Governance Risk and Compliance
A global survey of 5,000 IT and security leaders has found that just 5% say both they and their organisation have full trust in their cybersecurity vendors - raising serious questions for CISOs, risk managers and boards about how they evaluate and manage vendor relationships.
Microsoft is expanding its Purview Data Loss Prevention platform to intercept Microsoft 365 Copilot prompts that contain sensitive data, blocking AI-generated responses before they are returned to users.
Western Australian local governments are failing to fix known IT security weaknesses, with 60 per cent of control flaws identified in 2025 carrying over unresolved from prior years.
Three-quarters of organisations are confident in their ability to secure unstructured data - yet more than two-thirds report less than 80% remains unprotected, a new industry survey has found.
Artificial intelligence is being put to work on document fraud in New Zealand’s financial sector, with FUJIFILM Business Innovation New Zealand (FBNZ) securing exclusive local distribution rights for Fraud Check AI, a product of Australian technology venture DoxAI.
When AI agents start taking actions rather than merely answering questions, the integrity of their knowledge source becomes a compliance problem. Knowledge management vendor eGain has released a set of platform connectors designed to anchor Microsoft Copilot, Anthropic Claude, Google Gemini CLI, and the Cursor developer environment to a single governed knowledge repository.
Records & Information Management Month 2026 is underway. After years of working with organisations on records and information management, one lesson stands out clearly: if you want records captured, make capture easy.
A governance gap is stalling enterprise AI deployments - and data security vendor Rubrik says it has a fix built on a custom language model.
The New Zealand Government has released a discussion document proposing mandatory cyber security obligations for operators of critical infrastructure, including enforceable minimum standards, incident reporting requirements, and director-level accountability.
If you've spent any time in governance, you've noticed something: we've been running three separate disciplines that are all trying to solve variations of the same problem. Data governance over here. Information governance over there. And now AI governance is showing up like a new kid at school, expecting everyone to make room.
Pages
