Eurosox lost in translation, warns Information Security Forum

Eurosox’s translation into 25 languages presents a heavy compliance burden

LONDON – The European Union’s corporate governance directives are in danger of being lost in translation, given the 25 different language versions into which they must be translated for member state implementation, according to the Information Security Forum (ISF).

EuroSox is the EU’s equivalent of the US Sarbanes-Oxley Act. It consists of three directives due to become part of the member states’ law this summer: the Fourth Directive, 78/660/EEC, Seventh Directive, 83/349/EEC and Eighth Directive, 84/253/EEC. The last of these was passed for implementation in April 2006.

But, according to the ISF, which comprises over 300 multinationals, large firms might struggle to implement EuroSox across borders. Heavy compliance burdens could be caused by differing interpretations of the directives by national regulators.

“While compliance is being driven at the highest level in most organisations, the implementation of the Sarbanes-Oxley Act both in the US and Europe has proved over-burdensome and costly,” says Andy Jones, a senior research consultant at the ISF. “It is possible that some of this experience might mean EuroSox is implemented more carefully and slowly.”

Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.

To access these options, along with all other subscription benefits, please contact or view our subscription options here:

You are currently unable to copy this content. Please contact to find out more.

Financial crime and compliance50 2024

The detailed analysis for the Financial crime and compliance50 considers firms’ technological advances and strategic direction to provide a complete view of how market leaders are driving transformation in this sector

Investment banks: the future of risk control

This survey report explores the current state of risk controls in investment banks, the challenges of effective engagement across the three lines of defence, and the opportunity to develop a more dynamic approach to first-line risk control

Op risk outlook 2022: the legal perspective

Christoph Kurth, partner of the global financial institutions leadership team at Baker McKenzie, discusses the key themes emerging from’s Top 10 op risks 2022 survey and how financial firms can better manage and mitigate the impact of…

Emerging trends in op risk

Karen Man, partner and member of the global financial institutions leadership team at Baker McKenzie, discusses emerging op risks in the wake of the Covid‑19 pandemic, a rise in cyber attacks, concerns around conduct and culture, and the complexities of…

Moving targets: the new rules of conduct risk

How are capital markets firms adapting their approaches to monitoring and managing conduct risk following the Covid‑19 pandemic? In a webinar in association with NICE Actimize, the panel discusses changing regulatory requirements, the essentials…

You need to sign in to use this feature. If you don’t have a account, please register for a trial.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an individual account here