All Risk Management articles – Page 23
-
News BriefInsurance broker Gallagher off hook in DOJ FCPA probe
Arthur J. Gallagher disclosed the Department of Justice ended an investigation into the insurance broker’s business in Ecuador for potential violations of the Foreign Corrupt Practices Act.
-
News BriefSCOTUS reaffirms whistleblower protections in ruling against UBS
The Supreme Court reaffirmed whistleblower protections guaranteed under the Sarbanes-Oxley Act in a unanimous decision expected to set a precedent that impacts all corporate internal reporting cases.
-
PremiumThe blurred lines of employee monitoring under GDPR
The French data regulator’s fine against an Amazon warehouse manager for violating employees’ rights to privacy in the workplace once again raises questions about what constitutes an overzealous approach to employee monitoring and why companies fail to recognize the signs.
-
News BriefLatest SEC off-channel comms sweep nets $81M in fines against 16 firms
The ongoing off-channel communications sweep by the Securities and Exchange Commission netted 16 more broker-dealers and investment advisers, with the latest wave of fines totaling more than $81 million.
-
PremiumTable: SEC, CFTC off-channel communications penalties
The Securities and Exchange Commission and Commodity Futures Trading Commission have combined to levy nearly $3.5 billion in penalties (so far) against firms and their affiliates in response to recordkeeping failures regarding employee use of off-channel communications for business purposes.
-
PremiumAnti-fraud groups praise FinCEN AML proposal for real estate transactions
The Financial Crimes Enforcement Network issued a notice of proposed rulemaking that would require the handlers of all-cash residential real estate transactions in all U.S. cities and counties to disclose the beneficial owners.
-
WebcastCPE Webcast: TPRM: Time to change how you approach vendor assessments
Forward-thinking third-party risk management teams are changing the way they approach vendor assessments.
-
News BriefMontefiore Medical Center to pay $4.8M over employee’s data theft
Montefiore Medical Center agreed to pay $4.75 million to settle allegations by the Department of Health and Human Services’ Office for Civil Rights that failures by the New York City nonprofit facility allowed an employee to steal and sell patient information for six months.
-
PremiumExamining precedent set by French DPA’s Amazon employee monitoring fine
The decision by France’s data regulator to fine an Amazon warehouse manager for breaches of the General Data Protection Regulation over the way it monitored employee productivity raises questions about the reach data protection authorities have over corporate conduct.
-
News BriefAlphabet to pay shareholders $350M over Google+ privacy lapses
Alphabet, the parent company of technology giant Google, agreed to pay $350 million in a preliminary settlement with shareholders over alleged data privacy violations and materially false and misleading statements linked to now-defunct social media site Google+.
-
PremiumCompliance with growing number of U.S. privacy laws ‘a matter of culture change’
Different deadlines associated with the 13 U.S. state privacy laws currently on the books, including grace periods and enforcement dates, have proven challenging for compliance, experts discussed at CW’s Cyber Risk & Data Privacy Summit.
-
PremiumExperts: Good data breach response grounded in preparation
Two chief compliance officers and an attorney discussed preparation for the “when, not if” threat of a data breach during a panel at CW’s Cyber Risk & Data Privacy Summit.
-
WebcastCPE Webcast: Crafting policies for digital dialogue
This webinar will shed light on the critical need for heightened awareness regarding business communications in the financial sector.
-
News BriefClorox discloses $49M hit from cyberattack
Cleaning products company Clorox disclosed the major cybersecurity incident that led to a shutdown of its automated order processing late last year has cost it about $49 million.
-
PremiumJury out on viability of AI in ESG reporting
Tech vendors believe ESG reporting is a ripe market for artificial intelligence to help companies sift through data and ensure compliance with both mandatory and voluntary reporting standards. Compliance officers appear less sure.
-
News BriefBlackbaud avoids fine in FTC deal requiring data deletion
Software company Blackbaud will be required to delete unnecessary data and boost cybersecurity as part of a proposed settlement with the Federal Trade Commission stemming from a 2020 data breach.
-
News BriefFinCEN alert flags Israeli extremists fomenting violence in West Bank
The Financial Crimes Enforcement Network issued an alert addressing the financing of Israeli extremist settler violence against Palestinians in the West Bank.
-
PremiumACAMS survey: Budget cuts, criminal tech innovation top 2024 threats
Nearly 800 financial crime professionals said the biggest threats to the effectiveness of their anti-money laundering programs are budget cuts and their inability to keep pace with more aggressive and innovative uses of technology by criminals to commit fraud.
-
News BriefCity National Bank ordered to pay $65M over deficient risk, internal controls
The Office of the Comptroller of the Currency levied a $65 million civil penalty against Los Angeles-based City National Bank over alleged risk management and internal control failures.
-
News BriefCompliance officer BSA case a cautionary tale for small banks
A New York-based Bank Secrecy Act compliance officer facilitated more than $1 billion in high-risk international financial business through an “unsophisticated” institution, according to the Department of Justice and the Financial Crimes Enforcement Network.