What It Is

Directive 2012/19/EU, the recast WEEE Directive, is a binding EU regulation establishing Extended Producer Responsibility (EPR) for end-of-life electrical and electronic equipment (WEEE). It mandates prevention, reuse, recycling, and recovery to minimize environmental risks and recover critical materials, applying an open scope since 2018 covering all EEE in 6 categories.

Key Components

• **Producer obligationsregistration, reporting EEE placed on market (POM), financing via PROs.
• **Collection targets65% average POM or 85% WEEE generated.
• **Treatment standardsselective depollution (Annex II), storage rules.
• **Distributor dutiesfree one-for-one take-back, small WEEE acceptance.
• National transposition with harmonized reporting (e.g., 2019/290).

Why Organizations Use It

Legal compliance avoids fines and market bans; enables circular economy via material recovery; reduces risks from illegal exports; supports Green Deal goals, enhancing reputation and supply security.

Implementation Overview

Phased approach: gap analysis, multi-country registration, PRO joining, data systems integration, reverse logistics. Applies to producers/importers EU-wide; audits via national registers. No central certification, but data-driven enforcement.

What It Is

MAS Technology Risk Management (TRM) Guidelines (January 2021) are supervisory guidelines from Singapore's Monetary Authority of Singapore (MAS). This risk-based framework targets financial institutions (FIs) to govern and control technology and cyber risks, emphasizing proportional implementation based on risk profile, complexity, and exposure across governance, operations, cybersecurity, and resilience.

Key Components

• Core pillars: governance, asset management, secure development, IT service management, resilience, access control, cryptography, data security, cyber operations, testing, and audit (15 sections).
• 12 synthesized principles like board accountability, third-party oversight, and defence-in-depth.
• No fixed controls; focuses on outcomes for confidentiality, integrity, availability (CIA).
• Compliance via supervisory review, no formal certification.

Why Organizations Use It

• Mandatory for MAS-regulated FIs to avoid fines, license actions.
• Enhances resilience, reduces systemic risks, builds trust.
• Integrates with ERM, supports digital transformation securely.

Implementation Overview

• Phased: governance setup, asset inventory, risk assessment, controls, testing.
• Applies to banks, insurers, fintechs in Singapore; scalable by size.
• Requires board-approved strategy, independent assurance, no certification but audit evidence essential. (178 words)