top of page

From update to action: the new standard for regulatory change management (The Demo Room #23)

  • Writer: Michael Lawrence
    Michael Lawrence
  • 8 hours ago
  • 6 min read
The Demo Room Episode 23: Front Cover Design Featuring Roseanne Spagnuolo from Vixio

Welcome to The Demo Room – your front-row seat to the future of RegTech, RiskTech, and AI innovation. 

In this series, we document our research interviews with the most forward-thinking vendors tackling the industry's biggest challenges. Each blog is built around a comprehensive product demo, providing clear insights into how these innovations address industry challenges.


On this occasion, we feature Vixio, a regulatory change management platform for firms operating across financial services, payments, digital assets, gambling and gaming.

Regulatory change management is a perpetual challenge, but access to information is no longer the bottleneck. Regulatory updates are publicly available and increasingly digital. The real difficulty is knowing which updates are material to the firm, what they demand in practice, who owns the response, and how the organisation demonstrates that it acted.


That challenge is intensifying. Firms are operating across more jurisdictions, products and licence types, each with its own regulatory calendar and expectations. At the same time, the volume of output from regulators has grown: more rules, more consultations, more thematic reviews and more enforcement signals.


The Global State of RegTech 2026 identified Compliance Management as a domain with relatively immature technology use. A significant majority of institutions lean on spreadsheets and siloed technology stacks to manage horizon scanning, obligation mapping, compliance gap analysis and remediation task management. 


Compliance teams are, in many ways, uniquely positioned. They sit at the intersection of regulatory intelligence and business operations, with visibility across the firm that few other functions can match. That creates a genuine opportunity to move from enforcer to informer; the function that tells the business what’s coming, what it means, and what to do next.


Realising that opportunity, though, requires infrastructure that can keep pace with the volume and complexity of today’s regulatory environment.


“Regulatory change management is no longer just a line item in the compliance budget. It’s critical infrastructure.”Roseanne Spagnuolo, Chief Research and Data Officer, Vixio


The Problem for Firms

A firm may know that a regulatory update has been published. The harder questions come next. Is it relevant? Is it actionable? Which products, licences, jurisdictions and policies are affected? Who owns the response? What decision was made? Can the firm prove that the right people reviewed it at the right time? Regulatory text is rarely self-executing, and the gap between knowing what the regulator has said and knowing what it means for a specific business model can be significant.


For firms operating in several jurisdictions, the challenge becomes more acute. The same theme can develop differently across markets. Payments, digital assets, consumer protection, AML, fraud, operational resilience and financial promotions can all evolve at different speeds. Some regimes are highly prescriptive. Others rely on principles.


Manual processes struggle with this at scale. Excel trackers, local inboxes and shared folders can work when the firm is small or the regulatory perimeter is narrow. They become fragile when the organisation expands into new markets, acquires another business, or adds new products.


Boards are also asking better questions. They want to know what is coming next, whether the firm is prepared, and whether existing controls are enough. The compliance function is being asked to provide foresight, not only status updates.


“Customers want to know where the puck is going, not where it is.”Roseanne Spagnuolo, Chief Research and Data Officer, Vixio


A Solution: Vixio's Regulatory Change Management Platform

Vixio brings regulatory intelligence and execution together. The platform is designed to help firms monitor change, interpret relevance, route work, manage obligations and create an evidence trail from source material through to business action.


1. Horizon scanning with relevance built in

Vixio monitors more than 8,000 regulatory authorities across around 200 jurisdictions. Users can filter by jurisdiction, authority, document type and area of interest, then create watchlists that reflect the firm’s actual regulatory perimeter.


Updates are classified as actionable, indicative or informative. This is a simple distinction, but it matters. Compliance teams need to know which items require immediate action, which need monitoring, and which can be read for awareness.


Regulatory deadlines are also surfaced through the platform, helping teams understand time sensitivity. Watchlists can trigger alerts daily, weekly, monthly or feed into the wider workflow.


The value is in reducing noise without losing coverage. Firms need broad visibility, but they also need a practical way to focus attention.


2. Analyst-led interpretation

Vixio’s heritage is research and analysis. That remains central to the product.


The platform includes analyst-led insights, jurisdictional analysis and forward-looking commentary. These are designed to explain what a regulatory development means, how it may affect different business models, and what firms should consider next.


The analyst layer is particularly important where regulation is unclear, principles-based or still developing. Consultations, speeches, enforcement actions and political signals can all matter before a final rule is published. Vixio’s analysts help connect those signals and give firms a more usable view.


This is also where Vixio’s “Ask the Analyst” capability adds value. Compliance teams can seek clarification and context from people who follow the relevant regulatory environment closely.


3. Structured country and requirements intelligence

Country reports give firms a jurisdictional view of the regulatory framework, recent developments, exemptions, relevant authorities and source materials. Requirements reports give a more activity-specific view, helping firms understand what applies when they offer a particular service in a particular market.


This supports common growth questions: can we launch here, what rules apply, what licence is needed, which obligations matter, and what needs to be built before the business can proceed?


The report builder then allows users to turn this structured intelligence into usable outputs for internal teams. Reports can be exported or moved into the workflow, depending on how the firm wants to use the information.


4. Obligations management and policy linkage

Vixio’s obligations library creates a structured record of what the firm needs to follow.


Users can extract obligation text from source documents, categorise it, assign risk, determine applicability and add it to a central library. This creates a source of truth that can be used across the organisation.


The platform is also moving further into obligation-to-policy linkage. Obligations can be connected to policies, procedures and controls, creating a clearer line from regulatory source to business implementation.


This is one of the more important parts of the product direction. Once obligations are linked to internal documents, the platform can help identify which policies or controls may need updating when regulatory source material changes. That creates a more predictive workflow, where the system helps identify work before it becomes a manual discovery exercise.


5. Workspace

Users can take relevant updates, add them to boards, triage them, assign work, set priorities, manage status and track progress. This helps firms create a repeatable operating rhythm rather than relying on individual follow-up.


The workflow also supports collaboration across compliance, legal, product, operations and other business teams. This is important because regulatory change rarely belongs to one function. A change may require policy updates, control changes, customer communications, product amendments or board reporting.


6. AI with human validation

Vixio uses AI to support speed, coverage and research, while keeping analyst oversight central.


The platform uses supervised machine learning through its SCANS technology to capture, collate, aggregate, normalise and surface relevant updates. VIQ, Vixio’s AI assistant, allows users to query Vixio’s regulatory dataset and receive summarised responses with source references.


This is a sensible use of AI in regulatory change management. AI can process volume, support search, summarise source material and help users get to relevant content faster. Human expertise remains essential for interpretation, judgement and confidence.


“The combination of human judgment and machine precision is often underestimated.”Roseanne Spagnuolo, Chief Research and Data Officer, Vixio


Vixio’s approach reflects the realities of the market. Compliance teams are interested in AI, but they are cautious where hallucination, inconsistency or weak source traceability could create regulatory risk.


Parker & Lawrence’s View

Vixio is well positioned in a category that is moving from content delivery to compliance execution. Many firms can access regulatory updates. Fewer can turn those updates into structured obligations, assigned tasks, board-ready reporting and a defensible record of action.


It is strongest for financial institutions and gambling firms operating across multiple jurisdictions and business lines, particularly where compliance teams need to support product launches, market entry, regulatory monitoring and ongoing change management..


Vixio gives compliance teams a stronger basis for acting as business partners. It helps them move from reactive monitoring toward forward-looking regulatory intelligence and controlled execution.

bottom of page