The CBB may grant exemptions from specific requirements of technology governance and cyber security. A licensee seeking exemption from specific requirements must provide in writing, to the satisfaction of the CBB, that the nature, scale and complexity of their business does not require such technology governance and cyber security measures and in absence of such measures there will be no risk of violation of applicable laws, including the CBB Law, its regulations, resolutions or directives (including these rules) or risks associated with the integrity of the market and/or interest of clients.