Welcome to This Week in AI Regulations for June 07, 2026.

We begin in the European Union, where Frank Elderson delivered a speech on June 3rd emphasizing the need to strengthen operational resilience for the age of artificial intelligence. The European Union has increased supervisory focus on operational resilience and cyber risk through the introduction of the Digital Operational Resilience Act, known as DORA. This act enhances oversight of information and communication technology, or ICT, and third-party providers. Banks are now required to foster a culture of continuous improvement in IT and cyber risk management, invest in people, systems, and governance to strengthen operational resilience, and prepare for sophisticated cyberattacks. Proactive supervisory actions include issuing a "dear CEO letter" urging banks to bolster their cyber defenses. These measures aim to maintain trust and competitiveness in the banking sector amid rising cyber threats accelerated by AI technologies.

Also in the European Union, a scientific brief supporting the Chips Act 2 was published. This brief highlights semiconductor supply chain risks and dependencies, stressing the need for a holistic approach to digital sovereignty across multiple technology layers. The European Union’s heavy reliance on non-EU semiconductor suppliers creates economic and strategic vulnerabilities. The brief calls for monitoring semiconductor supply chains to identify critical bottlenecks, developing crisis preparedness and intelligence capabilities, and expanding focus beyond semiconductors to include cloud computing, AI, software ecosystems, and quantum technologies.

In the Netherlands, De Nederlandsche Bank has accelerated and streamlined its fintech licensing process. The bank has cut review timelines in half compared to 2025 by introducing fixed review cycles, using artificial intelligence for document analysis, reducing information duplication, and limiting iterative rounds. The InnovationHub and Innovation Table roles have been reinforced to support fintech companies and expedite supervisory processes. This refined supervisory approach addresses emerging European AI developments and risks related to digital dependence on third-party IT providers and geopolitical vulnerabilities.

Turning to the United States, US Senators have criticized the Trump administration for failing to update export controls, which created a loophole allowing advanced AI chips to be exported to overseas subsidiaries of Chinese firms. The US Department of Commerce has moved to close this loophole, updating export control policies to prevent advanced AI chips from being exported to Chinese firms’ overseas units.

In the United Kingdom, the Financial Conduct Authority, or FCA, has published multiple statements between March and June 2026 addressing new payment schemes, policy reforms, and joint statements on AI and cyber resilience. The FCA requires implementation of the UK Payments Initiative scheme for recurring payments and compliance with reforms under the Consumer Credit Act 1974. Additionally, the FCA has issued guidance on frontier AI models and cyber resilience.

Finally, the Financial Stability Board, or FSB, during its plenary session highlighted new vulnerabilities to financial stability from geopolitical conflicts and frontier AI models. The FSB announced an upcoming report on responsible AI adoption and discussed ongoing regulatory modernization and implementation monitoring efforts. Financial institutions are encouraged to consider sound practices for responsible AI adoption in line with the forthcoming FSB report. Regulators and supervisors will continue modernization initiatives to adapt to evolving financial risks posed by AI technologies.

That wraps up today's regulatory updates. Visit carveragents.ai for more information.