All Third Party Risk articles – Page 9
-
News Brief
BIS updates voluntary self-disclosure policy to punish not coming forward
The Commerce Department’s Bureau of Industry and Security updated its guidelines to further clarify the advantages of voluntary self-disclosure to the agency when export control violations are uncovered.
-
Premium
How to avoid pitfalls of scaling business with generative AI
Generative AI has the potential to be as game-changing for business and society as the internet, social media, and mobile phones were. At the moment, however, the risks seem to outweigh the rewards.
-
Opinion
Alleged fraudster cited privacy in duping JPMorgan into $175M merger
Charlie Javice and her startup Frank allegedly convinced the country’s largest bank to pay $175 million for what largely amounted to a list of fake college students. The apparent due diligence failures by JPMorgan Chase offer a cautionary tale to compliance professionals.
-
News Brief
Labcorp to pay $2.1M in third party overbilling case
Laboratory Corporation of America agreed to pay $2.1 million to settle Department of Justice allegations the company overbilled the Department of Defense for genetic tests performed by a third party.
-
Premium
Survey: Tech key to compliance in changing data privacy landscape
Respondents to a survey from Compliance Week and Exterro largely said they were confident their organizations are meeting regulatory requirements regarding data privacy despite evidence their data retention policies and procedures are outdated.
-
News Brief
Fed governor teases new TPRM guidance for banks
The Federal Reserve and other U.S. banking agencies are working to develop joint guidance to clarify regulatory expectations around third-party risk management, according to Fed Governor Michelle Bowman.
-
News Brief
Investment adviser fined $50K for compliance lapses following founder/CCO’s death
E. Magnus Oppenheim & Co. must pay $50,000 and hire an independent compliance consultant to settle Securities and Exchange Commission charges of failing to implement compliance policies and procedures following the death of its founder and CCO.
-
News Brief
Flutter Entertainment to pay $4M for legacy FCPA violations
Ireland-based gaming and sports betting company Flutter Entertainment will pay a $4 million fine to resolve SEC charges payments made to Russian consultants by a company it acquired violated the Foreign Corrupt Practices Act.
-
News Brief
U.S. authorities list red flags for sanction evasion by third parties
The Bureau of Industry and Security, Office of Foreign Assets Control, and Department of Justice issued guidance to highlight common methods bad actors use to evade sanctions and export controls on Russia and how to spot their use.
-
News Brief
Italian DPA fines Edison Energia $5.2M over GDPR lapses
The Italian data protection authority penalized electric utility company Edison Energia for multiple alleged violations of the General Data Protection Regulation regarding marketing communications and data processing transparency.
-
Premium
Cloud ‘not a silver bullet’ for security
A panel of cyber experts and a chief compliance officer in financial services discussed the business risks, threat vectors, and vendor ‘gotchas’ associated with transitioning to a cloud provider at CW’s virtual Cyber Risk & Data Privacy Summit.
-
Premium
‘This is where we are now’: Cyber environment calls for continuous monitoring
Securing your organization’s private data when vendors have access to it means managing relationships from beginning to end, panelists at CW’s virtual Cyber Risk and Data Privacy Summit agreed.
-
Premium
Cybersecurity pillars: Prevention, protection, mitigation, governance
The former superintendent of the New York State Department of Financial Services explained how the structure of a cybersecurity program is like a compliance program and can be divided into four buckets during a panel discussion at CW’s Cyber Risk & Data Privacy Summit.
-
Opinion
Book review: Why revamping procurement benefits business—and compliance
In “Profit from the Source,” four Boston Consulting Group thought leaders argue why procurement should be shaping corporate strategy, not just supporting it. Author Daniel Weise tells Compliance Week why such a transformation would elevate compliance, too.
-
Article
Is threat of regulatory censure a risk worth taking?
When making anti-regulatory decisions, a board is expressing its real risk appetite. This can be frustrating, even bewildering, for compliance professionals, especially when rules are clear and explicit in their expectations.
-
Premium
Comerica pressured over handling of government program fraud claims
Comerica Bank has been battling allegations for years of mishandled fraudulent transactions in violation of U.S. federal banking laws. A series of class-action lawsuits against the bank recently certified by a federal district court judge provide scope into the alleged failings.
-
Premium
Survey: Cybersecurity, regulatory risks lead TPRM priorities in 2023
Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.
-
Resource
Survey Report: Top TPRM priorities in 2023
Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.
-
Premium
Research project leveraging collaboration to better detect corruption
Integrity Distributed has launched a collaborative research project seeking to develop anti-corruption detection technology that includes academic, technological, and corporate partners.
-
News Brief
GoodRx facing $1.5M fine over improper sharing of health data
GoodRx agreed to pay $1.5 million as part of a settlement reached with the Federal Trade Commission addressing allegations the telemedicine and prescription drug discount provider shared personal health data with third parties for advertising purposes.