Compliance SR 11-7 GDPR SOC 2 FINRA / OCC HIPAA EU AI Act MiFID II DORA BSA / AML Basel III Dodd-Frank