Technical Roundup 23 January

Jan 23, 2026

Welcome to the latest edition of Technical Roundup.

In developments since the last edition, the UK Government announced that it is not progressing with the Audit and Corporate Governance Reform Bill. The Department of Enterprise, Tourism and Employment (DETE) has launched a public consultation seeking views on proposed legislative measures through the Consumer Protection, Competition and Enforcement Bill 2026 to strengthen consumer protection and enforcement in Ireland with a closing date for receipt of submissions of Friday, 27 February 2026. The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) have adopted a Joint Opinion on the European Commission’s Proposal for the ‘Digital Omnibus on AI’.

Read more on these and other developments that may be of interest to members below.

Financial Reporting

The European Financial Reporting Advisory Group (EFRAG) is hosting a webinar “Circular Economy Reporting in Focus: The Draft Simplified ESRS E5” on 3 February 2026. This webinar will discuss the role of the E5 standard and the key lessons learned from the first year of its application.

Richard Moriarty, Chief Executive of the Financial Reporting Council (FRC), has set out the regulator's priorities and focus for 2026. Within this document are five key focus areas;

underpinning investor confidence in UK plc

reducing unnecessary burdens on business while maintaining high standards

developing deep insight into the markets we oversee so our regulation is based on evidence and expertise

identifying future trends and innovations to support the health of the markets we oversee

supporting the skills and resilience of the professions we regulate

The UK Department for Business and Trade (DBT) has introduced new regulations requiring large companies to include information on their supplier payment practices, policies and performance within their directors’ report for financial years beginning on or after 1 January 2026. Full guidance on who must report and what information is required is available on the DBT website.

Auditing and Assurance

Accountancy Europe (AE) published analysis and findings regarding audit exemption thresholds in Europe.

The UK Government announced that it is not progressing with the Audit and Corporate Governance Reform Bill. In a letter to the Chair, Business and Trade Committee, the Minister for Small Businesses and Economic Transformation Blair McDougall stated that the government’s key priority is to promote growth and reduce administrative burdens, and that it would not be right to prioritise the introduction of measures that would increase costs on businesses. Whilst the Institute is generally supportive of simplification and proportionate regulation, uncertainty is bad for business. It is not clear whether some of the reform proposals included in the now abandoned bill might be brought forward in another way. The future role of the FRC also remains unclear. We will continue to engage with the UK Government and the FRC as this continues to evolve.

Insolvency

The Institute is hosting three in-person sessions which will provide an introduction to the new Creditor Voluntary Liquidation workbook. The workbook has been produced to assist Liquidators in complying with legislative and SIP requirements when conducting statutory meetings, reporting to creditors and approval of remuneration.

The sessions will also cover compliance matters and will include potential issues and problems that can arise and how to avoid or best navigate these. It will also include some practical examples and a Q&A session.

The sessions are targeted at professionals taking on insolvency appointments and acting as Liquidator, and those training or working in the insolvency sector looking to gain expertise in this area.

Each of these three-hour sessions are free to attend and will take place on the following dates:

Tuesday, 3 March at 1pm Cork Book Now

Wednesday, 4 March at 9am Galway Book now

Thursday, 5 March at 9am Dublin Book now

Sustainability

The European Securities and Markets Authority (ESMA) has published a second thematic note on sustainability-related claims focusing on ESG strategies. This publication offers practical guidance for making sustainability claims ensuring clear, fair and not misleading sustainability-related claims are made by market participants and also addressing greenwashing risks in support of sustainable investments.

The European Central Bank (ECB) announced that it has advanced its climate and nature work based on the 2024-2025 plan embedding climate and nature-related risks into its core work.

Anti-money laundering, Authorised Corporate Service Provider registration

On 1 January 2026, the European Banking Authority (EBA) and the Authority for Anti-Money Laundering and Countering the Financing of Terrorism (AMLA) completed the transfer of all AML/CFT mandates and functions from the EBA to AMLA. The handover concludes the EBA's stand-alone AML/CFT mandate that began in 2020 and is part of the new EU AML/CFT package, which established AMLA at the centre of an integrated, European system of AML/CFT supervision.

Chartered Accountants Ireland responded to HM Treasury’s Consultation regarding Anti Money Laundering /Counter Terrorist-Financing (AML/CTF) Supervision Reform: Duties, Powers and Accountability. The consultation response provided feedback on proposals to reform the supervision of anti-money laundering and counter-terrorist financing (AML/CTF) compliance among professional services businesses following the UK government’s announcement in 2025 that the Financial Conduct Authority (FCA) should take over responsibility for AML/CTF supervision of legal, accountancy, and trust and company service providers.

Readers may know UK Companies House had planned that that by Spring 2026 identity verification of presenters would be a compulsory part of filing any document with Companies House and that all third-party agents filing on behalf of UK companies would need to be registered as an ACSP with Companies House. Since March 2025, Trust and Company Service Providers (TCSPs) and other professional service providers (such as accountants and solicitors) who are registered for Anti Money Laundering purposes with a supervisor in the UK, have been able to register with Companies House to become Authorised Corporate Service Providers (ACSPs). In an announcement earlier this week, Companies House confirmed the delayed implementation of this Spring deadline for presenters and third-party filling agents to be registered with Companies House to at least November 2026.

Central Bank of Ireland (CBI)

The CBI published the results of its thematic assessment of operational resilience in the MiFID investment firm sector, finding evidence of maturing frameworks but identifying weaknesses in firms’ identification and mapping of critical or important business services, scenario testing, and integration of firms' operational resilience frameworks with existing risk management frameworks.

Gerry Cross, Director, Capital Markets and Funds, Central Bank of Ireland delivered a speech at the Compliance Institute AGM. The speech focused on 'Supervising for success: some themes for a time of change'. The speech covered a number of important topics of relevance to compliance professionals and regulators including the important objective of securing customers’ interests, individual accountability, simplification, resilience, leveraging technology, and the Central Bank’s evolving approach to supervision.

The CBI and Banca d’Italia launched the first joint Innovation Data Challenge designed to foster cutting-edge research and innovation in the retail payments sector.

The new Consumer Protection Code (CPC 2025) and related Standards for Business will come into effect on 24 March 2026. Alongside the publication of the Consumer Code 2025, the CBI has recently published General Guidance on the Consumer Protection Code to support firms in implementing the requirements.

Artificial Intelligence (AI)

The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) adopted a Joint Opinion on the European Commission’s Proposal for the ‘Digital Omnibus on AI’. The EDPB and EDPS support streamlining the European AI Act implementation but call for stronger safeguards to protect fundamental rights.

Cybersecurity

The European Commission plans to revise the 2019 Cybersecurity Act to strengthen the EU’s resilience and capabilities in the face of these growing threats. The purpose is to strengthen the security of the EU’s information and communication technologies by reducing the risks from third-country suppliers and to ensure that digital products and services used are tested for security in a more efficient way.

The UK Government has published its new 'Government Cyber Action Plan (GCAP)', which aims to strengthen resilience across the UK particularly in the public sector. The GCAP outlines roles and relationships between organisations working with the public sector (including the UK's National Cyber Security Centre (NCSC) and the Department for Science, Innovation and Technology), setting clear milestones, strengthening governance, and providing centralised support that allows departments to focus on securing what matters most. The NCSC has published a summary of the new GCAP document on its website.

The UK's NCSC published new guidance setting out secure connectivity principles for Operational Technology (OT). These principles will help organisations design, review, and secure the connectivity within and to OT systems, transforming system understanding into positive cyber security action.

The UK's NCSC has also issued a warning over hacktivist groups disrupting UK organisations and online services. Organisations, particularly local government authorities and operators of critical national infrastructure, are being encouraged to review their defences and improve their cyber resilience by preparing and being able to respond to denial of service (DoS) attacks.

Digital Operational Resilience Act (DORA)

The European Supervisory Authorities and UK financial regulators signed a Memorandum of Understanding on oversight of critical ICT third-party service providers under DORA. The underlying details of the principles and key areas for cooperation and exchange of information between the ESAs and the UK Financial Authorities are included in the Memorandum of Understanding on DORA oversight of critical ICT third-party service providers in EU and UK.

Other News

Enterprise Ireland has created a new guide to support Irish SMEs on their sustainable export journey into the EU. It offers guidance on Navigating ESG Procurement - EU Export Guide for Germany, France, Spain and Italy to ensure continued competitiveness when competing for export opportunities to main EU markets including Germany, France, Spain and Italy.

The Government published its Legislation Programme for Spring 2026 setting out the Government’s priorities for the coming ten-week parliamentary session. It includes various areas of planned legislative changes including reference to heads in preparation of legislation for the transposition of the EU’s 6th Anti-Money laundering package that requires primary legislation. Work is ongoing on the National Cyber Security Bill (incorporating provisions to establish the National Cyber Security Centre on a statutory basis and provide for related matters), and heads are in preparation on the Regulation of Artificial Intelligence Bill giving full effect in Ireland to the EU Regulation on Artificial Intelligence, including the establishment of the national AI central office.

The UK's Information Commissioner's Office (ICO) published updated guidance on international transfers of personal information. This guidance supports businesses with understanding and complying with the transfer rules under UK GDPR.

The European Securities and Markets Authority (ESMA) published principles on risk-based supervision, which is a critical pillar for ESMA’s simplification and burden reduction efforts. These principles support a common and effective EU-wide supervisory culture to strengthen the EU single market.

The European Central Bank (ECB) published its latest economic bulletin covering the external environments, economic activity, prices and costs, financial market developments, financing conditions, credit and fiscal developments.

The Department of Enterprise, Tourism and Employment (DETE) launched a public consultation seeking views on proposed legislative measures through the Consumer Protection, Competition and Enforcement Bill 2026 to strengthen consumer protection and enforcement in Ireland. The closing date for receipt of submissions is 5pm on Friday, 27 February 2026.

Minister of State for Small Businesses, Retail and Employment at DETE has signed into law a revised Code of Practice on Access to Part‑Time Working . Prepared by the Workplace Relations Commission (WRC), the updated Code provides practical guidance to help employers and employees agree part‑time arrangements that support flexible, inclusive and modern workplaces.

The European Data Protection Board (EDPB) contributed to the European Commission’s evaluation of the application of the Data Protection Law Enforcement Directive (LED). In addition, the EDPB has updated recommendations on the application for Processor Binding Corporate Rules (BCR-P) covering the transfer tool that can be used by a group of undertakings or enterprises to transfer personal data outside the European Economic Area to processors within the same group to ensure compliance with GDPR. The updated recommendations will be open to public consultation until 2 March 2026.

CLS Chartered Secretaries has recently published its CLS “Top 10 Co Sec Points for 2026”. They write that each year they highlight some Company Law and Company Secretarial points to consider and some useful ones for 2026 including changes made to the audit exemption rules in 2025 and options if a company is late in filing.

For further technical information and updates please visit the Technical Hub on the Institute website.

This information is provided as resources and information only and nothing in the information purports to provide professional advice or definitive legal interpretation(s) or opinion(s) on the applicable legislation or legal or other matters referred to in the information. If the reader is in doubt on any matter in this complex area further legal or other advice must be obtained. While every reasonable care has been taken by the Institute in the preparation of the information we do not guarantee the accuracy or veracity of any resource, guidance, information or opinion, or the appropriateness, suitability or applicability of any practice or procedure contained therein. The Institute is not responsible for any errors or omissions or for the results obtained from the use of the resources or information contained herein.

News

Technical Roundup 23 January

The latest news to your inbox

Useful links

Get in touch

Connect with us