---
title: "Regulatory risk in the boardroom: how intelligence becomes resilience "
id: "76351"
type: "cpt_resources"
slug: "regulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience"
published_at: "2026-07-01T07:29:08+00:00"
modified_at: "2026-07-15T11:45:19+00:00"
url: "https://www.enhesa.com/resources/article/regulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience/"
markdown_url: "https://www.enhesa.com/resources/article/regulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience.md"
excerpt: "A summary of a recent Enhesa executive panel discussion, Beyond Compliance: How to Turn Regulatory Risk into Business Resilience."
taxonomy_language:
  - "English"
taxonomy_resources_type:
  - "Article"
taxonomy_resources_topic:
  - "Safety Management"
taxonomy_resources_industry:
  - "Chemicals"
taxonomy_resources_region:
  - "Africa"
  - "Asia Pacific"
  - "Europe"
  - "North America"
  - "South America"
taxonomy_resources_category:
  - "Chemical Intelligence"
  - "Corporate Sustainability"
  - "EHS Intelligence"
  - "Product Intelligence"
---

# Regulatory risk in the boardroom: how intelligence becomes resilience

Why leadership teams are starting to treat regulatory intelligence as a question of capital efficiency — and how the right governance turns compliance from an obligation into a competitive advantage.

[Back to overview](https://www.enhesa.com/resources/)

[https://twitter.com/share?url=http://https%3A%2F%2Fwww.enhesa.com%2Fresources%2Farticle%2Fregulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience%2F](https://twitter.com/share?url=http://https%3A%2F%2Fwww.enhesa.com%2Fresources%2Farticle%2Fregulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience%2F)
[https://www.linkedin.com/shareArticle?mini=true&url=http://https%3A%2F%2Fwww.enhesa.com%2Fresources%2Farticle%2Fregulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience%2F](https://www.linkedin.com/shareArticle?mini=true&url=http://https%3A%2F%2Fwww.enhesa.com%2Fresources%2Farticle%2Fregulatory-risk-in-the-boardroom-how-intelligence-becomes-resilience%2F)

Published on 01 July 2026

### Quick Summary

- Boards are no longer satisfied with compliance status updates — they now demand data-driven regulatory governance that eliminates surprises and holds up to scrutiny from investors, regulators, and acquirers.
- Unmanaged regulatory risk rarely shows up as a fine first — it quietly erodes value through higher insurance premiums, weaker M&A valuations, and capital decisions made without the right information.
- Treating regulatory intelligence as a source of business confidence rather than a back-office cost produces hard, measurable returns: lower premiums, faster due diligence, stronger investor trust, and the foresight to act before competitors do.

1. What does a mature compliance operating model actually look like in practice?
2. How does unmanaged regulatory risk quietly damage company value beyond fines and penalties?
3. What is the difference between compliance reporting and regulatory intelligence — and why does it matter to leadership?

The conversation about regulatory compliance has moved. What was once a back‑office obligation, handled function by function and reported after the fact, is now a boardroom concern tied directly to enterprise value. As regulation grows in volume and fragments across jurisdictions, the organizations pulling ahead are the ones treating regulatory intelligence not as a cost to manage, but as a source of confidence, foresight, and strategic advantage.

In a recent Enhesa executive panel discussion, Beyond Compliance: How to Turn Regulatory Risk into Business Resilience, three leaders explored what that shift looks like in practice. The panel featured Peter Schramme, Chief Executive Officer; Mary Foley, Expert Services Strategy Director; and Laurent Marcelis, Chief Financial Officer — hosted by Paul Olagnier, Expert Services Director at Enhesa. Together they examined what compliance risk means for the boardroom, where leadership teams get caught out, and how good governance turns regulatory complexity into resilience.

## How the boardroom risk conversation has changed

Boards exist to represent shareholders, and they carry the highest legal standard of care. That fiduciary responsibility shapes everything they ask for — and, as Schramme put it, it means boards above all dislike being surprised, negative surprises most of all. A board functions best when reliability, predictability, and rigor are part of day‑to‑day operations.

Applied to regulatory risk, that translates into a few pointed questions. Is what we do defensible, risk‑weighted, and decision‑ready? Do we actually know what is coming our way? And how do we manage the growing complexity of stakeholders — investors, customers, suppliers, NGOs, regulators, and the internal organization — all at once? The board, in short, is asking for a governance structure that avoids surprises, avoids both over‑ and under‑compliance, and can be defended to every stakeholder.

Less white noise, much more insight, foresight, and decision‑grade knowledge and understanding.

Peter Schramme

CEOEnhesa

The biggest change Schramme has observed is the board’s appetite for evidence. Where boards once accepted reassurance, they now expect data‑driven proof of exposure and readiness. The explicit request is for a battle‑tested risk and compliance governance approach.

## Where leadership teams get caught out

Drawing on her work with compliance and sustainability leaders at some of the world’s largest companies, Foley pointed to a recurring problem: leaders often operate with more confidence than the underlying data warrants. The intelligence reaching the top is frequently filtered, delayed, or incomplete — not because anyone is hiding anything, but because the systems connecting regulatory reality at the site and jurisdictional level to executive decision‑making are weak or missing entirely.

The culprit is the silo. EHS may sit in one data stream — sometimes split further into environment, health, and safety — while sustainability sits in another. Without a mechanism to integrate those internal streams and align them with strategic objectives, material risk can stay invisible. And invisible risk is unpriced, unmanaged, and unplanned for, often surfacing for the first time as a crisis, an incident, a cost, or a reputational event. The corporate level does not need every jurisdictional nuance, Foley noted, but it does need to understand where the streams converge and what that means for the business — today and over the horizon.

## The hidden cost of unmanaged regulatory risk

Marcelis brought the financial lens. The most visible costs of non‑compliance — fines, and the remediation that typically runs to a multiple of the fine itself — are real, but in his view they are not what matters most. The deeper exposure is the cost almost no one is watching.

Unmanaged regulatory risk shows up as insurance loading, where insurers price in a higher premium for risk they judge to be poorly controlled. It shows up in M&A, where undisclosed regulatory exposure erodes valuation. And most consequentially, it shows up in capital allocation: when investment decisions are made without the right regulatory information, companies make the wrong calls. Getting a major decision wrong costs far more than any visible fine — and Marcelis has seen boards get this wrong precisely because the right compliance information was not on the table when key decisions were made.

## Four steps to a mature compliance operating model

Asked what leadership teams that have genuinely made the shift do differently, Schramme described a down‑to‑earth operating model built on four principles:

**A reliable lay of the land.**Wherever you operate or sell, you need a timely, quality source of truth on the regulatory landscape you must comply with. Without it, you are exposed no matter how good your internal processes are.

**Expert‑supported applicability.**Of everything out there, what is actually relevant to your facilities, plants, products, chemicals, and legal entities? Without a robust applicability assessment, organizations over‑regulate themselves — creating cost, overhead, and burden on scarce internal resources.

**Materiality.**Among what applies, what matters most? A materiality assessment improves the balance of risk versus effort — a Pareto logic in which the first 20% of effort can address roughly 80% of the risk.

**Preparedness.**Looking over the horizon — understanding what is coming, its applicability, its materiality, and its likelihood of taking effect — gives the organization time to anticipate and prepare, so change arrives without urgency or surprise.

Combined into a single operating model, these four steps create a governance approach that multiple functions can trust and build on, striking the optimal balance between resource allocation and risk management.

## From compliance reporting to regulatory intelligence

For that model to work, the right intelligence has to reach the right people, in the right form, at the right time. Foley drew a sharp line between information and intelligence. Raw data — facts and figures — is the foundation, but intelligence is what you get when you structure, analyze, and interpret that data until it becomes actionable. Intelligence is embedded throughout the strategic planning cycle; compliance reporting is presented after the fact.

Breaking down internal silos and understanding the relationships between functions and their data is, she argued, a vital and often underestimated component. The strongest organizations treat their intelligence flow as a living, dynamic entity, and use it to answer forward‑looking questions: What is coming? What does it mean for our markets and our model? Are we positioned to act before our competitors? When compliance is still framed as a status report rather than business intelligence, the business is treating it as revenue protection instead of strategic value creation.

Organizations with genuine resilience built in aren’t waiting for investors, customers or regulators to ask the questions. They’re proactively bringing the intelligence to those conversations first — and that changes the dynamic entirely, from defending a position to shaping one.

Mary Foley

Expert Services Strategy DirectorEnhesa

## Making the financial case: a return on clarity

Marcelis reframed the investment question entirely. Finance professionals are wired to talk about cost, but compliance, he argued, is better understood through capital efficiency. The relevant questions are: what unpriced risk are we carrying? Where is regulatory uncertainty delaying investment decisions? Are we over‑insured because we don’t understand our own risk? Seen that way, investment in compliance intelligence is not a cost but a return on clarity — enabling faster, better decisions, fewer surprises, and a stronger position with investors and acquirers.

I don’t see it as a cost. I would rather talk about it as a return on clarity.

Laurent Marcelis

CFOEnhesa

The returns, he stressed, are hard and measurable rather than soft. A regulatory house in order translates into lower insurance premiums, faster due diligence and fewer valuation haircuts in M&A, and greater trust in capital markets — where the conversation shifts from reassurance to resilience. Marcelis pointed to independent research from Boston Consulting Group indicating that the right investment can raise compliance rates from around 90% toward 99–99.5%, and improve EHS program effectiveness by roughly 15 to 20% — material gains that can be calculated and measured.

## What resilience makes possible

The ultimate payback, in Schramme’s view, is business confidence: confidence in how you operate, confidence in what is coming your way, confidence in pursuing new potential — new markets, segments, acquisitions, product lines, production methods — and confidence in responding to any inquiry from any stakeholder, whether an investor, regulator, journalist, supplier, customer, lawyer, or auditor. Organizational confidence, he suggested, produces the same outcomes as personal confidence — more energy and stronger results, less friction, and a culture where creativity, control, and trust can take hold.

Foley connected that confidence back to ESG and stakeholder trust. Compliance intelligence that is structured, verifiable, timely, and — above all — material can be tied directly to a company’s ESG metrics and reporting, giving investors and stakeholders confidence and raising proactive engagement to a higher level. When an incident occurs or a regulatory event hits a sector, organizations with foresight are already positioned while reactive ones are still scrambling to understand and respond. In an era of regulatory uncertainty, that foresight protects reputation in the moments that matter most.

## The hardest problem: corporate sustainability

Pressed for a single action CEOs could take this quarter, Schramme highlighted the part of the regulatory landscape that is genuinely hard — the obligations no single function owns. EHS, product, and chemical compliance each have a natural home. Corporate sustainability does not. It applies to the company and its entire value chain, everywhere it does business, even without a physical or legal presence, and accountability is shared across legal, HR, procurement, operations, and supply chain. His suggested first step: understand how corporate sustainability is actually handled in your own organization, and which hidden costs and risks are attached to it.

## Three takeaways

1. **The risk picture at the top has changed.**Boards are no longer asking for compliance status; they want risk and compliance governance grounded in reliable data.
2. **The shift to resilience is a governance change.**Regulatory intelligence has to reach leadership in a form they can act on — structured, material, and forward‑looking.
3. **The return is real and measurable.**Resilience pays back in speed, credibility, and competitive position

## Go deeper

This discussion builds on the guide written by Mary Foley, From Risk to Resilience: A Guide for Executive Business Leaders, part of Enhesa’s series Navigating risk and compliance in an age of uncertainty. [Read the guide](https://info.enhesa.com/hubfs/Enhesa_guide_From-risk-to-resilience-2025.pdf)
.

Enhesa helps the world’s largest businesses turn regulatory complexity into timely intelligence and foresight — combining a global team of experts with regulatory data and market‑leading AI across EHS, product, chemical, and corporate sustainability compliance.

[Discover how Enhesa can help your organization](https://www.enhesa.com/)
