SEC dismisses SolarWinds case tied to 2020 cyberattack
The dismissal of charges against SolarWinds for alleged cybersecurity lapses related to a 2020 Russian cyberattack in 2020 are the latest in a continuing pattern of leniency for corporations by the Trump administration.
Rapid regulatory change requires investment in compliance processes in financial services firms
Geopolitical instability and a general focus on increasing growth and productivity by governments worldwide are causing a slew of regulatory changes in the financial services sector. But most firms are failing to identify potential compliance changes early enough to make meaningful decisions.
The rise of the AI compliance officer
As AI reshapes business operations and regulators move quickly, companies increasingly need a dedicated AI compliance officer to ensure ethical, transparent, and accountable deployment.
U.K. outlines AI sandbox plan as regulators weigh compliance risks
The U.K. has set out a new blueprint for AI regulation, which aims to slash bureaucracy and ramp up the safe adoption of new and emerging technology to unlock potential and boost investment.
Dec 9 | Driving Success Through Effective Change Management
Join us as we discuss how structured change management accelerates digital initiatives and ensures long-term success. In this session, we’ll explore proven strategies to enhance alignment, reduce resistance, and enable successful transformation.
Compliance should protect firms from AI-washing investigations and insurance claims
Insurance firms are warning that AI-washing could trigger a slew of cases against directors, and are adjusting their directors’ and officers’ liability premiums accordingly. With regulators cracking down on AI-washing, compliance could be a crucial line of defense and save companies on their insurance costs.
Agentic AI and the policy blind spot: Why security can’t wait
The current AI policy and regulation landscape is still emerging globally. While some regulations and standards exist, governments, industry, and security leaders have critical gaps to close, especially around agentic artificial intelligence.
CFPB ends probe into Meta’s financial advertising practices
Meta says it is no longer under investigation by the U.S. Consumer Financial Protection Bureau (CFPB), the latest instance of the agency scaling back enforcement under President Donald Trump.
Complying with the EU Data Act – What companies should know
Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.
Compliance Career Forum
A one-day virtual event exploring how the career path for compliance professionals is changing, and what compliance professionals should be doing now to assure career success and security for years to come.
The CFO, AI, and the New Compliance Frontier
As CFOs use AI to streamline operations, they face new compliance risks tied to accountability and algorithmic governance. CCOs must work with them to ensure transparency and oversight throughout adoption.
New EU Data Act may impact companies’ GDPR compliance efforts
New rules that have recently come into effect across the EU will allow for greater transfers of data between companies, though experts fear the changes could conflict with Europe’s strict privacy legislation, which protects personal information.
AI hallucinations in Deloitte Australia report highlight important role for compliance
“Hallucinatory” citations and errors in an AI-assisted report produced by Deloitte for the Australian government should be a wake-up call for compliance officers about the risks of placing too much trust in AI.
Q&A with Olga Kozak-Anlar of Robinhood Markets
Compliance Week Editor-in-Chief Aaron Nicodemus recently interviewed Olga Kozak-Anlar, Compliance AI Lead at Robinhood Markets Incorporated, about her role at Robinhood and the company’s use of AI.
Employee use of ‘shadow AI’ poses significant risks for companies
Companies face increased risk of cyberattacks, data loss, and even regulatory action because employees are using unapproved “shadow AI” tools to help with work-related tasks.
Shadow AI: Another element of TPRM
Companies may face significant financial and legal risks if they fail to vet suppliers and third parties over their use of unauthorized AI and how the technology may use and share their corporate data.
What compliance can learn from a 95 percent AI pilot failure rate
Compliance professionals have long known that systems fail when governance does. An MIT study’s finding that 95 percent of enterprise artificial intelligence (AI) pilots fail underscores how essential compliance-grade discipline is to the success of emerging technologies.
PCAOB’s Christina Ho: How emerging technologies could improve audit quality
Emerging technologies, like artificial intelligence (AI) and advanced data analytics, can improve audit quality in significant ways. As the regulatory overseer of public-company audits, the Public Company Accounting Oversight Board (PCAOB) has a critical role to play by ensuring that its audit standards evolve as the audit profession evolves.
Webcast: The Future of AI for Compliance Champions
In this exclusive interview, Mitratech’s Strategic Advisor – Integrated Risk Management will share how AI is evolving the Risk and Compliance function, challenges and opportunities presented for Risk and Compliance, and the need for AI Governance.
Compliance must use AI to maximize benefits from sustainability reporting
Global pressure for sustainability reporting is rising. Despite political uncertainty and regulatory delays, companies continue to improve reports for regulators and stakeholders with the help of AI.
U.K. to introduce mandatory ransomware reporting, raising risk of ‘box-ticking’ compliance
The U.K. will require companies to report ransomware payments, but experts warn this could lead to “box-tick” compliance rather than real cyber-resiliency, since it’s cheaper.
Study: Compliance managers must set rules in race to adopt AI agents and copilots
More than half of all compliance teams are “actively using” or “piloting” AI applications, according to a Moody’s report. While most are focusing on streamlining routine tasks, some are developing AI agents and asking vital questions about AI decision-making.
AI adoption without trust: A call for compliance professionals
Employees are adopting AI faster than companies can build policies, governance, and training. That gap creates compliance exposure in areas from data privacy to shadow IT to workplace equity.
Digital wallets to speed up regulatory checks for recruitment, property transactions
You can already buy a coffee with your phone, but soon you could start a job or buy a house with it. Digital compliance wallets holding certificates and documents on smartphones are gaining traction worldwide.
FTC orders AI firms to disclose safeguards for children and teens
AI chatbots are increasingly used by children and teens, prompting the FTC to order seven AI companies to explain how they monitor potential harms to minors.
Google hit with $425.6 million verdict in California privacy case
Google allegedly collected personal data from mobile devices without permission, violating California privacy laws, a jury ruled in awarding more than $425.6 million to class-action plaintiffs.
Navigating top risks in the insurance industry
Cyber threats, climate-related catastrophes, and disruptive technologies remain top risks reshaping the U.S. insurance industry. The question is how chief risk officers at the nation’s largest insurers are confronting them.
California privacy regulator unveils new cyber, risk, and automation rules
Businesses operating in California will need to meet new, first-in-the-nation privacy requirements for cybersecurity, risk assessments, and automated decision-making technology, under a large expansion of rules by the state.
CPE Webcast: Banking Compliance in 2025: Key Trends and Future-Proofing Strategies
In addition to a loosening of traditional banking regulation and supervision in areas like capital requirements, stress testing and liquidity, U.S. banking regulators have indicated they will be more receptive to innovation than the previous administration, particularly in the use of Artificial Intelligence, and in digital assets.
AI governance, agentic misalignment and the lessons from ‘Star Trek’
Does sci-fi predict the future of compliance or simply provide commentary on the current state of compliance? What is the role of corporate compliance around AI governance?
CPE Webcast: No Longer Optional: The Future of AI in TPRM
Don’t miss this opportunity to prepare your organization for the future of TPRM and stay ahead with AI as your second-in-command.
Kentucky is latest state to file suit against Temu for alleged privacy violations
Kentucky took aim at Chinese company Temu, alleging in a lawsuit that it counterfeited popular Kentucky-designed merchandise and violated customers’ privacy.
Chipmaker fined $140M for unlawfully exporting chip design tools to China
Chip design software and hardware maker Cadence Design Systems agreed to plead guilty to unlawfully exporting semiconductor design tools to a restricted Chinese military university, the Department of Justice said in a statement. The California firm will pay over $140 million in criminal and civil pines and forfeitures, marking the ...
U.K. regulator urges auditors to explain AI use in audits
Plans to push audit firms to disclose how they use AI in audits have been broadly welcomed, but concerns remain over how corporate data is used, secured, retained, and potentially exposed.
U.K. data law tightens compliance rules, expands complaints process and raises penalties
The U.K.’s Data (Use and Access) Bill, passed into law on June 19, aims to boost the economy and simplify access to services like healthcare and policing. Businesses must understand the changes and ensure data policies and complaints procedures are current.
10 tips to comply with the U.K.’s new data law
Changes to the U.K.’s privacy regime will immediately affect how companies handle AI-driven decisions, cookie usage, and responses to data subject requests. As a result, experts are warning compliance teams to ensure their organizations take the legislation seriously and make plans to review data governance.
U.K. hopes to create ‘third way’ in AI regulation between EU and U.S.
The U.K.’s data regulator has unveiled a new enforcement approach to AI development and usage that experts say seeks to carve a middle way between the strict rules applied by the European Union (EU) and the pro-industry, light-touch regime favored by the U.S.
Google AI Overviews under EU scrutiny after publishers file antitrust complaint
Google has once again been hit with an antitrust complaint. This time, it’s not about its Chrome browser or Google Search business, but instead the company’s use of AI.
Google told to pay $314M over cellular data in California class action suit
A jury in California last week said Google misused cellular data from people who owned smartphones powered by its Android software, and must pay users in the state roughly $314.6 million.
Crypto firms brace for tighter UK oversight as FCA plots integration with financial markets
Trying to put rules in place to oversee an industry that has grown largely outside of regulation is not without serious challenges. But the UK’s Financial Conduct Authority’s (FCA) latest consultation aims to attract industry views about how some key aspects of crypto trading should be regulated ahead of planned ...
Seven years in, GDPR faces growing challenges from AI and ‘consent or pay’ models
Europe’s pioneering data protection legislation turned seven years old in May, but the compliance and enforcement difficulties that have dogged the rules since they came into force look set to present both companies and data regulators with fresh headaches for some time to come.
What is AI washing and why companies need to stop exaggerating their AI prowess
The buzz around generative AI has reached fever pitch over the past few years—to such an extent that it’s practically a death knell for any company to say it’s not investing massively in gen AI to transform their business. There’s only one problem: many companies are either being misleading or ...
Communication and relationships is increasingly critical for compliance teams
Compliance is increasingly in the spotlight as companies are tackling everything from artificial intelligence and other new technologies to risk management and mitigation. But it’s soft skills of communication and relationship building that are becoming the most critical tools for success.
Technology advancements are making export controls more important than ever
Russia’s invasion of Ukraine has sparked a war with unusual implications: The U.S. has stepped up sanctions and export controls. But companies are increasingly learning that the most seemingly innocuous products can find themselves in “dual use,” as a product for daily life and a product for war. A gyroscope ...
U.K. reins in crypto firms to combat ‘scandal’ of freewheeling finfluencers
Up to 25,000 people a year in the U.K. are illegally promoting financial products or offering financial advice on social media, but none have yet appeared in court, according to the first Treasury Select Committee meeting on the subject of so-called “finfluencers.” Regulated financial services firms must comply with strict ...
ESG goes beyond politics: Vendor management, forced labor, sustainability
ESG is no longer in vogue. But its issues still are.
Google’s $500M compliance overhaul may fall short, amid antitrust fallout
Google parent Alphabet has struck a new agreement with shareholders, settling a shareholder lawsuit with a promise to ”completely revamp and rebuild its global compliance structure,” according to a new legal filing. The investment may not go far enough to reform Alphabet’s compliance failings, which are particularly under scrutiny following ...
For the first time, a majority of compliance teams using AI: Inside the Mind of the CCO
For the first time, more compliance teams than not used artificial intelligence (AI) to assist them in their work, according to Compliance Week’s 2024 “Inside the Mind of the CCO” survey.
CPE Webcast: The Compliance Practitioner Challenge: Staying Ahead of AI Regulations
As AI presents new opportunities to drive insight and efficiency, it brings new challenges of risk mitigation and overall company protection.
Trump administration launches pressure campaign against EU Digital Services Act
The Trump administration is preparing to ask the European Union to alter or water down its rules on content moderation on social media, claiming that they hurt the competitiveness of American technology companies.