader regional convergence toward mandatory ESG disclosure.
QCB, QFMA, QFCRA — structured coverage of the regulators that actually matter to your operations.
Monitor
MAS enforcement and supervisory priorities — AML/CFT, digital-asset oversight, AI risk management for FIs, the digital advertising guidelines effective March 2026, and the practical regulatory landscape for banks, asset managers, fintechs, and crypto-asset service providers.
What this monitor covers
The Singapore Financial Regulation Monitor covers MAS as the integrated regulator across banking, insurance, payments, capital markets, and digital assets. Coverage tracks the published 2025–26 enforcement priorities (AML/CFT, digital-asset enforcement, market misconduct), the Guidelines on AI Risk Management for FIs (November 2025), the Guidelines on Digital Advertising effective 25 March 2026, the revised AML/CFT notices, and the new Regulation 11C adverse-development notification rules for LFMCs.
The published priorities, the new guidelines, and the operational consequences — structured for decision-makers.
Monitor
HKMA and SFC supervisory and enforcement activity, the Virtual Asset Service Provider regime, stablecoin licensing, AML reform, and the operational implications of Hong Kong's positioning as an international financial centre.
What this monitor covers
The Hong Kong Financial Regulation Monitor covers the HKMA's supervision of banks and stored-value facilities, the SFC's oversight of intermediaries and the VASP regime, the Insurance Authority, and the Mandatory Provident Fund Schemes Authority. Coverage includes the stablecoin licensing regime, AML and FATF compliance work, and Hong Kong's strategic positioning between Mainland frameworks and international financial markets.
HKMA, SFC, VASP regime, stablecoins — the practical landscape, not commentary.
Monitor
A multi-agency regulatory picture — BDDK for banking, SPK / CMB for capital markets and crypto-asset service providers under Law 7518, TCMB for payments, MASAK for financial crime — and the practical implications of recent reforms including Communiqués III-35/B.1 and III-35/B.2.
What this monitor covers
The Turkey Financial Regulation Monitor covers the country's multi-agency structure — BDDK for banking, SPK (Capital Markets Board, also referred to as CMB) for securities and crypto-asset service providers, TCMB for payments and electronic money, and MASAK as the financial intelligence unit and AML supervisor. Coverage includes the crypto-asset framework under Law 7518 and Communiqués III-35/B.1 and III-35/B.2, the 2025 AML/CFT amendments responding to FATF mutual evaluation, the cybersecurity framework under Law No. 7545, and the inflation-accounting suspension for 2025–2027.
BDDK, SPK / CMB, TCMB, MASAK — structured intelligence for operators and regional teams.
Monitor
Bank Al-Maghrib supervision of banks and payment institutions, AMMC oversight of capital markets, ACAPS regulation of insurance and pensions, and the practical regulatory environment for financial services in a growing North African market.
What this monitor covers
The Morocco Financial Regulation Monitor covers the three principal regulators — Bank Al-Maghrib for banking, payments, and exchange controls; the Autorité Marocaine du Marché des Capitaux (AMMC) for securities and capital markets; and ACAPS for insurance and pensions. Coverage includes the Casablanca Finance City regime, AML/CFT framework and FATF compliance work, and the developing fintech and digital-finance landscape.
Bank Al-Maghrib, AMMC, ACAPS — structured intelligence for operators and regional teams.