U.K. competition regulator ‘very likely’ to use new enforcement powers despite government’s pro-growth agenda
New powers granted to the U.K.’s main competition watchdog will result in greater scrutiny, tougher enforcement, and a stark warning for companies to review their sales and marketing promotions—especially since some practices have been pushed firmly into the spotlight thanks to legislation that came into effect last year.
From enforcer to coach: Engineering compliance that happens at speed
New Gartner research reveals why traditional risk management is failing to keep pace with modern risks, and outlines how compliance leaders must enable organizational risk owners to build an instinctive Risk Reflex.
Leveraging COSO to mitigate AI risk: A step-by-step guide
AI elevates compliance, or exposes it. The technology presents compliance leaders and lawyers with an extraordinary opportunity to elevate their roles, as well as an equally extraordinary risk of accountability when AI fails, misleads, discriminates, hallucinates, or generates unreliable outputs.
Does attorney-client privilege extend to exchanges with AI platforms? U.S. courts offer mixed messages
Federal court judges in New York and Michigan have offered split rulings on whether AI prompts seeking information from AI platforms are subject to the attorney-client privilege.
An appreciation of CW’s data and research journalist, Aly McDevitt
One of the best things about writing for Compliance Week is reading the fabulous work by my colleagues. For me, CW data and research journalist Aly McDevitt has always stood out as someone whose work in reporting on and writing the Compliance Week case studies is work I have greatly ...
The AI On-Ramp: How compliance can prepare to implement AI
In 2026, many compliance officers are hearing the same line in more and more executive leadership team meetings: “We want AI implemented this year.” The phrase sounds reassuring, as if time itself will do the work. It will not.
Compliance main complaint raised by whistleblowers to U.K. financial regulator
More complaints about compliance are reported to the U.K.’s financial services watchdog than any other kind of potential misconduct, and even if few of them result in investigation or censure, experts believe such reports help inform future supervision and enforcement.
Sanctions enforcement set to increase, but gaps and inconsistency create compliance risks
Geopolitical volatility is causing rapidly changing sanctions regimes, but diverging rules in different jurisdictions create enforcement gaps that are exploited by sanctioned individuals and entities – and the routes used to evade sanctions are constantly developing.
If financial services firms don’t want more AI rules, comply with existing regs, experts warn
The U.K.’s financial regulators have long maintained that AI use by banks, insurers, and other financial services firms is already regulated under existing rules, but such assurances are increasingly being questioned.
Rethinking war risk in an era of persistent conflict
For many organizations, “war risk” still sounds like a niche concern, something reserved for defense contractors, energy companies, or humanitarian organizations operating near active conflict. Over the past several years, that assumption has quietly eroded, particularly for the insurance industry.
European regulators fine banks for compliance failures and warn more investigations will follow
Crédit Agricole and J.P. Morgan were among financial institutions that found themselves in the cross-hairs of the European Central Bank for faulty risk assessments and risk reporting and failing to protect consumers from fraud risks. All of those companies fined also missed compliance deadlines.
When AI acts: The compliance challenge of agentic systems
Artificial intelligence is no longer limited to generating insights or supporting analysis. With every passing day, AI systems are being designed to initiate actions, trigger workflows, and influence outcomes with minimal human intervention.
A snapshot of the state of financial crime in the United States
Financial crime in the U.S. isn’t just evolving; it is accelerating faster than most institutions can adapt.
New EU rules will force companies to come clean on pay
New rules that will be introduced this June will require companies based in the European Union (EU) to explain why some workers are paid more money for the same job and remedy any “unjustified” discrepancies.
Experts urge stronger compliance involvement to mitigate AI liability
Companies look set to increase their spend on AI technologies during 2026, but not every investment is likely to pay off. In fact, most appear to offer little return quickly.
New York governor’s veto narrows scope of New York LLC Transparency Act
Certain non-U.S. LLCs that were formed under the law of a foreign country and authorized to do business in New York State must prepare now to ensure compliance with new beneficial ownership information disclosure requirements, or potentially face hefty penalties.
CPE Webcast: The State of Third-Party Risk Assessments 2026
In this Compliance Week webinar, we’ll explore the most compelling findings from the report, based on independent global research conducted in collaboration with the Ponemon Institute and informed by responses from more than 1,400 third-party risk leaders and practitioners.
Start considering contracts as part of your compliance infrastructure
For many compliance teams, 2025 marked an inflection point: A familiar problem in an unfamiliar form, significant regulatory exposure without settled rules, benchmarks, or enforcement patterns.
Q&A with Norm Ashkenas, CCO at Robinhood, on compliance challenges, opportunities and being a strategic adviser
Chief among Norm Ashkenas’ priorities is positioning compliance as a strategic adviser, supporting those leading this global expansion in a complex financial services world. He stresses that compliance puts a huge effort into ensuring that it is not seen as a back-office function.
Prada cleans up supply chain with zero tolerance for compliance failings
Luxury fashion brand Prada has terminated contracts with over 200 suppliers in the past five years after a focused “zero tolerance” supply chain audit aimed at identifying compliance failings.
Five questions business leaders should be asking in 2026 to manage transformation risk
Working with clients in various sectors over the past year, one thing is clear: Transformation is bigger, faster, and more interconnected. Tech, talent, regulation, and operations—it’s hitting at once.
Experts warn of increased global AML risks as criminals seek to launder Venezuelan money
The U.S. action to remove President Nicolás Maduro of Venezuela and reopen access to the country’s oil reserves will have a significant impact on geopolitics and organized crime activities – creating new challenges for global compliance teams.
The illusion of control: How shrinking teams and AI are redefining cyber risk
Over recent years, cybersecurity executives have been tasked with an almost impossible Challenge: reduce headcount, accelerate transformation, integrate artificial intelligence, meet regulatory obligations, and still maintain resilience.
National Fraud Enforcement Division: A dangerous escalation of compliance risk
Chief compliance officers and general counsel, beware: The Trump administration’s merging of its whole-of-government enforcement approach with its political agenda forewarns of escalating compliance risk on a national scale.
Oil and gas executives mull the real costs of Venezuelan oil
U.S. oil and gas companies strong-armed into participating in the nationalization of Venezuela’s oil industry decades ago now face government pressure of the opposite kind: Invest billions into rebuilding a dilapidated oil and gas infrastructure for a high-risk country that still owes billions in unsettled debts.
Teaching the business to speak risk
Compliance professionals understand the value of risk assessments. We conduct them annually, map risks to controls, and present heat maps to the board. But there is a strategic opportunity that many compliance programs overlook: Teaching the business itself to think in the language of risk.
Six AI questions compliance officers must answer in 2026
As artificial intelligence reshapes business, compliance teams face new questions about risk and oversight. These are the key issues compliance professionals should be asking as they evaluate their programs heading into 2026.
Nominations closed for Compliance Week’s 2026 “Excellence in Compliance Awards”
Nominations for the 2026 Excellence in Compliance Awards are no longer being accepted. Look for finalists to be announced later in March!
How banks are responsibly embedding machine learning and GenAI into AML surveillance
As financial crime grows in scale, speed, and sophistication, banks are increasingly turning to artificial intelligence, machine learning, and generative AI to strengthen anti-money laundering and surveillance programs.
Experts outline core skills compliance teams need to develop in 2026
Compliance teams will face a range of ongoing challenges in the coming year, as well as greater demands from boards and management for better, wider, and more real-time assurance on an increasing range of risk topics.
How to identify and mitigate risks posed by Foreign Terrorist Organizations
Since Inauguration Day on Jan. 20, 2025, the Trump Administration has made it a priority to expand the list of designated Foreign Terrorist Organizations.
CPE Webcast: Hot Topics in Risk and Compliance: AI, Analytics, and Emerging Audit Technologies
Join experts from KPMG, Cisco, and Workiva as they explore how audit, accounting, and finance professionals can leverage a technology mix of data analytics, gen AI, and other tools to ramp up efficiency and strengthen control effectiveness.
Former Credit Suisse compliance officer charged with money laundering
A compliance officer is facing charges for laundering $7 million in a complex legal case in Switzerland. Swiss prosecutors have charged Credit Suisse, and one of its former employees, with failing to maintain adequate controls.
Write supply chain resilience into the contract
The only thing constant is change. Shouldn’t we be ready for that in our contracts?
The AI audit burden: Why ‘Explainable AI’ is the key
AI decisions are only defensible when the reasoning behind them is visible, traceable, and auditable. Explainable AI delivers that visibility, turning black-box outputs into documented logic that compliance officers can stand behind when regulators, auditors, or stakeholders demand answers.
French court calls out alleged deceptive net zero claims by TotalEnergies
Regulators in Europe are focused on punishing energy firms that make deceptive claims on net zero targets, as TotalEnergies recently discovered.
White paper: How Typological Regulations are Redefining Corporate Compliance
This report quantifies, analyzes, and visualizes the impact of typological regulations on compliance so that teams can more efficiently and effectively protect against non-obvious sources of regulatory risk.
Who is leading the fight against confidence scams, and who should?
Internet-enabled scams are drawing national attention, with authorities treating them as organized transnational crimes. The FBI says confidence schemes now make up a significant share of online fraud, prompting questions about how the private sector is responding.
Texas gas company found that its merger acquisition paid a cartel-connected entity
A Texas-based gas company has disclosed that a Mexican affiliate made payments to local government officials that may have benefited a cartel designated as a terrorist group by the U.S. government. Entanglement with cartels is an increasing risk for companies doing business in Mexico.
When stability fails: Why over-optimization creates organizational brittleness
Most organizations would say they value stability. Predictable operations, consistent output, and well-defined processes are generally considered marks of maturity. The assumption is simple: if a system can be made reliable, it becomes resilient.
Q&A with former FCPA Unit chief Charles Duross on the DOJ’s monitorship policy
Compliance Week recently interviewed Charles Duross, former Chief of the DOJ’s Fraud Section’s FCPA Unit, to talk about the Department of Justice’s recently revised monitorship policy.
Compliance should protect firms from AI-washing investigations and insurance claims
Insurance firms are warning that AI-washing could trigger a slew of cases against directors, and are adjusting their directors’ and officers’ liability premiums accordingly. With regulators cracking down on AI-washing, compliance could be a crucial line of defense and save companies on their insurance costs.
Compliance survey shows clawback policies and cooperation tools largely unused
Many companies have strong compliance policies to encourage cooperation with regulators and hold staff accountable, but these policies are rarely used, and cooperation often depends on cost and business benefit, according to a new survey of compliance professionals.
CPE Webcast: Corporate Compliance in Conflict Zones
What happens when business survival and corporate ambition collide with conflict and compliance obligations? This webcast takes a closer look at Compliance Week’s new case study, Inside a Dark Pact: A Case Study of Lafarge’s Terrorist Funding and Compliance Fallout in Syria.
Complying with the EU Data Act – What companies should know
Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.
The CFO, AI, and the New Compliance Frontier
As CFOs use AI to streamline operations, they face new compliance risks tied to accountability and algorithmic governance. CCOs must work with them to ensure transparency and oversight throughout adoption.
Extra-territorial rules: How to navigate global compliance complexity
Sanctions, tariffs, economic crime, big tech, data privacy, and environmental laws are expanding global compliance risks. Tougher penalties now reach deep into supply chains, making even small suppliers accountable to customers or regulators.
Employee use of ‘shadow AI’ poses significant risks for companies
Companies face increased risk of cyberattacks, data loss, and even regulatory action because employees are using unapproved “shadow AI” tools to help with work-related tasks.
CPE Webcast: TPRM - Best Practices for Calculating Inherent Risk
Join this webinar with ProcessUnity to hear expert advice and best practices on how to calculate inherent risk and put it to work for your program.
Shadow AI: Another element of TPRM
Companies may face significant financial and legal risks if they fail to vet suppliers and third parties over their use of unauthorized AI and how the technology may use and share their corporate data.