It’s been six months since the Uyghur Forced Labor Prevention Act took effect, and businesses are no clearer today on how to comply with it, those familiar with the law said.
Positive contributions in the areas of ESG, AI responsibility, and setting standards regarding CCO liability highlight the latest installment of CW’s annual list of laudable ethics and compliance moments.
The Division of Examinations at the Securities and Exchange Commission issued a risk alert detailing recent issues observed by inspectors regarding compliance with the agency’s identity theft red flags rule, Regulation S-ID.
The Department of Justice is considering issuing new guidance regarding companies’ record-keeping obligations for employees’ use of personal cell phones to conduct corporate business, as well as executive compensation clawback policies.
Christy Goldsmith Romero, a commissioner at the Commodity Futures Trading Commission, is lobbying the regulator to use its existing authority to conduct “heightened supervision” over derivative exchanges to create more oversight in crypto markets.
Determining the true owner of a company might become more difficult after Europe’s top court ruled automatic access to registers of beneficial ownership conflicted with the right to privacy.
A privacy and human rights advocate sued Meta Platforms in the United Kingdom, claiming the social media giant is refusing her request to stop being targeted with advertising based on her use of Facebook.
A U.K. employment tribunal’s ruling that a former BP employee was not entitled to whistleblower protection has shone a spotlight on the legal issues workers must consider ahead of speaking up.
To do their jobs properly, regulators must be able to act independently and without government intervention. Rather than seeking to tighten its grip on regulators, the U.K. government should be safeguarding their independence as a matter of urgent priority.
The Federal Trade Commission extended the deadline for compliance with certain changes to its Safeguards Rule announced last year, in part because of labor shortages in the cybersecurity market.
A new Treasury report found as the trend of nonbank fintech companies providing financial services in partnership with regulated entities continues to grow, regulators need to increase oversight of these relationships to curb the risks they pose.
Non-fungible tokens can take many forms. There are potential business applications already in use, and many more are being developed as technology evolves.
Learn now to maximize efficiency and achieve operational excellence within your ESG program or get your program started with steps you can take today and into the future regardless of your maturity.
The collapse and bankruptcy of digital asset exchange FTX offers stark lessons into why rules that apply to traditional investments—overseen by government regulation—ought to apply to digital investments as well.
The Australian government is weighing stringent new privacy reforms that would establish among the steepest penalty regimes in the world—up to AUD$50 million (U.S. $33.5 million)—for serious or repeated breaches.
The 18-month probationary period for the new Securities and Exchange Commission marketing rule for investment advisers has expired and compliance with the rule is now mandatory.
The Consumer Financial Protection Bureau initiated rulemaking that would require banks and other financial institutions to make a consumer’s personal financial data available to them upon request.
The Office of the Comptroller of the Currency will heighten its focus on the financial technology space with the creation of a new department in early 2023.
The Securities and Exchange Commission passed a rule to require public companies to recover incentive-based compensation doled out to current and former executives up to three years before issuing an accounting restatement.
Google reached a first-of-its-kind settlement with the Department of Justice requiring the tech giant to hire an outside compliance expert and overhaul its legal compliance process.
It is critical for organizations to carefully assess their CPRA compliance programs to identify gaps, avoid pitfalls, and minimize risks. Even organizations that have implemented a CCPA compliance program will need to consider enhancements to meet CPRA requirements.
An appeals court’s finding the Consumer Financial Protection Bureau’s funding mechanism to be unconstitutional could affect a multitude of lawsuits filed against the agency, according to legal experts.
Seven members of corporate boards resigned after the Antitrust Division of the Department of Justice flagged their situations as potential violations of the Clayton Act.
The Committee on Foreign Investment in the United States issued its first-ever enforcement and penalty guidelines for entities that violate mitigation agreements with CFIUS or otherwise run afoul of the Defense Production Act of 1950.
The case of the Uber chief security officer found guilty by a jury on two felonies for covering up a data breach and misleading federal regulators opens up another potential individual liability issue executives handling cyber incidents face, according to legal experts.
The U.K. Information Commissioner’s Office issued draft guidance to help ensure employers’ monitoring of staff performance does not turn into surveillance or harassment.
More companies and industries are at risk of falling under the Occupational Safety and Health Administration’s Severe Violator Enforcement Program now that the Labor Department agency has broadly expanded its enforcement scope.
Only the United States and Switzerland can be considered “active enforcers” in tackling foreign bribery, while countries like the United Kingdom and Israel have taken a step back, according to the latest report from Transparency International.
A new agreement will allow law enforcement agencies in the United Kingdom and United States to gain better access to data held by tech and telecommunications firms from the other’s country as part of evidence gathering for complex white-collar crimes.
Paul Munter, acting chief accountant at the Securities and Exchange Commission, issued a statement highlighting auditors’ responsibilities in fighting fraud, including his office’s recent observations of shortcomings in the area.
President Joe Biden’s executive order on a data privacy framework aims to provide a workable, legally resilient solution for companies to continue moving and storing the personal data of EU-based citizens to American-based servers without running afoul of the GDPR.
The Securities and Exchange Commission will reopen comment periods on 11 rulemaking releases put forward over the past year, including proposals regarding climate-related disclosures and reporting cybersecurity breaches, because of a glitch in its online comment system.
Optus isn’t alone in trying to calm public nerves and find out what happened to cause a breach that exposed the records of 9.8 million current and former customers. Australian government agencies are also attempting to fight fires and reassure citizens their personal info is safe.
A new report by the Financial Stability Oversight Council identified three regulatory gaps in the current oversight of cryptocurrency, stablecoins, and other digital assets and recommended steps Congress and federal regulators should take to close them.
The Financial Industry Regulatory Authority increased penalties for member violations of securities rules, including removing upper limits on fines for certain instances of misconduct.
The EU’s proposed Cyber Resilience Act primarily puts pressure on tech manufacturers to ensure the cybersecurity of their products, but companies also have a duty of care to use the most secure products available.
The Financial Crimes Enforcement Network finalized its beneficial ownership rule, which will require certain reporting companies to file basic information with the agency about who controls their finances.
Bank of America, Citigroup, Goldman Sachs, JPMorgan Chase, Morgan Stanley, and Wells Fargo will participate in a pilot climate scenario analysis exercise organized by the Federal Reserve that seeks to enhance climate-related financial risk management efforts in the industry.
A group of banking and business associations sued the Consumer Financial Protection Bureau and Director Rohit Chopra for overstepping their authority when the agency indicated it would begin actively searching for discrimination and disparate impacts during supervisory exams.
The Prudential Regulation Authority and Financial Conduct Authority ending their six-year investigations into former senior managers at HBOS without enforcement serves as reminder of the United Kingdom’s checkered history of bringing executives to book.
The Economic Crime and Corporate Transparency Bill aims to stem the flow of dirty money coming into the United Kingdom by giving Companies House more power and resources to help combat money laundering.
The climate-related disclosure rule proposed by the Securities and Exchange Commission will eventually pass but not before undergoing some changes, practitioners speaking at CW’s virtual ESG Summit predicted.
Four senior compliance practitioners offer what they believe will be the technology currently on the market that will receive the most attention from regulators over the next five years.
Regulatory environments are ever evolving; four senior compliance practitioners detail what their respective businesses do to ensure compliance while utilizing new technologies.
In fining Instagram a record €405 million (U.S. $405 million) for General Data Protection Regulation violations regarding the safeguarding of teenage users’ data, the Irish Data Protection Commission took some heat of its own.
The Treasury Department is seeking public input on how to address illicit finance and national security risks posed by digital assets, part of a multipronged push by the Biden administration to hold bad actors accountable and identify potential enforcement and regulatory gaps.
Commissioner Christy Goldsmith Romero would like the Commodity Futures Trading Commission to stop offering no-fault settlements as a matter of routine but instead force more individuals and corporations to accept responsibility for their wrongdoing.
There is an increasing need for effective data discovery in the worldwide push toward data protection and privacy legislation. Data privacy laws have been passed in 71 percent of countries, and a further 9 percent have draft legislation in progress.
Amanda Patrick, Rite Aid’s director of ESG/corporate sustainability, shared the retail pharmacy chain’s sustainability journey so far and how it is readying to meet the SEC’s potential disclosure mandates during her keynote address at CW’s virtual ESG Summit.
Democratic senators are urging the Department of Health and Human Services to strengthen federal health privacy protections for abortion patients by updating the HIPAA Privacy Rule.