How can the blog help with operational decision-making?

It explains how regulatory requirements affect decisions, processes and risk, combining broad overviews with more detailed articles linked to supervisory cases and new requirements.

When should I use the blog as a resource?

Use it as a practical reference when new legal or compliance questions arise in the business, especially when you need an operational perspective on what rules mean in day-to-day work.

Blog

Q: What topics does the blog cover?

The blog covers practical legal insights for business operations, including commercial law, GDPR and data protection, anti-money laundering (AML), financial regulation, contract management and the role of legal counsel and compliance functions.

Practical business law — analysis, guides and insights that support operational decision-making.

Blog

Legal Insights for Operational Decision-Making

Find in-depth analysis, guides and practical insights that supports business operations. You will find posts on, among other topics, commercial law, GDPR and data protection, anti-money laundering (AML), financial regulation, contract management, and the role of legal counsel or the compliance function across different types of organisations.

The focus is on how regulatory requirements actually affect decisions, processes and risks in companies and organisations. Here you will find both broad overviews of regulatory frameworks and in-depth pieces linked to supervisory cases and new requirements. This page is intended as a practical resource to return to whenever new legal issues arise in the business.

Illustration of legal professionals in a connected network with highlighted nodes symbolizing PEPs, family members, close associates, and enhanced scrutiny under the AMLR.

21 April 2026

Politically Exposed Persons and Important Public Functions – Articles 42 and 43 of the AMLR

Material Design illustration of a risk gauge framed by a legal paragraph outline, highlighting higher-risk assessment with subtle red accents.

13 April 2026

Special requirements on risk differentiation and unhosted addresses under the AMLR

Material Design illustration of EU and third-country network connections with linked nodes and a highlighted risk node, showing lawyers collaborating on AML risk assessment and targeted measures.

7 April 2026

Ongoing monitoring and supervisory measures in high-risk relationships under AMLR

Illustration of a cross-border correspondent banking relationship between the EU and a non-EU country, showing a secure connection with a shield icon, transaction nodes, and a warning marker on the non-EU side.

30 March 2026

Enhanced customer due diligence in the crypto sector under AMLR

Risk-based customer due diligence under the EU AMLR shown as a risk gauge flowing into a checklist for ID verification, beneficial ownership/control, transaction analysis, and ongoing monitoring.

24 March 2026

Risk-based customer due diligence under the AMLR – enhanced measures, beneficial ownership and cross-border relationships

Illustration of a GDPR access request being blocked or assessed, with documents, warning symbols and approval markers representing Article 15 compliance and abuse risk

22 March 2026

C-526/24: When does a GDPR access request become abusive?

Illustration of risk-based customer due diligence under AMLR with a low-risk gauge, document card, and legal professionals working with guidelines and simplified due diligence measures.

16 March 2026

Risk-based customer due diligence under AMLR – guidelines and simplified measures

Illustration of third-country risk under AMLR showing a simplified EU map, control icons, and a geographic trigger point linking the EU to third countries for enhanced customer due diligence (KYC).

10 March 2026

Third-country risks under AMLR: Articles 29–31 and their significance for customer due diligence

Illustration of an AMLR KYC process in four steps: ID verification, beneficial ownership check, business purpose assessment, and anomaly flag in registry screening.

3 March 2026

Customer due diligence under AMLR: identity, beneficial ownership and the purpose of the relationship

24 February 2026

Inability to meet customer due diligence requirements under the AMLR

Flat material-style illustration of a compliance lawyer working on a laptop with floating customer profiles, risk charts and alert icons, representing customer due diligence, risk assessment and ongoing monitoring under AML regulations.

19 February 2026

AMLR Articles 19–20: customer due diligence, risk assessment and ongoing monitoring

17 February 2026

Outsourcing under Article 18 of the AMLR

Fintech leadership team discussing GDPR compliance challenges, with data security shield, risk alerts, and privacy governance checklist.

10 February 2026

GDPR challenges in fintech – a CEO’s view

Illustration of two lawyers standing in front of a digital world map with red risk markers, symbolising group-wide AMLR risk management and operations in third countries.

9 February 2026

Group-wide risk management under amlr and operations in third countries

Illustration of a financial compliance dashboard with three panels—business growth and operational resilience, anti-money laundering risk with cash and warning sign, and consumer protection with legal scales—representing Finansinspektionen’s 2026 supervisory priorities for financial firms.

6 February 2026

Finansinspektionen’s 2026 Supervisory Priorities: What Financial Firms Need to Address Now

Material Design illustration showing three legal professionals in front of an AI chip, playground and surveillance symbols, representing IMY’s focus areas public AI, children’s privacy and law enforcement.

5 February 2026

IMY’s priorities for 2026 – what do they mean for your organisation?

Illustration of a startup GDPR compliance briefing, with team members reviewing a security checklist and data protection policy on a screen.

4 February 2026

GDPR in your start-up – how to build assurance and compliance

3 February 2026

Customer due diligence as the accounting firm’s invisible quality mark

Anonymous lawyer in a suit presses a digital whistleblowing button inside a protective sphere, symbolising secure whistleblowing systems, employee privacy and internal controls under the AMLR.

3 February 2026

AMLR Articles 13–15: employee integrity, whistleblowing and internal control

Interim compliance lawyer advising a team on new regulations, project-based governance and risk controls, with policy checklist and legal approval.

2 February 2026

Project-based compliance – how the interim lawyer works with new regulations

Step-by-step process to create a GDPR data processor register, showing review, documentation and approval with compliance sign-off.

28 January 2026

How to build a data processor register

Illustration of a lawyer in a suit interacting with a digital risk assessment system, showing centralized risk analysis as the core of a compliance structure, with connected elements for documentation, alerts, regulatory compliance, and organizational collaboration under AML regulations.

27 January 2026

AMLR: Centralised mechanisms and information-sharing – risk assessment, compliance and organisation

Material Design illustration showing an IT system before and after a data breach – secure environment with green security icons versus a red warning screen – business lawyers in suits discussing GDPR and IT security requirements after IMY’s administrative fine against Sportadmin.

26 January 2026

IMY’s administrative fine against Sportadmin – what do the IT security requirements mean in practice?

Compliance professionals reviewing financial regulation requirements and internal controls, using a checklist and policy document to ensure regulatory compliance.

26 January 2026

How does financial regulation work in practice?

AML compliance officer reviewing customer due diligence, risk assessment and monitoring alerts, with compliance checklist and legal shield icon.

22 January 2026

Role and responsibilities of the AML specialist – a compliance perspective

Illustration of a legal professional at a desk with a digital interface showing structured regulatory compliance, internal controls, and AML processes for financial institutions.

21 January 2026

Exemptions for financial activities, prior notification and internal controls under the AMLR

Lawyer consulting a client at a desk, discussing legal advice and compliance documents, with contract approval icons on screen.

20 January 2026

When to ask a lawyer for faster answers at lower cost

An interim commercial lawyer is creating a contract.

19 January 2026

Engage an interim commercial lawyer for business projects with legal requirements

15 January 2026

New Consumer Credit Act 2026 – stricter requirements for lenders, credit intermediaries and merchants

Two lawyers reviewing a contract together at a conference table in a bright, modern office environment, symbolizing professionalism, structure, and collaboration.

15 January 2026

Writing business contracts between companies: eight practical tips before you sign

Illustrated lawyer in a suit at desk with circular AML workflow, document icons for risk assessment, customer due diligence and reporting for accounting firm.

14 January 2026

AML for accounting and bookkeeping firms – practical requirements and pitfalls

Female lawyer in a suit reviewing documents with visual risk assessment charts at a desk in a modern office environment, illustrating the risk-based approach under AML regulations.

13 January 2026

Exemptions in the AMLR for gambling and football clubs

Data Protection Officer (DPO) leading a GDPR compliance strategy meeting, coordinating stakeholders around governance, accountability and data protection controls.

12 January 2026

The development of the DPO role in a new technological and regulatory landscape

Fintech compliance professional holding a tablet with a security checkmark, with digital payment icons symbolizing AML and anti-money laundering controls.

8 January 2026

What every fintech CEO should know about the anti-money laundering (AML) framework

Illustration of the EU AML framework shown as three pillars representing supervision, definitions and responsible entities, with legal professionals collaborating.

7 January 2026

EU’s AMLR Regulation: definition, purpose and accountable entities in the anti money laundering regulation EU

Interim AML compliance lawyer advising a fintech team on anti-money laundering controls, risk management and financial regulation.

6 January 2026

Strengthen compliance in fintech – interim AML lawyer as a solution

2 January 2026

When do you need an AML consultant?

Illustration of stacked contract documents and a warning triangle, representing contract review and interpretation of conflicting terms in agreements.

30 December 2025

Interpreting contracts with conflicting terms

Illustration i Material Design av jurist i kostym som granskar en checklista vid ett kontorsbord med laptop och dokument, i ljusa färger och minimalistisk stil.

23 December 2025

AML checklist: five key areas after the Financial Supervisory Authority’s sanction on Svea Bank

Illustration of two business professionals reviewing legal risk and compliance, with warning sign, documents and growth chart, symbolising business law advisory.

23 December 2025

What does a business lawyer do – and when is one needed?

Illustration of an AML lawyer advising clients on compliance, with documents, legal scales and a shield icon, representing anti-money laundering legal support.

18 December 2025

Everything you need to know about what an AML lawyer does

17 December 2025

Mandatory or voluntary data protection impact assessment?

Illustration of a secure contract with a padlock symbolising a GDPR-compliant data processing agreement that manages privacy risks and protects personal data.

15 December 2025

What is a data processing agreement and when is it critical?

12 December 2025

How to know when you need support from a commercial lawyer

Illustration of a GDPR consultant advising a business team on data protection compliance, with GDPR shield icon, checklist and laptop.

12 December 2025

When GDPR starts to consume all your focus, hire a GDPR consultant

The image shows three people in suits sitting and discussing a document.

9 December 2025

How the Anti-Money Laundering Act affects regulated financial activities

Contract lawyer coordinating and reviewing offer, LOI and final contract through email and digitally signed documents.

5 December 2025

A contract law attorney clarifies the boundary between an offer, a Letter of Intent and a contract

Illustration of an interim compliance officer presenting dashboards on risk, controls and regulatory reporting to the company board.

3 December 2025

What should an interim compliance officer report to the board?

Illustration of a telecom lawyer in an office reviewing a digital sanctions report with a red fine amount, symbolising Tele2’s PTS sanction and its consequences for operators.

3 December 2025

Tele2’s administrative fine from PTS – lessons for operators

Illustration of GDPR experts discussing joint controllership after the Russmedia judgment C-492/23, showing shared responsibility for personal data on online platforms.

2 December 2025

Russmedia Digital (C-492/23): tightened controller responsibility for online platforms under the GDPR

1 December 2025

When is a part-time corporate counsel the right solution?

Illustration of an interim legal counsel guiding a management team through key legal decisions, policies and governance to support compliant business growth.

28 November 2025

When growth demands legal support – engage interim legal counsel

Illustration av tullkontroll vid gräns där en tulltjänsteman i kostym kontrollerar en resväska fylld med sedelbuntar medan en resenär lämnar över ett dokument – symbol för regeringens förslag om anmälnings- och redovisningsskyldighet vid in- och utförsel av kontanter.

26 November 2025

The Swedish Government has proposed a duty to notify and report the import and export of cash

26 November 2025

Customer due diligence at change of ownership or succession

Illustration of an auditor examining documents with a magnifying glass, symbolising AML compliance checks and the risk of administrative fines for weak controls.

25 November 2025

The Anti-Money Laundering Act for bookkeeping and accounting – the County Administrative Board’s administrative fine

Illustration of a digital Service Level Agreement at the centre, surrounded by cloud, network and server icons symbolising requirements for availability, security and accountability in cloud services.

22 November 2025

Cloudflare and SLAs: What are the legal consequences when a SaaS breaches its Service Level Agreement?

Illustration of the map of Europe with stacked icons for users, AI and online services, symbolising the EU digital omnibus reforms for data and consumer protection.

20 November 2025

Digital Omnibus: How the EU’s new proposal could reshape the GDPR

Illustration of a GDPR consultant checklist with shields, padlock and documents, symbolising practical support to secure company data protection and compliance.

18 November 2025

The GDPR consultant: how I help your company

Illustration of a corporate counsel guiding management through document workflows and legal processes to align business decisions with regulatory compliance.

17 November 2025

How a corporate counsel works from an in-house perspective

14 November 2025

EU on direct marketing – C-654/23 Inteligo Media

Illustration of scales of justice with the words “Credit assessment” and a judge’s gavel, symbolising credit assessment rules and enforcement by the Swedish Financial Supervisory Authority.

13 November 2025

Poor creditworthiness assessment under the Consumer Credit Act – the Swedish Financial Supervisory Authority (FI) sanctions Avida Finans

Illustration of a privacy lawyer choosing between policy options on a decision tree, symbolising consent GDPR requirements for valid, documented user consent.

11 November 2025

When is consent required and when should it be avoided?

6 November 2025

What does a GDPR lawyer do?

Illustration of a data protection specialist reviewing files, cloud storage and CCTV within a GDPR control net, symbolising GDPR audit compliance for organisations.

5 November 2025

GDPR audit in practice – test your compliance before the Data Protection Agency does

Illustration of a server leaking binary data behind a legal shield, symbolising a serious data breach and GDPR obligations for cloud service providers and customers.

4 November 2025

IMY initiates supervisory review following the Miljödata breach

Illustration of a judge’s gavel deciding which phone numbers are allowed or forbidden, symbolising commercial law rules on renting out telephone numbers.

30 October 2025

Phone number rental prohibited – PTS intensifies supervision

Illustration of two GDPR lawyers reviewing a data processing agreement and security structure on screen, illustrating contractual GDPR compliance work.

30 October 2025

Two common mistakes in data processing agreements

Illustration of two managers in a video meeting with a GDPR lawyer on screen, discussing data protection folders and how to manage GDPR compliance without a DPO.

29 October 2025

Support with GDPR where a Data Protection Officer is not required

Illustration of three business lawyers in a meeting around a laptop, discussing documents and strategy related to commercial law for corporate clients.

27 October 2025

Securing the right legal expertise quickly — without hiring

Female accountant working at a laptop in an office, illustrating AML compliance and day-to-day bookkeeping with customer due diligence requirements.

24 October 2025

Does the customer due diligence requirement apply to day-to-day bookkeeping?

Illustration of two business lawyers reviewing and signing a contract, symbolising expert contract law advice and careful legal risk assessment.

23 October 2025

The contract lawyer’s role in commercial law: What you should know

Two lawyers in suits, without facial features, collaborating in front of a colour-coded risk matrix on a large screen in a light style.

21 October 2025

AML shortcomings in Zimpler – implications for payment providers

Illustration of a GDPR audit showing a central padlock securing a network of people, data folders and a compliance checklist representing data protection controls.

20 October 2025

Preparing your business for a GDPR audit

Illustration of a commercial lawyer leading a boardroom presentation on risk management, using charts and contracts to explain key commercial law issues to business leaders.

17 October 2025

The commercial lawyer’s role in effective risk management

Illustration of business professionals collaborating on internal governance steps with icons for strategy, risk and controls, symbolising financial regulation compliance.

16 October 2025

How to strengthen internal governance in a regulated business

Illustration of a commercial law team and external corporate lawyer advising management around a table, reviewing governance charts to align contracts and business strategy.

14 October 2025

Why we primarily work from an in-house perspective

13 October 2025

Invoice, “pay later” and instalments — how e-commerce is affected by the Consumer Credit Directive

Illustration of a startup team meeting with legal and compliance support, showing contracts, discussion icons and scales of justice, representing in-house legal for startups.

10 October 2025

Legal in a startup – from handbrake to sounding board

Illustration of two GDPR lawyers reviewing data flows on a tablet to determine whether a company acts as data controller or processor under the GDPR.

8 October 2025

Controller or processor – why it matters

Illustration of a Data Protection Officer advising management on GDPR compliance, with lawyers around a table discussing security policies and a shield symbolising data protection.

6 October 2025

When do you need a Data Protection Officer (DPO)?

GDPR lawyer pointing at a consent symbol stacked on legal and privacy icons, illustrating consent as lawful basis in customer relationships under the GDPR.

3 October 2025

Consent in customer relationships – an overrated solution

Illustration of a data protection officer consultant reviewing traffic safety data from a connected car in IMY’s sandbox, symbolising GDPR compliance in smart mobility.

2 October 2025

Can a new sandbox initiative make traffic safer whilst preserving privacy?

Business team meeting with commercial lawyer discussing whether to use part-time corporate counsel or an external law firm for contracts and compliance strategy.

30 September 2025

Part-time counsel or an external law firm – what suits your company?

Startup business founder meeting with a temporary interim lawyer team, reviewing a legal document and getting advice on contracts and compliance.

29 September 2025

Flexible legal support – an interim lawyer in the launch phase

Illustration of gambling payments with cash and cards changing hands at a casino table, symbolising the Swedish Gambling Authority risk assessment for 2025.

26 September 2025

The Swedish Gambling Authority (Spelinspektionen) updates its 2025 risk assessment on money laundering

Illustration of a contract lifecycle with secure folders, signed documents and data deletion, explaining liability in data processing agreements under the GDPR.

24 September 2025

Who is responsible for what in a GDPR data processing agreement?

Data protection expert standing by an open padlock and website icons, illustrating EU cookie rules simplified and practical GDPR cookie compliance for websites.

23 September 2025

Streamlined cookie rules on the EU agenda – what could change

Illustration of an interim compliance officer process, showing legal requirements documented, data stored in secure folders and reported to the supervisory authority.

22 September 2025

When do you need an interim compliance officer?

Illustration of European map with arrows, legal document and paragraph symbol, representing part-time commercial law support for international business expansion. Jag föredrar det här svaret

19 September 2025

Part time legal counsel with local legal support for international companies

Business professional explaining secure data flows to an employee, illustrating help with GDPR access request under Article 15 and safe sharing with authorities and cloud storage.

18 September 2025

Help with GDPR: what applies to subject access under Article 15

Accountant reviewing client documents with a magnifying glass, illustrating common mistakes in know your customer (KYC) processes for accountancy firms.

17 September 2025

Common mistakes accounting firms make in customer due diligence

Interim data protection officer advising a fintech employee on GDPR data flows, secure document handling and privacy compliance on a locked laptop.

16 September 2025

Interim data protection officer in fintech – agility with data protection impact assessment

Illustration of a security and HR team analysing a suspected data leak, representing GDPR incident response and organisational duties after a breach.

15 September 2025

Data breach at Miljödata – employer liability and the data protection officer’s role

Puzzle pieces with a fintech circuit icon, symbolising how financial regulation and legal compliance fit into a fintech startup’s business model.

12 September 2025

Navigating financial regulation as a fintech start-up

Bank employee working on a laptop with multiple customer profiles on screen, illustrating GDPR compliance risks and potential sanctions for improper customer data handling.

11 September 2025

Administrative fine against S-Pankki: lessons on testing and incident handling

Illustration of organised legal documents in a folder with a checkmark, symbolising a GDPR lawyer preparing lawful basis documentation and compliance records.

10 September 2025

Legal basis under GDPR – the documentation requirement

Illustration of a digital ID card with lock, document and user icons, visualising a GDPR access request practical guide for handling data subject rights in the EU.

8 September 2025

GDPR and the right of access – a practical guide for companies

Illustration of paragraph symbol, courthouse and law book, representing the Lexbase media exemption case and interpretation of GDPR versus freedom of expression.

6 September 2025

GDPR lawyer insight: the Advocate General’s assessment in the Lexbase case

Illustration of EU and Brazilian regulators connected by a data bridge, symbolising Brazil’s adequacy decision, lawful data transfers and GDPR compliance.

5 September 2025

EU–Brazil: what would a decision on an adequate level of data protection mean?

Illustration of EU court guidance on EDPS v SRB, showing the road to whether pseudonymised data counts as personal data under GDPR.

4 September 2025

CJEU on EDPS v SRB: Are pseudonymised data personal data?

Illustration of fintech customer due diligence (CDD) with identity verification, secure links and compliance checks, representing KYC and AML onboarding controls.

4 September 2025

Customer due diligence for fintech – balancing innovation and compliance

Data protection specialist reviewing cross-border data flows on a tablet, illustrating secure transfers under the EU US Data Privacy Framework and GDPR compliance.

3 September 2025

EU-US Data Privacy Framework and third-country transfers

Business professional signing a document while a colleague points and a question mark appears, illustrating invalid GDPR consent and common mistakes in consent management.

2 September 2025

Invalid consent under GDPR – common mistakes and how to avoid them

Illustration of charts, checklist and warning shield representing an AML general risk assessment of a company’s business model and financial crime exposure.

1 September 2025

Money laundering: business size and model drive the risk assessment

Illustration of digital contract management with checklist on a tablet, showing how structured reviews, monitoring and governance strengthen business deals.

29 August 2025

Contract management that strengthens the business

Two business professionals working with laptop and documents, discussing GDPR legal basis and how to organise data processing activities for compliance.

28 August 2025

GDPR for businesses – the essentials you need to master

Illustration of NDA contract next to laptop and phones with AI icons, showing how to draft confidentiality agreements that regulate AI tools and protect sensitive data.

27 August 2025

Ban on AI in confidentiality agreements – practically unworkable?

GDPR lawyer explaining how to respond to a data subject access request, showing secure handling of personal data and privacy information to a client.

26 August 2025

The right of access to personal data – process, obligations and lawful handling

Two business professionals discussing a GDPR-compliant data processing agreement for group companies, reviewing approved contract terms on a laptop outside corporate offices.

25 August 2025

Data processing agreements between group companies – what does the GDPR require?

Illustration of an interim lawyer advising a business client, with contract document, scales of justice and checkmark, representing interim legal support for unexpected vacancies.

22 August 2025

How to bridge an unexpected vacancy with an interim lawyer

Illustration of a secure email policy for a company, showing an envelope with padlock on a shield and a business professional, representing GDPR-compliant email governance.

21 August 2025

When does a company need an email policy?

GDPR consent withdrawal workflow showing consent given, data processing and cloud storage, then consent revoked.

20 August 2025

GDPR consent withdrawal – what it means in practice

Illustration of legal scales weighing a signed contract against money, representing how a contract lawyer assesses contract value, risk and commercial impact.

19 August 2025

Why a contract lawyer asks what the contract is worth

AML compliance and customer due diligence workflow illustration with checklist, compass, shield and risk warning icon.

18 August 2025

When do you need an AML lawyer?

Illustration of a businessman pointing at a clock, calendar and hourglass beside documents and a tablet—symbolizing GDPR deadlines and handling a data subject access request (right of access).

15 August 2025

How may an individual request access to personal data under GDPR?

14 August 2025

Mrkoll and GDPR – what actually applies?

Illustration of a Data Protection Officer (DPO) completing a GDPR compliance checklist, representing DPO transition planning and interim DPO support.

13 August 2025

What happens when the DPO leaves?

Illustration of storing personal data ‘just in case’, with flagged folders showing GDPR compliance and data minimisation risks.

12 August 2025

Storing personal data “just in case” breaches GDPR

Illustration of two professionals reviewing documents at a desk with a laptop—representing accounting firms preparing AML documentation and customer due diligence records when the bank requests information.

11 August 2025

Accounting firms: have AML documentation ready when the bank asks

Illustration of customer due diligence (CDD) for dormant companies in accountancy engagements, showing checklist, company buildings and compliance controls.

8 August 2025

Customer due diligence in accountancy engagements – including for dormant companies?

Illustration of an interim legal counsel supporting a business team meeting, representing on-demand legal support without hiring a full-time in-house lawyer.

7 August 2025

Interim legal counsel when it’s needed – without hiring

Illustration of in-house counsel explaining a risk and compliance workflow, highlighting strategic legal governance, controls and process improvements.

6 August 2025

The in-house counsel’s strategic role in legal governance

Business handshake illustrating contract validity and agreement review, with approval and rejection symbols above.

5 August 2025

Before you sign – what determines whether the contract stands

Interim legal counsel managing financial regulation and compliance, shown adjusting gears for banking, law, and governance.

4 August 2025

Covering a leave of absence with interim counsel in financial regulation – how to do it right

Illustration of a lawyer managing legal and compliance governance controls, with icons for privacy/security, regulation and corporate policy.

1 August 2025

What is legal advice in practice?

Illustration of a GDPR advisor training an SME team on data protection compliance, with checklist and security icon, representing GDPR advisory services for businesses.

1 August 2025

When should small and medium-sized enterprises seek GDPR advisory services?

31 July 2025

When is it worth engaging a corporate lawyer?

Illustration of the six lawful bases for processing personal data under GDPR, shown as signposts with legal, contract and consent icons.

30 July 2025

On the six lawful bases: When may you process personal data?

29 July 2025

When the bank asks for your enterprise-wide risk assessment – what does the anti-money laundering act require?

Illustration of a compliance professional building a secure company framework with blocks, representing regulatory compliance and risk management in financial services.

28 July 2025

Turn regulatory compliance into a strength in financially regulated sectors

Illustration of puzzle pieces with legal and business icons, representing how a shareholders’ agreement complements the articles of association in company governance.

25 July 2025

The shareholders agreement – a necessary complement to the articles of association

Illustration of a five-step onboarding journey for an interim compliance officer, showing goals, stakeholders, documentation, and governance.

24 July 2025

Common shortcomings in fast-growing fintech companies

Illustration showing HR GDPR compliance and employee data processing, with approved identity and employment records and restricted sensitive data.

23 July 2025

HR and GDPR: What may be processed under the employment contract?

Illustration of a GDPR consultant presenting a compliance checklist on a screen with GDPR shield and key deadlines, representing privacy audits, data protection advice, and regulatory risk management.

22 July 2025

How to make smart use of a GDPR consultant

Illustration of a shield with a checkmark, a legal document icon and a settings gear—symbolizing GDPR compliance, policies and the data protection officer (DPO) role in practice.

21 July 2025

What does a Data Protection Officer do in practice?

Illustration of a structured contract management process, showing drafting, review, approval, and reporting in a clear workflow.

17 July 2025

The value of a structured contract process

16 July 2025

When do you need an AML specialist and what do they do?

Illustration of secure cloud data outsourcing for fintech and IT services, showing encrypted storage, compliance documentation, and a regulated institution icon connected to the cloud.

15 July 2025

Outsourcing of IT Services in Fintech

Illustration of a sector-specific risk assessment, showing a checklist, magnifying glass, warning icon and financial symbols, representing AML compliance risk analysis.

14 July 2025

Sector-specific risk assessment – what does it involve?

Illustration of publishing criminal judgments online, balancing GDPR privacy rights with freedom of expression and public access to information.

11 July 2025

Publishing criminal judgments online – should GDPR or freedom of expression take the lead?

GDPR data processing agreement document with security and compliance icons, illustrating why DPA templates must be tailored.

10 July 2025

Templates are not enough – why the data processor agreement must be tailored

Business team meeting reviewing GDPR audit requirements and compliance KPIs with growth chart on screen.

9 July 2025

Customers’ requirements for GDPR – audit as a competitive advantage

Compliance timeline graphic showing a clock and warning icons for breach notification, legal review, email alerts, and documentation after a personal data breach under GDPR.

8 July 2025

Limited resources are no excuse after a personal data breach

7 July 2025

How to create value with an interim lawyer in the project organisation

Illustration of a GDPR compliance checklist with clipboard and icons for data protection, secure processing, cybersecurity shield, settings, global data transfers, and data location.

4 July 2025

How to draft a legally robust data processing agreement

Illustration of a “COPY” privacy policy document with a warning sign and duplicated pages, representing the legal and GDPR compliance risks of copying a privacy policy template.

3 July 2025

Risks of copying a privacy policy

Illustration of preventing legal issues in business, showing a forked path with risk warnings versus compliance shields and security icons, representing proactive legal advice.

2 July 2025

Prevent legal issues with business lawyers who think like you

Illustration of accountants applying AML checks, with one reviewing KYC documents, one handling a client transaction and another assessing a risk alert as part of AML routines.

1 July 2025

When must an accountancy firm conduct customer due diligence?

Illustration of connected folders and documents with arrows, representing interim GDPR counsel support for managing contracts, records and governance.

30 June 2025

When is an interim GDPR counsel the right solution?

Illustration of a financial advisor explaining a fintech payment flow on a screen with a dollar symbol and transaction arrows to a client in an office meeting.

27 June 2025

FI gains new powers to assess agents of foreign payment service providers

26 June 2025

Support with GDPR for data controller vs processor assessments

Illustration of a GDPR compliance workflow on a computer screen, highlighting common mistakes such as relying on consent instead of a proper legal basis.

25 June 2025

Two common mistakes when relying on consent under the GDPR

Diagram on a digital whiteboard showing governance workflow, compliance checklist, documentation, and KPI growth for legal operations.

24 June 2025

How to build a sustainable legal function with a part time legal counsel

Illustration of the right to erasure under GDPR, showing doors with a document and a blocked database icon, representing IMY’s review of Upplysning.se and Mrkoll.

23 June 2025

IMY reviews Upplysning.se and Mrkoll — focus on the right to erasure

Illustration of a shield icon with warning alerts, money symbol, and legal document representing fintech compliance, payment security, and regulatory risk management.

19 June 2025

FI revokes Intergiro’s licence – requirements and takeaways for fintech companies

Illustration of a protected dome containing DNA, a heart and a fingerprint with warning symbols and a padlock—representing sensitive personal data and GDPR security requirements in the financial sector.

18 June 2025

Sensitive personal data in the financial sector

17 June 2025

When is it time to instruct a GDPR lawyer?

Illustration of GDPR data retention limits, showing an hourglass and protected files to explain how long personal data may be stored.

16 June 2025

How long can personal data be stored under GDPR?

Illustration of a company building under construction with checklist, warning sign and clock, representing when to bring in an AML compliance consultant.

13 June 2025

When should a company bring in an AML consultant?

Illustration of GDPR compliance training and documentation, with a secure padlock icon above stacked books representing policies and employee guidance.

12 June 2025

Knowledge as a safety net – why GDPR training for employees matters

11 June 2025

The contract lawyer’s role in business-critical agreements

Illustration of conflicting compliance regimes in fintech, showing GDPR privacy and security requirements clashing with AML regulations and reporting duties.

10 June 2025

Conflicting regimes – when GDPR meets the Anti-Money Laundering Act in fintech operations

9 June 2025

How to onboard an interim compliance officer – 5 steps

Falling blocks and a legal shield icon illustrating business risk mitigation and the value of external general counsel.

5 June 2025

Ten common mistakes businesses make without external general counsel

Illustration of an in-car surveillance camera recording a driver, representing workplace monitoring and GDPR compliance for fleet and security services.

4 June 2025

Camera monitoring in patrol cars – the Data Protection Agency reviews Securitas

Alt-text: In the image we see two people trying to put together a puzzle with multiple symbols.

3 June 2025

New rules for BNPL – how CCD2 affects E-commerce

Illustration of an e-commerce compliance dashboard on a laptop, showing secure checkout, order confirmation, consumer rights (right of withdrawal) and legal compliance symbols.

2 June 2025

B2C startups: The rules you must know on the right of withdrawal, complaints and e-commerce

28 May 2025

When is a data processing agreement required under the GDPR?

Illustration of money laundering through loans, showing bank transfers, credit cards, and payment flows highlighting why credit checks are not enough for AML.

27 May 2025

Money laundering through loans: why credit checks are not enough

Businessman considering GDPR legal basis choice at a crossroads, with road signs reading “Consent” and “Legitimate Interest” in a blue flat-style illustration.

26 May 2025

Consent vs legitimate interest in marketing

Illustration of new consumer credit licensing requirements from July 2025, showing compliance checklist, key deadlines, and rules for lenders and intermediaries.

22 May 2025

New licensing requirement for consumer credit from July 2025 – what applies to lenders and intermediaries?

Illustration of two professionals reviewing a document on a screen and in print—symbolizing GDPR principles of data minimisation versus storage limitation, and how to limit personal data collection and retention.

21 May 2025

The difference between data minimisation and storage limitation

Illustration of an SME contract review meeting, showing a lawyer advising a business owner with documents and risk vs protection signs, representing legal advice and contract compliance.

19 May 2025

Contract review for small and medium-sized enterprises

12 May 2025

Sanctions compliance programme: new law tightens requirements for financial institutions

Business professional outside an office building, illustrating financial crime risk from small-scale offences to international money laundering.

5 May 2025

From small-scale offences to international laundering schemes

Illustration of a contract sent by email, showing how written communication can change contract terms and create a binding agreement.

2 May 2025

When email can change the substance of a contract

Illustration of a cookie consent banner with an ‘Accept’ button, cookie icon and warning symbol—highlighting IMY criticism of misleading cookie banners and GDPR/ePrivacy consent requirements.

30 April 2025

IMY criticises companies’ cookie banners

29 April 2025

The Data Protection Agency is reviewing the right to erasure

Illustration of new AML rules in 2025 with compliance shield, transaction monitoring, and enhanced financial crime prevention.

25 April 2025

New rules in 2025 tighten anti-money laundering controls

Illustration of hands protecting euro banknotes and a gold bar over a global grid, symbolizing anti-money laundering (AML) laws, financial crime prevention, and regulatory compliance in 2024.

16 April 2025

New 2024 laws impacting the fight against money laundering

15 April 2025

The Data Protection Agency opens an investigation into Sportadmin

Illustration of a business professional presenting a compliance report dashboard with charts and analytics, symbolizing financial intelligence, AML monitoring, and regulatory reporting.

11 April 2025

The Swedish Financial Intelligence Unit’s 2024 Annual Report – what does it mean for obliged entities?

Legal professional reviewing an online legal search service with magnifying glass, examining crime verdicts and GDPR supervision of searchable judgment databases.

2 April 2025

GDPR compliance consultancy: is publishing criminal judgments compatible with GDPR?

Scales balancing EU and US flags on a cloud, symbolising EU US cloud services, data transfers and future Schrems III challenges for GDPR compliance.

31 March 2025

Do we need to worry about a Schrems III?

Illustration of IMY’s 2025 supervisory priorities, showing GDPR compliance, workplace camera monitoring and AI governance on a computer screen.

16 March 2025

IMY’s supervisory and guidance priorities for 2025

Contact us

If you prefer phone, please feel free to contact Felix Morling at +46 70 444 42 85

"*" indicates required fields