Search Results

The European Commission has launched today a new whistleblower tool designed to support enforcement of the AI Act. In brief: What is the new whistleblower tool The tool offers a secure and confidential channel  for individuals to report suspected breaches of the AI Act. Reports go directly to the European AI Office. Reports can be submitted in any official EU language , in any format , which aims to maximize accessibility for whistleblowers across the EU. The system uses certified encryption mechanisms  to guarantee confidentiality and data protection. Reporters remain anonymous, yet they can receive secure follow-up communications : updates on the progress of their report and the possibility to answer additional questions from the EI AI Office - all without compromising anonymity. Why this matters The AI Act aims to foster innovation and adoption of artificial intelligence across the EU, while at the same time safeguarding health, safety, fundamental rights, public trust, and the rule of law . Effective enforcement of the AI Act is key to ensuring compliance. The whistleblower tool empowers insiders , employees, collaborators, shareholders, or other stakeholders with knowledge about AI systems to report non-compliance early . This helps the EU AI Office detect and address risks before they escalate. With this tool, the Commission leverages transparency and accountability  as core mechanisms for AI governance, which is especially important in a regulatory environment where full oversight of complex AI systems is technically and practically challenging. Practical points & Current Limitations |Currently, the tool ensures confidentiality and anonymity , but statutory protection against retaliation  (e.g., from employers) under the general EU whistleblower rules -namely the Whistleblower Directive - will only apply to AI Act-related reports from 2 August 2026  onwards. Until then, protections remain based on Commission assurances. Despite those caveats, the tool represents a significant step forward . As noted by independent observers, early detection of AI-related risks (e.g. breaches of safety, privacy, non-discrimination) can meaningfully contribute to “safe, transparent and trustworthy” AI deployment across the EU.

The European Commission has proposed the Digital Omnibus on AI , a legislative package designed to adjust and simplify the implementation of the EU AI Act . The goal is to give organisations more flexibility, align compliance deadlines with the availability of technical standards, and ease the burden on companies deploying AI in the EU. Key Changes at a Glance Flexible compliance deadlines: Instead of fixed dates, the obligations for high-risk AI systems would take effect only when the relevant EU standards or guidelines are published. If these are delayed, fallback deadlines will apply from late 2027 to mid-2028. Companies would also get short grace periods to complete compliance work. Transitional support for existing systems: Generative AI models and high-risk AI systems already on the market would benefit from additional time to adjust. “Legacy” high-risk systems can continue to be used or sold if their design remains unchanged. Reduced administrative load: Lower-risk AI systems would no longer need to be listed in the EU AI database. Providers must still conduct risk assessments, but only need to submit them on request. The proposal also broadens the ability to process sensitive data for bias-mitigation, subject to safeguards. More flexibility for GPAI and content-marking: The mandatory element for codes of practice on general-purpose AI and content provenance would be removed. These frameworks would stay as soft-law tools, not binding legal requirements. Support for SMEs and smaller mid-caps: The simplified regime available under the AI Act would be expanded, reducing documentation demands and lowering fines for qualifying companies. What This Means for Organisations Businesses should treat this proposal as an opportunity to recalibrate their AI compliance plans, not as an excuse to delay preparation. The Diogital Omnibus Directivemay offer extra time, but deadlines can still arrive early if EU standards are finalised sooner. Organisations should continue building strong AI governance, documentation and monitoring processes, especially if operating in regulated sectors like financial services. What’s Next? The Digital Omnibus Directive is still under negotiation and may change before adoption. If it is not finalised before August 2026, the original AI Act deadlines will remain in force. Organisations should therefore continue preparing proactively while monitoring legislative developments.

On 24 October 2025, CySEC issued on 24.10.2025 a Circular  C736 – Key Observations on the Prudential Framework for CIFs , addressed to Cyprus Investment Firms (CIFs), highlighting a series of supervisory observations and recommendations regarding the implementation of the prudential framework under Law 165(I)/2021 (Investment Firms) and Regulation (EU) 2019/2033 (IFR). Why it matters The Circular underscores that CySEC has identified recurring issues in how CIFs apply key prudential rules. These findings reflect both reporting and governance weaknesses, and signal that supervisory scrutiny will increase. Failure to adjust may lead to remedial measures or sanctions. Main Observations In brief: Timely Submission of Prudential Reporting CySEC observed delays in the submission of required prudential reports via the XBRL portal, and the use of outdated templates. Firms are reminded to submit all required reports within deadlines and to check the CySEC and EBA websites for the latest templates. Ongoing Compliance with Prudential Requirements Some CIFs are found to be failing to meet prudential obligations under Articles 9, 11 and 43 of the IFR, and to notify CySEC when they identify deficiencies. CySEC emphasises a proactive approach: monitoring requirements continuously and implementing corrective measures without delay. c Data Consistency Across Reporting Sources Significant inconsistencies were identified between the data reported via XBRL and other sources such as audited financial statements, QST-CIF forms and management accounts. Issues relate to profit/loss figures, retained earnings, own funds, liquid assets and fixed overheads. For example, the figure for “Annual fixed overheads of the previous year after distribution of profits” in the templates must align with audited statements and remain unchanged until the next audit. Remuneration Policies (Class 2 CIFs) The circular finds that some Class 2 CIFs did not comply with requirements such as: at least 50% of variable remuneration being in instruments; at least 40% deferred over a three-to-five-year period; and alignment with Law 165(I)/2021 and the EBA’s guidance. Establishment of Risk & Remuneration Committees CySEC identified CIFs that did not establish required committees (per sections 22 and 27 of Law 165(I)/2021), had committees composed solely of executive directors, single-person committees or lacked gender balance in remuneration committees. Internal Governance and Conflicts of Interest The circular highlights cases where Class 2 CIFs failed to implement conflicts-of-interest policies in loans or other transactions with members of the management body or their related parties, contrary to Law 165(I)/2021 and EBA internal governance guidelines. Liquidity Requirements (Article 43 IFR) CIFs have misclassified certain items as “unencumbered short-term deposits at a credit institution” which do not  meet the definition of liquid assets under Article 43(1) IFR. Examples: funds held with Electronic Money Institutions (EMIs), Payment Service Providers (PSPs), client-fund buffers, or contributions to the Investors Compensation Fund. Prudential Consolidation Supervisory findings include failures in assessing group structures for the purposes of prudential consolidation under the IFR and the new Regulation (EU) 2024/1771. Key issues relate to wrongly identifying whether an entity is a financial institution, union parent investment firm, or correctly applying consolidation requirements after structural changes. Completion of Form 165-03 (Section C) CySEC found that some CIFs did not disclose modified audit opinions or include links to their Pillar III disclosures in Section C of Form 165-03. Next Steps & Supervisory Warning CySEC advises CIFs to undertake a comprehensive review  of their practices across reporting, governance and prudential frameworks to ensure full compliance with Law 165(I)/2021, the IFR, applicable delegated regulations and the EBA’s guidelines. CySEC also states that it will continue its monitoring and will apply appropriate measures , including administrative sanctions or other supervisory actions, in cases of non-compliance. Implications for CIFs For CIFs operating in Cyprus, Circular C736 signals that the regulatory focus is sharpening on prudential discipline and governance. Some practical implications to consider: Reviewing internal processes for timely and accurate XBRL/prudential reporting. Ensuring full alignment and documentation across audited accounts, management accounts and reporting templates. Verifying governance structures, committee operations and remuneration frameworks for compliance. Re-classifying assets/liabilities appropriately under IFR definitions (especially liquid assets). Assessing group structure and consolidation requirements whenever there are changes. Strengthening disclosure practices for audit opinions and Pillar III disclosures. CySEC’s Circular C736 sends a clear supervisory message: accuracy, governance alignment and prudential discipline are now under closer regulatory scrutiny. CIFs are expected to address identified weaknesses promptly and ensure full and ongoing compliance with IFR requirements.

The European Securities and Markets Authority (ESMA) has released itshttps 2026 Annual Work Programme , outlining how it will deliver on its 2023–2028 Strategy and support the EU’s Savings and Investments Union (SIU) agenda. While the plan is broad, several core areas of focus stand out for 2026 — reviews, supervisory convergence, and upcoming regulatory changes that will shape the compliance agenda for EU financial institutions. Key Areas of Focus in 2026 Supervisory Reviews and Convergence Peer reviews will intensify across market abuse (MAR), MiFID II/MiFIR investor protection measures, and fund management risk practices (liquidity, leverage, valuation). Expect Common Supervisory Actions (CSAs) and mystery shopping exercises to test retail investor protection in practice. Direct supervision of credit rating agencies (CRAs), trade repositories (TRs), CCPs, and soon ESG rating providers will expand, reinforcing consistency across the EU. Retail Investor Protection Implementation of the Retail Investment Strategy (RIS) will accelerate, with ESMA focusing on product governance, cost transparency, and suitability. New investor trend monitoring tools and a stronger use of data analytics will guide supervisory priorities. Sustainable Finance & ESG ESMA will review sustainability disclosures to combat greenwashing and align with global reporting standards. New mandates: oversight of ESG rating providers and European Green Bond reviewers begins in 2026. Supervisory convergence on the use of transition finance and monitoring of sustainability claims will be a top priority. Digital & Data Transformation A major review of reporting regimes (MiFIR, EMIR, SFTR, AIFMD/UCITS) will be carried out to reduce overlaps and streamline data collection. Roll-out of the European Single Access Point (ESAP) and further deployment of the ESMA Data Platform will change how data is gathered, shared, and used by supervisors. Crypto-Assets and DLT The first MiCA reviews will kick off, with ESMA setting supervisory expectations on transparency, market abuse monitoring, and reporting. Development of a centralised EU crypto market surveillance system will strengthen oversight of this emerging market. Digital Operational Resilience (DORA) 2026 marks the first full year of joint ESA oversight  of critical ICT third-party providers. ESMA will embed DORA requirements into supervisory convergence, ensuring operational resilience frameworks are tested in practice. Upcoming Changes – What Market Participants Must Prepare For Retail Investment Strategy : stronger requirements on costs, disclosures, and suitability assessments. ESG Ratings & Green Bonds : new supervisory mandates mean higher scrutiny on methodologies, transparency, and independence. Reporting Simplification : expect consultations and technical standards aimed at reducing duplication across MiFIR, EMIR, SFTR, AIFMD/UCITS. Crypto under MiCA : new obligations for issuers, service providers, and trading venues, with direct ESMA involvement. DORA Implementation : oversight of ICT providers will create new expectations for firms’ resilience testing and vendor management. key Takeaway The 2026 ESMA programme is not just about continuity — it introduces new supervisory mandates, fresh peer reviews, and upcoming regulatory shifts that firms must prepare for.The emphasis on convergence, simplification, and sustainability makes 2026 a defining year for EU financial markets, with ESMA taking a stronger role in ensuring coherence, trust, and resilience across the system.

🧾 Key Provisions of Circular C731 Scope of Application The Circular applies to all financial entities authorised by CySEC that fall within the DORA framework, including but not limited to: CIFs, Crypto-Asset Service Providers, issuers of asset-referenced tokens (when Cyprus is the home Member State), CSDs, CCPs, trading venues, AIFMs, UCITS management companies, and crowdfunding service providers. Self-categorisation & Fee Calculation Entities must complete a form (fields 1.1 to 1.7) to self-categorise and compute their Annual ICT (information & communications technology) fee  for 2025. Accompanying the Form , the firm must submit: Excerpts from the most recent audited financial statements (turnover, balance sheet) Evidence of the number of employees Submission & Deadlines for 2025 The Form must be submitted via the CySEC Portal (or by email to accounts@cysec.gov.cy  for entities without portal access) by 31 October 2025 . The 2025 fee will be pro-rated: it applies to the period 15 August – 31 December 2025 . Payment to be made by 31 December 2025 . From 2026 onward: Self-categorisation to be submitted between 1–15 September. Fees must be paid by 30 November  of each year. 💶 Fee Bands & Additional Charges CySEC’s prior Directive (DI 73-2009-07) and accompanying policy statements outline annual subscription tiers (based on enterprise size) and extra fees for certain activities. (As you covered in your previous blog on the same topic). In particular: Annual subscription tiers  are divided by enterprise classification (micro, small, medium, large). Additional fee  of €20,000  is imposed for entities that carry out Threat-Led Penetration Testing (TLPT)  under DORA Article 26. These tiers and extra payments can materially affect your bottom line, especially for mid-sized or growing firms. 🛠️ Recommended Next Steps Assess whether your entity falls under DORA  — check scope and existing operations Perform categorisation exercise  (based on turnover, assets, staff) Gather supporting documents  — annual audited statements, employee numbers Prepare and submit the self-categorisation form  by 31 October 2025 Perform the relevant payment  (by 31 December 2025) Evaluate whether TLPT is required  under your DORA obligations

Date of Issue: 26 September 2025 Applies to: AIFMs (including Small AIFMs) UCITS Management Companies & Internally Managed UCITS Internally Managed AIFs (including AIFLNPs) Companies managing AIFLNPs 📌 Key Points Form to Submit Latest version of the form QST-MC Version 23 must be completed and submitted via the Transaction Reporting System (TRS). Applies also to entities authorised/appointed as External Managers even if they have not yet used their authorisation. Deadline Submission must be completed by 31 October 2025. CySEC emphasises strict adherence – no reminders will be sent. Validation & Confirmation Submissions are deemed successful only once a NO ERROR feedback file is received from TRS. Entities must review and correct any errors before digitally signing and re-submitting. Counting UCIs & Sub-Funds For reporting purposes, sub-funds count as separate UCIs. Example: 1 UCI with 3 sub-funds = report as 3 UCIs. Technical Notes Reporting must be in EUR (rounded to nearest unit). File naming: USERNAME_20250930_QST-MC.xlsx Only Excel 2007+ versions accepted. Validation tests in all sections (A–M) must show TRUE (green). Support & Queries Content-related queries  to: riskstatistics.fundmgrs@cysec.gov.cy  (by 24 October 2025). Technical queries  to: information.technology@cysec.gov.cy . ⚠️ Implications for Regulated Entities Non-compliance risk : Late or incorrect submission may trigger administrative penalties  under section 37(5) of the CySEC Law. Operational adjustments : Entities should ensure their reporting teams are aligned on the updated version (QST-MC v23) and validate files early to avoid last-minute technical issues. Governance note : Boards and senior management should be aware of the deadlines and internal readiness to prevent regulatory breaches. 🔗 Useful Links TRS User Manual – Digital Signature Guidance QST-MC Form v23 (CySEC Website)

Introduction The EU Data Act (Regulation (EU) 2023/2854)  is a landmark regulation in the European Union’s digital agenda. It entered into force on 11 January 2024, and its provisions apply from 12 September 2025. As the second major legislative initiative of the EU Data Strategy (after the Data Governance Act), the Data Act creates a framework for fair access, use, and sharing of data across industries and Member States. According to the European Commission, the Data Act could add €270 billion to EU GDP by 2028, making it not only a regulatory framework but also a strategic economic driver. Objectives of the Data Act Empower users of connected products to access and control the data they generate.- Promote fairness in digital markets, particularly protecting SMEs from abusive practices. Facilitate B2B and B2C data sharing to fuel innovation. Enable public authorities to access data in exceptional circumstances. Support cloud portability and interoperability to reduce vendor lock-in.- Safeguard trade secrets, IP rights, and cybersecurity. Who is Affected? The Data Act is a horizontal regulation, cutting across industries rather than targeting one specific sector. It applies to: Manufacturers of connected devices (cars, wearables, appliances, industrial machines). Providers of digital services linked to connected products. Data holders and data recipients, including SMEs. Public sector bodies requesting data in exceptional circumstances. Cloud and edge service providers operating in the EU. This broad scope reflects the EU’s ambition to ensure that all actors in the data economy operate under fair and transparent rules. Key Provisions 1. User Access to Data from Connected Devices Users of connected products have the right to access and use the data they generate. Manufacturers must ensure such data is available free of charge, easily, and in real time where feasible. Third parties, such as repairers or aftermarket providers, can also access this data with the user’s consent. 2. Fairness in Data Contracts The Act prevents large companies from imposing unfair contractual terms on SMEs. Any unilaterally imposed clause that grossly deviates from good commercial practice is invalid. The European Commission provides model contract clauses to support SMEs. 3. Public Sector Access in Exceptional Need Public authorities may request data in emergencies (e.g., natural disasters, pandemics). Requests must be necessary, proportionate, and fair. Compensation is due except in genuine emergencies, when data must be provided free of charge. 4. Cloud Switching and Interoperability Customers of cloud services have a legal right to switch providers. Providers must remove technical and contractual barriers to switching. The EU is also developing interoperability standards to enable seamless transfer of data and applications. 5. Safeguards for Trade Secrets, IP, and Security Data sharing must respect trade secrets and intellectual property rights. Confidentiality agreements and technical safeguards are required, and cybersecurity must not be compromised. Enforcement and Penalties Each Member State designates competent authorities to supervise compliance. Penalties must be effective, proportionate, and dissuasive. Dispute resolution mechanisms are foreseen, particularly for contractual disagreements. Business Implications Manufacturers & IoT Providers → Must adapt products and contracts. SMEs → Gain protection from unfair terms and more access to data. Cloud Providers → Must enable switching and prepare for interoperability standards. Public Authorities → Gain a legal basis for emergency data requests. Timeline 11 January 2024 → Regulation entered into force. 12 September 2025 → Provisions apply across all EU Member States. Cloud switching obligations → Phased until 2027. Conclusion The EU Data Act is a transformative step in Europe’s digital economy. It empowers individuals, protects SMEs, supports public interest, and promotes fair competition. Businesses should now: Map data flows and assess accessibility. Review contracts for compliance. Prepare for cloud switching requests. Strengthen safeguards for IP and cybersecurity. Those who act early not only comply but also gain a competitive edge in Europe’s new data-driven landscape.

Further to the CySEC’s consultation paper (refer to link à  Consultation Paper (CP -01-2025 ) ,the new CySEC Directive ΟΔ 73-2009-07 (Fees & Subscriptions 2025) has been issued and published in the Official Gazette on 29 August 2025 , which is immediately into effect. Key points for consideration: SCOPE: Applies to financial entities falling under Regulation (EU) 2022/2554 (DORA), including CIFs, CASPs, issuers of asset-referenced tokens, CSDs, CCPs, trading venues, AIFMs, UCITS Management Companies, and crowdfunding service providers. ANNUAL SUBSCRIPTION: Microenteprise 2 : €2,000 Small enterprise 3 : €5,000 Medium enterprise  4 : €10,000 Other than microenterprise, small enterprise, or medium enterprise: €20,000   CYSEC NOTIFICATION:  Entities shall inform CySEC between 1 st  September – 15 th  September each year  on their category, based on the latest annual audited financial statements. Along with CySEC notification, entities shall provide to CySEC extracts of Financial Statements, where the annual turnover and balance sheet of the entity will be clearly presented, as well as the number of employees as at the date of submission. PAYMENT DEADLINE:  Annual subscription due by 30 November  of each year, for the period 1 st January – 31 st  December. ADDITIONAL FEES:  Entities conducting Threat-Led Penetration Testing (TLPT)  under Article 26 of DORA are required to pay a fee of €20,000 .   2025 TRANSITIONAL ARRANGEMENTS: Entities must notify CySEC of their classification between 2 nd – 31 st October 2025. Payment for the period 15 th August – 31 st December 2025  must take place by 31 December 2025 .   ACTIONS REQUIRED: Review the Entity’s classification (very small, small, medium, or large) based on the definitions stipulated above. Ensure timely submission of classification to CySEC along with the required information (i.e. extracts from latest audited FS and number of employees). Proceed with the required payment to CySEC. Perform an internal assessment as to whether the Entity is subject to TLTP based on DORA. If Yes, then additional fee of €20.000 shall be paid to CySEC.

Introduction The European Banking Authority (“EBA”) has published revised draft guidelines on internal governance under Directive 2013/36/EU (“CRD”) (“Draft Guidelines”), reflecting regulatory and supervisory developments since the previous version of July 2021 (EBA/GL/2021/05). The revisions are designed to further harmonize internal governance arrangements, processes, and mechanisms across EU financial institutions and third-country branches (“TCBs”), in line with amendments introduced by Directive (EU) 2024/1619 (“CRD VI”) and other recent legislative acts, including the Digital Operational Resilience Act (DORA). Draft Guidelines will also reflect lessons learned from supervisory practices, the growing importance of ESG risks, the impact of digitalization, and the need for robust internal controls. Finally, the Draft Guidelines will incorporate findings from the EBA’s benchmarking of diversity practices and gender-neutral remuneration policies. Scope of Application / Addressees The Draft Guidelines clarify and expand their scope: Addressed to competent authorities, financial institutions (credit institutions & investment firms subject to CRD), and now also financial holding and mixed financial holding companies approved under Article 21a(1) CRD. Explicit extension to third-country branches (TCBs), with governance provisions tailored to their risks and specificities. Particularly relevant for significant CRR institutions under direct ECB supervision, aligning with the ECB’s Draft Guide on governance and risk culture (July 2024). Strengthened Role and Composition of the Management Body Role and Responsibilities The management body retains ultimate responsibility (Article 88(1) CRD). The Draft Guidelines reinforce: A clear distinction between executive (management) and non-executive (supervisory) functions. Written documentation of responsibilities and duties, plus an updated mapping of duties available to supervisors. Expanded scope of oversight to include: ESG risks (short, medium, long term) and concentration risks. ICT systems under DORA. A corporate culture promoting diversity and inclusion. Quantifiable targets for exposures to systemic central counterparties. Board Committees Risk, nomination, remuneration, and audit committees remain required for significant institutions. Members of remuneration committees must have skills to assess ESG impacts and align remuneration with ESG risk appetite. Risk committees must now also oversee fundamental rights, discrimination, and ICT risks. Internal Governance of Third-Country Branches (TCBs) New section introduced under Article 48g CRD: At least two persons located in the EU must direct the branch, with sufficient presence, independence, and expertise. Heads of risk, compliance, and audit in class 1 TCBs cannot be removed without supervisory function approval. TCBs must not operate as “empty shells”; EU substance is required. ICT and third-party risks must be managed in line with DORA. Back-to-back booking cannot systematically shift risk outside the EU. Remuneration policies must be gender neutral and ESG-consistent. Third-Party Risk Management Policy A renamed and expanded policy (formerly “outsourcing policy”): Must be approved, reviewed, and updated by the management body. Covers all ICT third-party arrangements under DORA (not only outsourcing). Confirms that third-party contracts do not relieve institutions of legal/regulatory obligations. Risk Culture and Corporate Values Development of an institution-wide risk-aware culture. Stronger emphasis on diversity, equality, and anti-discrimination. New indicators: gender representation across levels, age distribution, ratio of full-time vs part-time roles by gender. Clearer rules on conflicts of interest: Ban on simultaneously being chair of supervisory body and CEO. Restrictions on cross-group directorships. Cooling-off safeguards when a CEO transitions into a non-executive role. Internal Control Functions Key reinforcements: Independence  of risk, compliance, and audit functions. Heads of control functions  must be senior, independent, and report directly to the supervisory body. Combination of risk and compliance roles will no longer be permitted under one head. Risk management function (RMF)  must be led by an independent senior manager. Compliance function  now explicitly tasked with ensuring that all material management decisions account for legal risk. Internal audit remains independent but may be combined with other functions if safeguards exist. Business Continuity Management Institutions must establish a continuity policy , as well as response and recovery plans. Plans must be documented, tested, and updated; results reported to the management body. Business continuity requirements must align with DORA for ICT risk. Training and awareness programmes required to ensure resilience. Conclusion & Next Steps The Draft Guidelines represent a comprehensive upgrade  of the EU governance framework, aligning institutions with evolving supervisory expectations. 📅 The consultation runs until 7 November 2025 .

A major announcement this week in Beijing has drawn worldwide attention: a Chinese robotics firm, Kaiwa Technology, revealed a humanoid robot prototype equipped with a fully functional artificial womb, designed to gestate and deliver human babies. The development, led by Dr. Zhang Qifeng, marks a potential turning point in reproductive technology. Who and What The invention, described as a “pregnancy robot”, is capable of creating an environment akin to a human womb. Nutrients are provided via a tube, simulating an umbilical cord, while the chamber replicates amniotic conditions. Unlike incubators, this technology claims to sustain an embryo through to live birth. Where and When The robot was showcased at the 2025 World Robot Conference in Beijing, with trials and prototypes expected to be further refined by 2026. The company, headquartered in Guangzhou, is already in dialogue with local authorities in Guangdong Province to address the ethical and legal implications of such work. Why Kaiwa Technology positions the innovation as a solution for infertile couples and those facing high-risk pregnancies. Cost is also presented as a factor: while international surrogacy can cost upwards of $100,000, the robot is estimated at around $14,000 per pregnancy, potentially widening accessibility. How Artificial womb technology is integrated into a humanoid robotic body, enabling full gestation cycles under controlled conditions. This is not merely a medical device, but a system presented as a functional substitute for human pregnancy. Legal, Regulatory and Ethical Considerations While technologically significant, this innovation poses immediate challenges for law, policy, and ethics: Legal Status and Parental Rights Who is the legal parent when birth is mediated by a machine? Surrogacy laws do not currently contemplate robots as intermediaries, raising unprecedented questions around parental rights, citizenship, and registration. Regulatory Oversight The technology sits at the intersection of healthcare, robotics, and reproductive law. National health regulators, as well as international bioethics bodies, will be pressed to determine whether artificial wombs can be licensed, supervised, and integrated into healthcare systems. Ethical Concerns Risk of commodification of childbirth, treating babies as products. Psychological and social impacts: the absence of maternal gestation may affect notions of bonding, family, and identity. Medical safety: critical biological processes such as hormonal signaling may not be replicable in a machine, raising long-term concerns for child health. Equity and Access Although cheaper than surrogacy, access remains limited by cost. Broader questions of reproductive justice and inequality will be at the forefront of global debate. Conclusion The introduction of humanoid pregnancy robots represents a significant development in reproductive technology. While this innovation may provide solutions for individuals and couples facing infertility or severe medical risks, it simultaneously raises profound challenges for legal systems, ethical theory, and social policy. In the legal domain, current frameworks governing parentage, custody, and the status of children lack provisions for gestation mediated by machines, necessitating the development of new rules and judicial interpretations. Ethical analysis must consider issues of human dignity, the potential commodification of reproduction, and the implications for the moral responsibilities traditionally associated with motherhood and parenthood. From a psychological perspective, particular attention must be given to the identity formation and emotional development of children born through such processes, as their understanding of family, origin, and belonging may be affected by non-traditional gestation. The critical question is not only whether such technologies can operate safely and effectively in a continuous innovative environment, but mainly whether societies can integrate them in ways that remain consistent with established legal norms, ethical principles, and the long-term welfare of children. _____________________________________ Sources: 1.     The New York Post https://nypost.com/2025/08/17/tech/pregnancy-robots-could-give-birth-to-human-children/?utm_source=chatgpt.com     2.     The Economic Times https://economictimes.indiatimes.com/news/international/us/game-changer-for-parents-pregnancy-robots-could-make-infertility-a-thing-of-the-past/articleshow/123371721.cms

Introduction The issue of trapped buyers  has, over the last decade, emerged as one of the most pressing social and legal concerns in the Cypriot real estate sector. The term refers to purchasers who, despite paying the full purchase price and fulfilling all contractual obligations, were unable to secure transfer of ownership because of pre-existing encumbrances (mortgages, court decisions, memos, prohibitions) registered by developers or their lenders. This phenomenon peaked between 2008 and 2015, exposing structural flaws in the financing of developers, the operation of the transfer system, and the balance between contractual rights of buyers and proprietary rights of creditors. Thousands of buyers remained without title deeds, deprived of legal certainty and unable to resell, mortgage, or safeguard their property against foreclosure actions initiated for debts of the developer. The concept of the trapped buyer A trapped buyer is typically one who has paid the purchase price and often has possession of the property, but cannot obtain ownership. Their only protection lay in depositing the sales contract with the Land Registry, which created a form of encumbrance but not ownership. This left them exposed to foreclosure proceedings by the seller’s creditors and unable to use the property as collateral or transfer it. From the sellers’ perspective, developers routinely mortgaged the entirety of their land to finance projects, selling individual units without first releasing encumbrances. Banks, in turn, relied on their security interests, enforcing foreclosures against developers and disregarding the position of end-buyers. The result was a severe loss of trust and stability in the property market. Legislative evolution The 2015 Amendment (Amending Law 139(I)/2015) introduced a mechanism allowing the Director of the Land Registry to transfer title directly to buyers, even without the creditors’ consent. However, in Civil Appeal 285/2018 (Supreme Court, 20 June 2024), these provisions were declared unconstitutional for infringing Article 23 of the Constitution (right to property). Applications under this law stalled, leaving buyers unprotected. The new Amendment of 2025 (Amending Law 110(I)/2025) published at 04.07.2025, aims to restore protection in a constitutionally compliant manner. It amends the Immovable Property (Transfer and Mortgage) Law, creating a more balanced framework on the Buyers' protection: Temporal limits : Only sales contracts signed or deposited with the Land Registry up to 31 December 2014 fall within the regime. Purchasers post-2015 are excluded. Requirement of a separate title : Buyers benefit only if a distinct title deed for the unit exists. Properties lacking titles due to planning or building irregularities remain outside protection. Encumbrances : Where prior mortgages or memos exist, the consent of the encumbrance holder is required for transfer. Judicial remedy for abusive refusal : If consent is unjustifiably withheld, and the buyer has fully paid, the court may substitute the lender’s consent upon application filed within 45 days. Suspension of auctions : Filing such an application suspends foreclosure or insolvency proceedings until the court decides, ensuring temporary buyer protection. Land Registry procedures : New notification forms (e.g. Type IHA) ensure that both buyers and lenders are formally informed of pending transfers and encumbrance adjustments. Mortgages are transferred from the developer’s entire landholding onto the specific unit sold, preserving creditor rights while allowing buyer ownership. Supreme Court procedural rules : The law authorises the Court to issue rules on time limits and procedural streamlining, preventing indefinite litigation and delays. Practical implications Buyers now enjoy an enforceable right to secure their title against unjustified creditor resistance, achieving greater legal certainty. Developers lose the ability to shift the risk of encumbrances onto end-buyers; they must confront their financing structures directly. Creditors remain protected, but their refusal to consent is subject to judicial review for abuse of rights. The property market benefits from enhanced transparency and restored confidence, encouraging investment. Constitutional balance and remaining gaps The 2025 reform strikes a balance between protecting buyers, safeguarding lenders’ security rights, and ensuring smoother market function. It adopts a proportionate model, avoiding the constitutional flaws of the 2015 regime, while providing judicial safeguards and respecting Article 23 of the Constitution. Nonetheless, gaps remain: Buyers of properties without a separate title (due to planning irregularities or incomplete division of land) remain excluded and effectively unprotected. These purchasers remain “trapped” in practice, dependent on the developer’s completion of outstanding planning or licensing steps, often subject to long delays or uncertainty. Conclusion Amending Law 110(I)/2025 represents a major step forward in addressing the trapped buyers’ problem. Its success will depend on effective cooperation among buyers, developers, lenders, and the Land Registry, as well as on consistent judicial application. While not a complete solution, it restores a measure of fairness and legal certainty in a sector where institutional trust had been deeply eroded.

On 23 June 2025, the European Securities and Markets Authority (ESMA) published a Call for Evidence  on a comprehensive approach to the simplification of financial transaction reporting. This initiative reflects ESMA’s ongoing commitment to reduce regulatory burden while maintaining robust supervisory oversight. Why it matters Over the past decade, EU financial markets have been subject to multiple overlapping reporting regimes — MiFIR, EMIR, SFTR (and others such as REMIT and Securitisation). While each framework was designed with clear policy objectives, their coexistence has led to duplication, inconsistency, and high compliance costs. Industry estimates suggest reporting costs across MiFIR, EMIR and SFTR range between €1–4 billion annually. Key issues identified by ESMA Duplicative reporting of the same transactions under MiFIR, EMIR and REMIT. Inconsistent definitions and terminology, complicating reconciliation. Dual-sided reporting obligations under EMIR and SFTR, unique to the EU, adding operational complexity. Fragmented IT systems and reporting channels, increasing costs for firms and authorities alike. Simplification options under consideration ESMA is exploring two main avenues: 🔹 Option 1: Removal of duplication in current frameworks Sub-option 1a: Delineation by instrument (MiFIR = ETD, EMIR = OTC). Sub-option 1b: Delineation by event (MiFIR = transactions, EMIR = post-trade events). 🔹 Option 2: “Report once” principle Sub-option 2a: Full integration of MiFIR, EMIR and SFTR under a single template. Sub-option 2b: Expansion of “report once” to include other regimes such as REMIT or Solvency II. Next steps Stakeholders are invited to provide feedback by 19 September 2025. ESMA expects to publish a final report in early 2026, setting out preferred simplification options. Why firms should engage This consultation represents a unique opportunity for market participants to shape the future of EU transaction reporting. The choices made could redefine cost structures, compliance models, and supervisory data flows for years to come.