The New York State Department of Financial Services issued guidance for small businesses attempting to comply with its cybersecurity regulations.
Third Party Risk
Posted inRisk Management
CW2024 panel: TPRM board buy-in earned through impact, activity
Identifying critical measures for third-party risk management has become vitally important as risk professionals face an uphill battle in fighting for resources, experts discussed at Compliance Week’s 2024 National Conference.
Posted inRisk Management
Report: Human error driving growing number of data breaches
Verizon’s annual data breach report shows trends in cybersecurity incidents, including more ransomware and extortion attacks last year.
Posted inRegulatory Enforcement
CFPB fines Chime $3.25M over account refund delays
The Consumer Financial Protection Bureau ordered Chime Financial to pay $3.25 million in penalties for allegedly delaying consumer refunds past its promised 14-day timeframe.
Posted inRisk Management
Federal banking regulators issue TPRM guidance for community banks
The Federal Deposit Insurance Corporation, Federal Reserve Board, and Office of the Comptroller of the Currency combined to provide guidance on third-party risk management focused on the unique risks faced by community banks in their third-party relationships.
Posted inData Privacy
FCC finalizes $196M in fines against telecoms for sharing location data
The Federal Communications Commission fined telecommunications giants T-Mobile, Sprint, AT&T, and Verizon a total of approximately $196 million for allegedly selling customers’ location data to third parties without consent.
Posted inRegulatory Enforcement
Williams-Sonoma fined record $3.2M over admitted ‘Made in USA’ order violations
Kitchen and home retail company Williams-Sonoma agreed to pay nearly $3.2 million for failing to comply with a 2020 administrative order by the Federal Trade Commission prohibiting its marketing of imported goods as made in the United States.
Provided by
Tips for TPRM, supply chain due diligence
Implementing a risk-based approach to third-party due diligence frees up compliance resources to be deployed efficiently and helps organizations meet the expectations of regulators.
Posted inAccounting & Auditing
Report: Poor awareness of supply chain disclosure regs leaving firms exposed
Compliance failures in the supply chain are hampering organizations’ efforts to implement environmental, social, and governance initiatives and meet disclosure requirements, according to a new report by U.K. law firm Burges Salmon.
Provided by
Automating third-party management workflows: 5 ways to drive alignment across teams
Is your third-party management process bogged down by manual workflows and misaligned teams? It’s time to say goodbye to inefficiency and hello to streamlined processes (if only it were that simple).