Let's focus on ICT resources requirements for Italian finance industry set by Bank of Italy on Circular 285 with a GRC approach (and ISO related standards).
The ISO/IEC 27557:2022 standard on information security, cybersecurity and privacy protection offers us a framework for assessing the organizational privacy risk.
Data protection between EU and Switzerland and the GRC Data Protection approach on GDPR and LPD-DSG-LPD (FDA): let's take a closer look at these laws together.