-
The Data Use and Access Act (DUAA) Compliance Risks and Checklist
There is a lot of noise around the Data (Use and Access) Act (DUAA) at the moment. New requirements. More guidance. Plenty of “what’s changed” summaries. But the real shift is not what’s been added. It is what is now being expected. Because DUAA does not completely change the rules. It changes how closely those…
-
Posted in:
QCB Regulations for Banks in Qatar: Fraud Risk Management
Anti-Fraud is on the agenda of the Qatar Central Bank (QCB). As digital channels expand, payment ecosystems grow more complex, and fraud typologies evolve rapidly, the QCB has responded by setting clear regulatory expectations around how banks must prevent, detect, investigate and report fraud. These expectations are not theoretical. Through the Technology Risks Regulation for Banks, supported by corporate governance…
-
Deepfake Fraud cases: How is it impacting CEOs, Celebrities and Industries?
Introduction to Deepfake Fraud Artificial intelligence (AI) has transformed industries, from revolutionising diagnostics in healthcare to automating financial forecasting. But as with any powerful tool, its misuse can be devastating. Among the most alarming threats emerging from AI’s darker side is deepfake fraud, where synthetic media convincingly impersonates real people to deceive, manipulate, and defraud.…
-
Investigating Crypto Fraud: Asset Tracing & Recovery
Cryptocurrency is a type of digital asset that can be traded electronically. Often referred to as crypto, it is a virtual currency that uses cryptographic techniques to ensure secure transactions. Crypto wallets come in various forms, including hardware, software, and even paper. Most crypto operate on a blockchain, a decentralised public ledger that records all wallet transactions in a transparent and immutable manner. The ledger…
-
Business Fraud: What it is and how to respond to it?
Business Fraud can be quite an elusive subject when it comes to its definition. Also known as corporate fraud, commercial fraud or organisational fraud, there is no single, universally accepted, legal definition of business fraud; therefore, as the ACFE agrees, it tends to mean different things to different stakeholders. That being said, for the sake of clarity, a working understanding of corporate fraud can be understood as illicit acts that look to manipulate or divert resources…
-
Posted in:
Top 4 Business Use Cases: The Emerging Need for Comprehensive Due Diligence in 2026
In a world shaped by economic uncertainty, rapid digitalisation, and increasingly complex global regulations, organisations are facing new challenges in 2026. As we look at the past and current trends, it has made one thing clear: the importance of comprehensive due diligence has never been greater. Businesses are increasingly using it as a strategic tool.…
-
Data Privacy Day: Risks to Avoid in 2026
Most people have no idea that this day exists. There is no countdown, fireworks, or public holiday. There will be, however, cake in my office, which feels like a reasonable and proportionate response from a DPO. It falls on 28 January every year, and not because of GDPR, fines, or cookie banners (we are all…
-
Posted in:
Egypt’s PDPL | 2026 Updates & Guide
Egypt’s Personal Data Protection Law (PDPL) is the country’s primary framework governing how organisations collect, use, store, transfer, and protect personal data relating to individuals in Egypt. It applies to organisations operating inside Egypt, as well as organisations outside Egypt that process the personal data of individuals located there. At its core, Egypt’s PDPL is…
-
Posted in:
UAE’s Child Digital Safety Law: 2026 Guide for Organisations
From 1 January 2026, it is essential organisations offering online services to users in the UAE, pay closer attention to how children may use those services. This follows the introduction of Federal Decree-Law No. 26 of 2025 on Child Digital Safety, which makes it clear that child digital safety is an organisational responsibility, not something…
-
Posted in:
The Role of Cultural Intelligence in Global Investigations and Due Diligence
Why cultural intelligence matters? As business and governance become increasingly global, cross-border investigations and due diligence have grown in both scale and complexity. What once could be addressed through legal frameworks and financial audits now requires a deeper appreciation for cultural nuance. Misunderstanding local customs, language, or social norms can derail even the most thorough…
-
Posted in:
Securing a VARA Licence in Dubai
For organisations seeking a VARA licence in Dubai, compliance is not limited to financial or technical readiness. It is now a critical requirement for any business operating in Dubai’s virtual assets ecosystem. Data protection, governance, and DPO independence are now core licensing requirements, particularly for firms operating across the UAE, Saudi Arabia, and the wider…
-
Posted in:
A DPO’s Guide to Password Protection
On World Password Day 2025, observed on May 1st, let’s reflect on one of our most basic yet crucial lines of defence…..the password protection. And let’s be honest, we’ve all been there… “Password123”, “pet’s name” or even default credentials such as “admin.” These practices significantly weaken your security posture and expose your organisation’s sensitive systems…