Companies face increased risk of cyberattacks, data loss, and even regulatory action because employees are using unapproved “shadow AI” tools to help with work-related tasks.
Neil Hodge
Neil Hodge is a freelance business journalist and photographer based in Nottingham, United Kingdom. He writes on insurance and risk management, corporate governance, internal audit, compliance, and legal issues for a wide range of publications in the United Kingdom and United States.
Posted inEurope
AMLA: What difference will the agency make in the EU’s fight against moneylaundering?
Europe’s massive financial sector has become a magnet for illicit money flowing through its banks and markets. A new EU agency will be taking the problem head-on to fight against money laundering.
Posted inRisk Management
Shadow AI: Another element of TPRM
Companies may face significant financial and legal risks if they fail to vet suppliers and third parties over their use of unauthorized AI and how the technology may use and share their corporate data.
Posted inFrom the Archive
Tough reporting rules makes compliance key issue for chemicals industries
Wide-ranging and overlapping regulations across multiple jurisdictions present potentially massive compliance headaches for companies working in the chemicals industry, especially as regulators increasingly focus on environmental reporting linked to the lifecycle of some products.
Posted inEthics & Culture
Employee faith in whistleblowing programs wanes when companies act selectively
Whistleblowing hotlines are rightly championed as valuable tools for employees and even third parties to raise concerns about corporate conduct. But it seems some complaints may be acted upon more keenly than others, particularly if blame can be pinned to one individual and any potential fallout can be ring-fenced.
Posted inFinancial Services
U.K. enforcement appetite over off-channel comms grows as U.S. wanes
The U.K’.s financial regulator has given a strong indication that financial firms’ use of unauthorized devices and apps is under scrutiny and that policies around off-channel communications need to be tightened up.
Posted inRisk Management
Geopolitical risks among compliance concerns for metals, mining companies
Companies working in the metals and mining sectors face increased compliance checks due to efforts to clamp down on abuses in the supply chain, while “volatile” geopolitical changes make sourcing and transporting raw materials more difficult and expensive.
Posted inTechnology
U.K. to introduce mandatory ransomware reporting, raising risk of ‘box-ticking’ compliance
The U.K. will require companies to report ransomware payments, but experts warn this could lead to “box-tick” compliance rather than real cyber-resiliency, since it’s cheaper.
Posted inEurope
EU targets crypto, fintech firms in push to tackle money laundering
Europe’s banking regulator warns that weak compliance at fintech, regtech, and crypto firms may let money laundering and terrorist financing risks slip through. The EBA also found EU regulators’ approaches are often inconsistent and unclear.
Posted inRegulatory Enforcement
Employees may fail to report fraud unless U.K. whistleblower protection is beefed up
In September, the U.K. will enforce its third “failure to prevent” offense under sweeping anti-corporate crime laws, but experts question whether it will actually change corporate behavior or embolden whistleblowers.
