The impact of new technologies like generative artificial intelligence on the third-party risk management landscape was among the points of discussion addressed at Compliance Week’s TPRM Summit in Atlanta.
Europe
Posted inEurope
Growing list of MOVEit hack victims shows damage control difficulties
More than 130 organizations are believed to have been impacted by the MOVEit hack, with millions of people’s data at risk. Experts opine on the struggles businesses face in containing exposure.
Posted inEurope
Experts: Pressure on compliance to begin assessing AI Act impact
Compliance functions are largely unprepared for the European Union’s AI Act, with many still unaware of what artificial intelligence their organizations are using or the risks the technology poses to their business, according to experts.
Posted inEurope
FATF flags Cameroon, Croatia, Vietnam on AML/CFT watchlist
The Financial Action Task Force added Cameroon, Croatia, and Vietnam as part of the latest updates to its so-called “grey list” of jurisdictions under increased monitoring for money laundering and terrorist and proliferation financing.
Posted inEthics & Culture
NAVEX report: Driven by cyber threats, infosec compliance top of mind
Compliance teams are taking more responsibility for issues related to information security and data privacy, motivated by increasing threats posed by data breaches and cyber intrusions, according to a new survey from NAVEX.
Posted inEurope
French DPA fines adtech firm Criteo $44M under GDPR
Adtech firm Criteo was assessed a penalty of €40 million (U.S. $44 million) for multiple alleged violations of the General Data Protection Regulation, including failing to verify it gained consent to process the data of European Union citizens.
Posted inEurope
OFAC orders Swedbank Latvia to pay $3.4M over Crimea sanctions violations
Swedbank Latvia agreed to pay more than $3.4 million to resolve apparent U.S. sanctions violations in the Crimea region of Ukraine, the Office of Foreign Assets Control announced.
Posted inEurope
Lawsuit: Ex-Grindr privacy chief alleges firing over red flags raised
The former chief privacy officer at Grindr is suing the company behind the LGBTQ dating app for wrongful termination regarding alleged privacy violations he raised that new management ignored.
Posted inEurope
As AI Act moves forward, concerns of undermined GDPR persist
The European Union wants to bolster tech innovation within the single market as artificial intelligence is predicted to catapult economic growth, but some have expressed fears AI use might conflict with levels of automatic protection expected under the General Data Protection Regulation.
Posted inEurope
Shades of SolarWinds in lessons from MOVEit hack
A ransomware attack affecting some of the U.K.’s largest corporations has highlighted once again how exposed organizations can be if the levels of cybersecurity used by their third parties are not as strong as expected.
