French court calls out alleged deceptive net zero claims by TotalEnergies
Regulators in Europe are focused on punishing energy firms that make deceptive claims on net zero targets, as TotalEnergies recently discovered.
White paper: How Typological Regulations are Redefining Corporate Compliance
This report quantifies, analyzes, and visualizes the impact of typological regulations on compliance so that teams can more efficiently and effectively protect against non-obvious sources of regulatory risk.
Who is leading the fight against confidence scams, and who should?
Internet-enabled scams are drawing national attention, with authorities treating them as organized transnational crimes. The FBI says confidence schemes now make up a significant share of online fraud, prompting questions about how the private sector is responding.
Texas gas company found that its merger acquisition paid a cartel-connected entity
A Texas-based gas company has disclosed that a Mexican affiliate made payments to local government officials that may have benefited a cartel designated as a terrorist group by the U.S. government. Entanglement with cartels is an increasing risk for companies doing business in Mexico.
When stability fails: Why over-optimization creates organizational brittleness
Most organizations would say they value stability. Predictable operations, consistent output, and well-defined processes are generally considered marks of maturity. The assumption is simple: if a system can be made reliable, it becomes resilient.
Q&A with former FCPA Unit chief Charles Duross on the DOJ’s monitorship policy
Compliance Week recently interviewed Charles Duross, former Chief of the DOJ’s Fraud Section’s FCPA Unit, to talk about the Department of Justice’s recently revised monitorship policy.
Compliance should protect firms from AI-washing investigations and insurance claims
Insurance firms are warning that AI-washing could trigger a slew of cases against directors, and are adjusting their directors’ and officers’ liability premiums accordingly. With regulators cracking down on AI-washing, compliance could be a crucial line of defense and save companies on their insurance costs.
Compliance survey shows clawback policies and cooperation tools largely unused
Many companies have strong compliance policies to encourage cooperation with regulators and hold staff accountable, but these policies are rarely used, and cooperation often depends on cost and business benefit, according to a new survey of compliance professionals.
CPE Webcast: Corporate Compliance in Conflict Zones
What happens when business survival and corporate ambition collide with conflict and compliance obligations? This webcast takes a closer look at Compliance Week’s new case study, Inside a Dark Pact: A Case Study of Lafarge’s Terrorist Funding and Compliance Fallout in Syria.
Complying with the EU Data Act – What companies should know
Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.
The CFO, AI, and the New Compliance Frontier
As CFOs use AI to streamline operations, they face new compliance risks tied to accountability and algorithmic governance. CCOs must work with them to ensure transparency and oversight throughout adoption.
Extra-territorial rules: How to navigate global compliance complexity
Sanctions, tariffs, economic crime, big tech, data privacy, and environmental laws are expanding global compliance risks. Tougher penalties now reach deep into supply chains, making even small suppliers accountable to customers or regulators.
Employee use of ‘shadow AI’ poses significant risks for companies
Companies face increased risk of cyberattacks, data loss, and even regulatory action because employees are using unapproved “shadow AI” tools to help with work-related tasks.
CPE Webcast: TPRM - Best Practices for Calculating Inherent Risk
Join this webinar with ProcessUnity to hear expert advice and best practices on how to calculate inherent risk and put it to work for your program.
Shadow AI: Another element of TPRM
Companies may face significant financial and legal risks if they fail to vet suppliers and third parties over their use of unauthorized AI and how the technology may use and share their corporate data.
Beyond the Binder: Policy governance in practice
Most compliance professionals have faced it: a regulator or client requests a policy, and several slightly different “final” versions appear. The issue often stems from reactive, siloed work without a unified governance framework.
How food and beverage companies adjust to the throes of tariff woes
On-again-off-again tariffs, a down economy, and a long list of global supply chain disruptions are challenging U.S. food and beverage companies to adjust their supply chain operations in a variety of ways.
Risk-Based AML only works if the C-suite agrees what ‘risk’ means
Banks emphasize risk-based compliance in their AML programs, citing it to regulators and embedding it in policy, yet many institutions still handle risk very differently in practice.
Geopolitical risks among compliance concerns for metals, mining companies
Companies working in the metals and mining sectors face increased compliance checks due to efforts to clamp down on abuses in the supply chain, while “volatile” geopolitical changes make sourcing and transporting raw materials more difficult and expensive.
Top compliance challenges facing the food and beverage industry
New regulations, changing consumer demands, and global supply chain disruptions – from cost-of-goods inflation to tariffs to raw material shortages, and more – are just a few top challenges reshaping the operations of food and beverage industry today.
Study: Compliance managers must set rules in race to adopt AI agents and copilots
More than half of all compliance teams are “actively using” or “piloting” AI applications, according to a Moody’s report. While most are focusing on streamlining routine tasks, some are developing AI agents and asking vital questions about AI decision-making.
AI adoption without trust: A call for compliance professionals
Employees are adopting AI faster than companies can build policies, governance, and training. That gap creates compliance exposure in areas from data privacy to shadow IT to workplace equity.
CPE Webcast: How to Build Holistic Risk and Resilience Management
Risk, compliance, and business continuity teams often run in parallel, but what if they worked better together? As risks become more interconnected and the pressure to respond quickly grows, companies are realizing that a siloed approach doesn’t cut it anymore.
e-Book: Staying Ahead: Modern strategies for third-party risk in a disrupted world
This e-Book compiles expert insights and real-world examples, offering practical guidance for compliance professionals navigating todayʼs complex landscape.
CPE Webcast: Risky Business: Navigating Compliant Innovation Amid Deregulation
The compliance landscape has entered unprecedented territory, characterized by what industry experts describe as “deregulation on top of deregulation” – a dangerous departure from the traditional regulatory cycle that historically provided stability and clear guidance.
CPE Webcast: Banking Compliance in 2025: Key Trends and Future-Proofing Strategies
In addition to a loosening of traditional banking regulation and supervision in areas like capital requirements, stress testing and liquidity, U.S. banking regulators have indicated they will be more receptive to innovation than the previous administration, particularly in the use of Artificial Intelligence, and in digital assets.
CPE Webcast: No Longer Optional: The Future of AI in TPRM
Don’t miss this opportunity to prepare your organization for the future of TPRM and stay ahead with AI as your second-in-command.
Thanks to 'laser focus' on cartels, Trump admin creates new corporate risks in Mexico
The Trump administration’s designation of Mexican cartels as terrorist organizations in February has made doing business in Mexico riskier than ever before for corporations.
Federal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.
CPE Webcast: Compliance Under Pressure: M&A Risks and Ethical Safeguards
This webinar will explore how compliance professionals, legal teams, and executives can proactively identify, mitigate, and manage risks during the M&A lifecycle without compromising ethical standards.
Three TPRM myths worth busting
There are stories we tell ourselves in third-party risk management (TPRM) to make ourselves feel better about the corners we cut.
Supply chain disruptions caused by Republican policies should be managed
If you’re in third-party risk management, handling the latest disruptions brought on by wild gyrations in tariff rates and export control rules by Republican leadership ought to be child’s play.
Communication and relationships is increasingly critical for compliance teams
Compliance is increasingly in the spotlight as companies are tackling everything from artificial intelligence and other new technologies to risk management and mitigation. But it’s soft skills of communication and relationship building that are becoming the most critical tools for success.
ESG goes beyond politics: Vendor management, forced labor, sustainability
ESG is no longer in vogue. But its issues still are.
In a world filled with uncertainty, boards need to focus on connecting dots
Regulators and investors increasingly say boards of directors need more expertise to ensure they can respond to fast-changing politics, policy, and technology that threaten to undermine their businesses. In the U.K., government officials say boards need to think more about cyber. In the EU, they need to prepare for the ...
Google’s $500M compliance overhaul may fall short, amid antitrust fallout
Google parent Alphabet has struck a new agreement with shareholders, settling a shareholder lawsuit with a promise to ”completely revamp and rebuild its global compliance structure,” according to a new legal filing. The investment may not go far enough to reform Alphabet’s compliance failings, which are particularly under scrutiny following ...
TPRM has become the business continuity plan in turbulent times
Global supply chains are constantly in flux: crucial vendors could suddenly go bankrupt, fail to produce key components without warning, or even lose your firm’s data in a breach. The result has drawn ever more attention to third-party risk management as a critical element of many businesses.
COSO’s draft corporate governance framework provides roadmap to compliant business practices
Corporate governance is, all too often, handed down from generation to generation. Like a well-worn jacket, it works great—until it doesn’t. Typically, it is a crisis that forces companies to reassess their corporate governance framework, as gaps are filled and poor policies rewritten. But it doesn’t have to be that ...
CPE Webcast: Adapting to Global Regulatory Change and Supply Chain Disruption in 2025
Wondering how new approaches to age-old regulations affect ethical business practices across your extended enterprise? What about how tariffs may impact your supply chain integrity, and how to best adapt your organization to accelerated shifts in business practices?
Survey: Compliance, now at the leadership table, navigates an uncertain risk landscape
At a time when the Trump administration is rewriting many of the rules, the compliance function is being embraced as a strategic partner to the C-suite and board, Compliance Week’s 2024 “Inside the Mind of the CCO” survey shows. The new objective: risk-assess the implications of Trump’s confetti of executive ...
CPE Webcast: The Compliance Practitioner Challenge: Staying Ahead of AI Regulations
As AI presents new opportunities to drive insight and efficiency, it brings new challenges of risk mitigation and overall company protection.
Directors should be more accountable for failure, while also taking more risks, says U.K. regulator
Director accountability is back in the spotlight in the U.K., even as the government pushes for regulatory simplification to cut red tape and drive growth. This raises questions about how boards can be encouraged to take risks to grow their businesses while also being held more accountable for governance failings. ...
CPE Webcast: Slow Vendors, Changing Risks: The Compliance Customization Gap
A recent survey found that 66% of compliance leaders say their training programs are hard to customize quickly, and nearly half (46%) are being asked to cut training time.
CPE Webcast: Taking a data-first, questionnaire-second approach to TPRM
Join us for a live webcast to learn how the newest risk exchange models are eliminating 80 percent of questionnaire requests with data.
Survey highlights demand for quick, customizable, and cost-effective compliance training
Compliance training has become less expensive and more customizable to keep up with the constant rule changes, according to a new survey by microlearning training platform Ethena and Compliance Week.
Republican-led SEC abandons climate rule; Dem commissioner calls move ‘unlawful’
The Securities and Exchange Commission’s Republican leadership is abandoning the climate-related disclosure rule package passed last year by Democrats, hoping that the courts will kill regulations already on life support.
Navigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
e-Book: Tackling Third Party Risk In A Global World
TPRM has always been a tough subject, requiring regular monitoring and audits to be done right. But until recently, it was something companies chose to do.
Photo gallery: Ethics & Compliance Summit
Compliance Week’s Ethics and Compliance Summit, held March 19-20 in Boston, Mass., gathered legal, compliance, and risk professionals to share best practices and engage in discussions on timely topics, regulatory developments, and effective strategies to foster an ethical culture.
CCO who was ‘sole person controlling’ investment firm charged with recidivist concentration violations
An investment company and its founder, president, and chief compliance officer flagrantly kept violating mutual fund rules for multiple years after settling with the Securities and Exchange Commission, the SEC said in a complaint against the company.