Risk Management

GARTNER RESEARCH

Unsettled Regulatory and Legal Environment Tops Emerging Risks

Survey of 266 Senior Enterprise Risk Executives Reveals Shifts in Top Five Emerging Risks

Stamford, Conn.

|

April 8, 2025

Concerns regarding the unsettled regulatory and legal environment moved into the top rank of emerging risks for the first quarter of 2025, according to a Gartner, Inc. survey of enterprise risk leaders.

The survey of 266 senior risk and assurance executives – taken in the first quarter of 2025 – revealed that the unsettled regulatory and legal environment, which is marked by increasing compliance complexity and costs due to regulatory authority changes, moved from the third most cited spot in 3Q24 and 4Q24 to rank as the most cited in 1Q25.

Figure 1: Top Emerging Risks of Q1 2025

Risk visualization chart will be implemented here

Source: Gartner (April 2025)

"The global political arena is seeing transformative shifts, driven by elections that have ushered new governments into power across key economies, making the issue one that executives want to better understand and address before they face real consequences," said Gamika Takkar, Director, Research, Key Initiative Leader for the Gartner Risk & Audit Practice.

Root Causes of the Unsettled Regulatory and Legal Environment

In addition to the unsettled regulatory and legal environment after the U.S. election, Europe and other regions are preparing for consequential elections that could also reshape regulatory landscapes. These political transitions carry the potential to redefine compliance frameworks, posing challenges for businesses striving to adapt to new legal realities.

Adding to the complexity is the divergent approach to artificial intelligence (AI) regulation across regions. While some governments champion AI innovation through flexible regulatory measures, others intensify scrutiny, complicating the compliance landscape for companies operating globally. This regulatory tug-of-war leaves businesses grappling with the challenge of aligning their AI strategies with disparate legal requirements.

Potential Consequences

The consequences of an unsettled regulatory and legal environment affect every aspect of business operations. As new administrations take the helm, the focus on regulatory scrutiny and enforcement can shift dramatically. In certain jurisdictions, rules that were once rigorously enforced may fall by the wayside, leaving businesses in a state of flux as they attempt to anticipate and respond to these changes.

The financial burden of compliance is also evolving as different standards across borders reshape the cost landscape. Companies may be compelled to hire specialized staff or adapt their operations to adhere to varying regulations. This financial strain can impact profitability, forcing businesses to reevaluate their strategies and resource allocation in the face of mounting compliance costs.

Assessing Risk Exposure and Navigating Policy Uncertainty

To effectively navigate these challenges, organizations should assess their risk exposure in four critical policy areas:

  1. Trade, tariffs, and supply chain disruptions:

    Companies must prepare for critical input shortages, retaliatory tariffs, shifts in trade routes, increased production costs, capital investment uncertainty, exchange rate volatility, and lower consumer demand.

  2. Regulatory and legal volatility:

    Rapid changes in industry-specific regulations, uncertain legal and compliance costs, shifting tax policy, changes in federal spending, and evolving AI regulation require vigilant monitoring and adaptation.

  3. Shifting geopolitical landscape:

    Reduced government spending on foreign aid, employee safety concerns, business continuity challenges, and critical shipping lane disruptions necessitate strategic planning and risk mitigation efforts.

  4. Immigration and workforce changes:

    Shifting talent availability, productivity losses, weakened critical expertise, labor cost uncertainty, and legal and compliance changes demand agile workforce strategies.

"Businesses can better position themselves to adapt to these emerging threats by prioritizing potential disruptions and shifting resources to mitigate risks," said Takkar.

Additional Resources

Gartner clients can access the study at 1Q25 Emerging Risk Report.

Nonclients can read: Top Emerging Risk Trends Report.

About the Gartner Enterprise Risk, Audit & Compliance Conference

Taking place on September 8-9, 2025 in Grapevine, Texas, the Gartner Enterprise Risk, Audit & Compliance Conference will cover the challenges mission-critical to enterprise risk, audit and compliance executives, across six topic areas: Third party risk management; Business risk ownership; Governance, risk and compliance tool; Compliance program effectiveness; Digital audit function; And emerging risk landscape. Follow news and updates from the conferences on X using the hashtag #GartnerLegal.

About Gartner for Legal, Risk & Compliance Leaders

Gartner for Legal, Risk and Compliance Leaders provides expert guidance and tools to help leaders across legal, risk, audit and compliance departments more effectively manage an increasingly complex risk landscape and build next-generation functions. Additional information is available at gartner.com/en/audit-risk and gartner.com/en/legal-compliance. Follow news and updates on LinkedIn and X. Visit the Gartner Legal and Compliance Newsroom for more information and insights.

Press Contact: Meghan Rimol

Gartner Communications

pr@gartner.com

Back to Risk Management