All Third Party Risk articles – Page 13
-
ArticleMorgan Stanley agrees to $60M settlement over compromised personal data
Morgan Stanley has agreed to establish a $60 million fund to settle a class-action lawsuit filed by nearly a dozen customers regarding personal data that was compromised when the bank decommissioned two wealth management centers.
-
ArticleSurvey highlights need for better data integration between risk and compliance
A recent survey from Compliance Week and Riskonnect presents a compelling argument for companies to invest in bridging the gap between risk management and compliance data.
-
ArticleGrindr fined $7.2M for GDPR consent violations
The Norwegian Data Protection Authority announced a fine of NOK 65 million (U.S. $7.2 million) against gay dating app Grindr for sharing personal data with third parties without users’ consent.
-
ArticleNYDFS guidance addresses common MFA problems—and how to fix them
The New York State Department of Financial Services outlined common vulnerabilities in multi-factor authentication and how to address them from a cybersecurity risk management standpoint.
-
ArticleOCC report: Cyberattacks, pandemic among top bank risk areas in 2021
Banks and financial institutions regulated by the OCC faced elevated risks in 2021 from cyberattacks launched on them and their third parties, as well as compliance risks related to the pandemic, according to the agency’s latest report.
-
ArticleHow agile companies succeed in the throes of supply chain woes
In the midst of unimaginable global supply chain chaos, leading companies are adjusting their supply chains in a variety of ways, turning disruption into competitive advantage.
-
ArticleRule requires banks report significant ‘computer-security incidents’ within 36 hours
Federal banking regulators issued a rule that requires financial institutions to notify their regulator within 36 hours of a “computer-security incident” that materially affects their operation, ability to deliver services, or the stability of the financial sector.
-
ArticleVolkswagen not resting on laurels post-monitorship
Volkswagen CCO Kurt Michels shared how the company has intensified business partner due diligence in the wake of completing its three-year U.S. monitorship during a fireside chat at CW’s virtual Europe event.
-
ArticleCWE panel: Risks, rewards of outsourcing compliance
As they look to manage third-party risks, compliance departments are increasing their reliance on outsourcing. Experts at Compliance Week’s virtual Europe event discuss the benefits and risks of enlisting external help.
-
ArticleHoneywell records charge of $160M in FCPA probe
Honeywell International has recorded a charge of $160 million in accrued liability concerning an investigation by U.S. and Brazilian authorities as to whether the company’s use of third parties in Brazil violated the FCPA.
-
ArticleCompliance Week National Conference is going back in person in May
Mark your calendars: Compliance Week’s National Conference in Washington, D.C. will be held in person for the first time in nearly three years from May 16-18, 2022.
-
ArticleHow to respond to government’s renewed emphasis on cybersecurity
The Department of Justice’s new Civil Cyber-Fraud Initiative is the latest development to suggest companies’ cybersecurity defenses had better be up to snuff when doing business with the U.S. government or risk enforcement.
-
ArticleMetals Technology Initiative issues new anti-corruption resources
The Metals Technology Initiative has launched a new website making its guidance on gifts and hospitality and third-party due diligence freely accessible.
-
ArticleReport: China, U.S. most confident in combating corruption risks
Risk leaders at companies in China and the United States expressed the highest level of confidence in their approach to mitigating bribery and corruption risk, according to a new global benchmark report from Kroll.
-
ArticleBanking guidance: Six key areas of FinTech due diligence
Three federal banking regulators have released guidance offering tips and suggestions to community banks for conducting due diligence on potential FinTech partners.
-
ArticleFINRA notice outlines key areas for supervising third parties
The Financial Industry Regulatory Authority issued a notice on compliance deficiencies arising from firms’ relationships with vendors culled from examination findings.
-
ArticleWhat factors are driving change in your corporate investigations process?
A recent survey from Compliance Week and OpenText reveals while investigations and data volumes are on the rise, machine learning combined with external expertise may give companies the upper hand in accelerating response and results.
-
ArticleNew bank guidance expands on advice for handling third parties
Three federal banking regulators are seeking public input on the first comprehensive update to risk management guidance for financial institutions entering into business relationships with third parties since 2013.
-
ArticleSurvey: Emerging TPRM trends in anti-corruption
Kroll’s newest anti-corruption benchmarking report highlights current TPRM trends such as evolving challenges with enhanced due diligence, the rise of automation, the growing incorporation of ESG matters into compliance programs today, and more.
-
ArticleTPRM 2021: What to do before, during, and after a ransomware attack
Two risk and compliance practitioners opened their cyber-playbooks at CW’s TPRM virtual event, explaining how to identify and address vulnerabilities, establish transparency with vendors, and strengthen an organization’s incident management program.