Skip to main content
Skip to navigation

Regulatory Policy

DOJ updates ECCP to include AI risks, whistleblower protections

By Adrianne Appel2024-09-26T14:23:00

Companies under criminal prosecution by the Department of Justice for any reason must show they have robust compliance for any artificial intelligence (AI) in use–or risk heightened prosecution–under a DOJ policy update.

Companies also must show that they have strong whistleblower protections, according to an update of the DOJ’s Evaluation of Corporate Compliance Programs (ECCP), an online guidebook about the compliance, governance, and risk assessment systems the DOJ expects companies to have.

The DOJ periodically updates the ECCP, and announced in March that it planned to include AI and whistleblower protections. In March 2023, an ECCP update provided guidance about corporate off-channel communications, among other issues.

THIS IS MEMBERS-ONLY CONTENT

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

Premium
Could your firm potentially be the subject of a DOJ whistleblower action? Time to get ready

2024-11-27T18:22:00Z By Aaron Nicodemus

Now that the U.S. Department of Justice launched a new pilot whistleblower program, many questions remain. What types of companies might find themselves to be the subject of a criminal investigation stemming from a whistleblower tip? And what should they do to prepare for a whistleblower tip?
News Brief
DOJ offers antitrust compliance guidance in ECCP update

2024-11-25T19:18:00Z By Aaron Nicodemus

The Department of Justice has added antitrust compliance guidance in an update to its Evaluation of Corporate Compliance Programs.
Premium
Are the qui tam provisions of the False Claims Act constitutional? A Florida judge just said no

2024-10-02T17:49:00Z By Adrianne Appel

A federal court in Florida has lashed out at federal whistleblower programs by dismissing a mundane False Claims Act case against a medical practice on the grounds that the qui tam provisions of the FCA are unconstitutional.

More from Regulatory Policy

News Brief
FDIC eases leverage rules for banks, citing lower risk burdens

2025-11-26T19:20:00Z By Oscar Gonzalez

The U.S. Federal Deposit Insurance Corporation issued a final rule to change the leverage capital requirements for both large and community banks. The agency said the modification will ”reduce disincentives a banking organization may have to engage in lower-risk activities.”
Article
U.K. Cyber Security and Resilience bill set to regulate critical infrastructure suppliers

2025-11-25T21:55:00Z By Ruth Prickett

Suppliers to the U.K. critical infrastructure will face new regulations to ensure they are protected from cyberattacks. The Cyber Security and Resilience Bill, introduced on November 12, also raises penalties for breaches and expands regulator powers to label certain suppliers as critical.
Article
FCC rolls back Biden-era cybersecurity requirements for telecoms

2025-11-24T20:34:00Z By Adrianne Appel

Telecommunication companies are now on the honor system to protect their networks from cyber attacks, following a Federal Communications Commission (FCC) vote that removed requirements that they harden their networks.