Federal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.
Aug 7 | No Longer Optional: The Future of AI in TPRM
Don’t miss this opportunity to prepare your organization for the future of TPRM and stay ahead with AI as your second-in-command.
CPE Webcast: Compliance Under Pressure: M&A Risks and Ethical Safeguards
This webinar will explore how compliance professionals, legal teams, and executives can proactively identify, mitigate, and manage risks during the M&A lifecycle without compromising ethical standards.
Three TPRM myths worth busting
There are stories we tell ourselves in third-party risk management (TPRM) to make ourselves feel better about the corners we cut.
Supply chain disruptions caused by Republican policies should be managed
If you’re in third-party risk management, handling the latest disruptions brought on by wild gyrations in tariff rates and export control rules by Republican leadership ought to be child’s play.
Communication and relationships is increasingly critical for compliance teams
Compliance is increasingly in the spotlight as companies are tackling everything from artificial intelligence and other new technologies to risk management and mitigation. But it’s soft skills of communication and relationship building that are becoming the most critical tools for success.
ESG goes beyond politics: Vendor management, forced labor, sustainability
ESG is no longer in vogue. But its issues still are.
In a world filled with uncertainty, boards need to focus on connecting dots
Regulators and investors increasingly say boards of directors need more expertise to ensure they can respond to fast-changing politics, policy, and technology that threaten to undermine their businesses. In the U.K., government officials say boards need to think more about cyber. In the EU, they need to prepare for the ...
Google’s $500M compliance overhaul may fall short, amid antitrust fallout
Google parent Alphabet has struck a new agreement with shareholders, settling a shareholder lawsuit with a promise to ”completely revamp and rebuild its global compliance structure,” according to a new legal filing. The investment may not go far enough to reform Alphabet’s compliance failings, which are particularly under scrutiny following ...
TPRM has become the business continuity plan in turbulent times
Global supply chains are constantly in flux: crucial vendors could suddenly go bankrupt, fail to produce key components without warning, or even lose your firm’s data in a breach. The result has drawn ever more attention to third-party risk management as a critical element of many businesses.
COSO’s draft corporate governance framework provides roadmap to compliant business practices
Corporate governance is, all too often, handed down from generation to generation. Like a well-worn jacket, it works great—until it doesn’t. Typically, it is a crisis that forces companies to reassess their corporate governance framework, as gaps are filled and poor policies rewritten. But it doesn’t have to be that ...
CPE Webcast: Adapting to Global Regulatory Change and Supply Chain Disruption in 2025
Wondering how new approaches to age-old regulations affect ethical business practices across your extended enterprise? What about how tariffs may impact your supply chain integrity, and how to best adapt your organization to accelerated shifts in business practices?
Survey: Compliance, now at the leadership table, navigates an uncertain risk landscape
At a time when the Trump administration is rewriting many of the rules, the compliance function is being embraced as a strategic partner to the C-suite and board, Compliance Week’s 2024 “Inside the Mind of the CCO” survey shows. The new objective: risk-assess the implications of Trump’s confetti of executive ...
CPE Webcast: The Compliance Practitioner Challenge: Staying Ahead of AI Regulations
As AI presents new opportunities to drive insight and efficiency, it brings new challenges of risk mitigation and overall company protection.
Directors should be more accountable for failure, while also taking more risks, says U.K. regulator
Director accountability is back in the spotlight in the U.K., even as the government pushes for regulatory simplification to cut red tape and drive growth. This raises questions about how boards can be encouraged to take risks to grow their businesses while also being held more accountable for governance failings. ...
CPE Webcast: Slow Vendors, Changing Risks: The Compliance Customization Gap
A recent survey found that 66% of compliance leaders say their training programs are hard to customize quickly, and nearly half (46%) are being asked to cut training time.
CPE Webcast: Taking a data-first, questionnaire-second approach to TPRM
Join us for a live webcast to learn how the newest risk exchange models are eliminating 80 percent of questionnaire requests with data.
Survey highlights demand for quick, customizable, and cost-effective compliance training
Compliance training has become less expensive and more customizable to keep up with the constant rule changes, according to a new survey by microlearning training platform Ethena and Compliance Week.
Republican-led SEC abandons climate rule; Dem commissioner calls move ‘unlawful’
The Securities and Exchange Commission’s Republican leadership is abandoning the climate-related disclosure rule package passed last year by Democrats, hoping that the courts will kill regulations already on life support.
Navigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
e-Book: Tackling Third Party Risk In A Global World
TPRM has always been a tough subject, requiring regular monitoring and audits to be done right. But until recently, it was something companies chose to do.
Photo gallery: Ethics & Compliance Summit
Compliance Week’s Ethics and Compliance Summit, held March 19-20 in Boston, Mass., gathered legal, compliance, and risk professionals to share best practices and engage in discussions on timely topics, regulatory developments, and effective strategies to foster an ethical culture.
CCO who was ‘sole person controlling’ investment firm charged with recidivist concentration violations
An investment company and its founder, president, and chief compliance officer flagrantly kept violating mutual fund rules for multiple years after settling with the Securities and Exchange Commission, the SEC said in a complaint against the company.
Expert: Treasury’s move to ‘narrow’ BOI requirements would gut AML law
The U.S. Treasury’s effort to dramatically narrow the focus of the Corporate Transparency Act through “emergency” rulemaking would gut the law’s anti-money laundering efforts, a transparency expert said.
FRC launches probe into MacIntyre Hudson’s 2022 audit of collapsed LSG
The U.K. Financial Reporting Council has launched an investigation into MacIntyre Hudson’s audit of collapsed construction company ISG Limited, which abruptly entered administration in September, laying off 2,200 workers.
Experts: Companies ‘underestimate risk’ as first provisions of EU AI Act come into force
A European Union-wide ban on AI systems with “unacceptable” risk came into force on Feb. 2 as the first provisions of the EU’s AI Act took effect. Problems persist, however, over what the legislation requires and what corporate practices or uses of data may risk flouting the rules.
SEC postpones compliance date for amendments to investment company names rule
Investment companies will have six additional months to comply with an update to the Securities and Exchange Commission rule aimed at making investment fund names more accurate.
‘Abject failure’: U.K. lawmakers sound off on FCA’s failed 'naming and shaming' enforcement
U.K. lawmakers slammed the country’s chief financial regulator’s hopes of “naming and shaming” firms as part of its efforts to beef up enforcement, denting its credibility in the process and questioning the leadership of its chief executive.
PCAOB fines KPMG units $3.4M, PwC Singapore $1.5M for audit, independence violations
Nine affiliates of KPMG agreed to pay a total of nearly $3.4 million for alleged violations of audit and quality control standards, while PwC Singapore will pay $1.5 million to settle separate allegation that the firm manipulated independence compliance reporting.
EU drives ‘omnibus’ of simplifications through landmark sustainability reporting directives
The European Commission has adopted proposals for radical simplifications to the EU’s trailblazing environmental regulations. The commissioners argue that this is a pragmatic response to changing global economics and indicates that they have listened to the concerns of smaller businesses that are struggling to comply with onerous and conflicting rules.
Survey: The State of Third-Party Due Diligence
This is a Compliance Week Survey, sponsored by GAN Integrity. It is completely anonymous and designed to help benchmark the state of third-party due diligence. Results will be shared by Compliance Week and GAN Integrity in the form of a benchmark report.
Why are CFOs struggling to stay compliant?
CFOs are tasked with overseeing an organization’s entire financial processes, not least ensuring that financial operations remain compliant with the multitude of global regulations. It’s a heavy burden to carry that might be alleviated slightly with the help of artificial intelligence, writes Markus Hornburg, head of compliance at Basware.
Investment scammers, other fraudsters scored billions from consumers in 2024, FTC reports
The public reported a 25 percent increase in losses–totaling more than $12.5 billion in 2024–to investment scams, tech rip-offs, and general fraud, according to an analysis by the Federal Trade Commission.
CPE Webcast: Adapting to new FCC rules: Revocation of consent and beyond
Prior consent is a key component of telecommunications compliance frameworks like the FCC’s TCPA. Big changes are coming April 11 that will impact how consumers can revoke consent or “opt out” of communications under the law.
As DOJ pivots away from white-collar enforcement, is FCPA still relevant?
While executives and boards will never conclude that bribery is a legitimate way of doing business, understandably many have questions about how to direct their FCPA compliance program efforts and resources, write Iris Bennett and Claire Rajan, partners at law firm Steptoe.
Shareholders back Apple sticking to DEI goals as Trump blasts move
Tech giant Apple solidified its commitment to diversity, equity, and inclusion at its annual shareholder meeting on Tuesday, with 97 percent of shareholders rejecting an anti-DEI proposal, according to a public filing.
Summit will offer framework for ethical AI use
Artificial intelligence tools are being adopted at a rapid clip in many organizations, in some cases without proper guardrails and without taking ethical considerations into account.
Experts explain why IIA's new global audit rules will be 'central' to securing high-quality assurance
Compliance teams should expect more support from their organization’s internal audit functions. That is the clear message from the Institute of Internal Auditors, the global body of national affiliated internal audit institutes, which has just put into action its new Global Internal Audit Standards.
FinCEN announces FATF watchlist update: Laos, Nepal added, Philippines removed
The Treasury Department’s Financial Crimes Enforcement Network (FinCEN) announced two countries have been added to the Financial Action Task Force (FATF) watchlist, while another has been removed.
CPE Webcast: The 2025 Compliance Playbook: Addressing top risks and priorities
In this webinar, Resolver will present exclusive insights from our latest Compliance Week survey, exploring the strategic priorities for 2025 and how organizations can adapt to emerging challenges.
CFTC first agency to describe self-reporting credit under Trump
The CFTC issued new guidance for firms seeking to self-report misconduct, accompanied by a “mitigation credit index” that details how “exemplary” cooperation and remediation can knock up to 55 percent off the final penalty. The agency is the first enforcement agency to issue self-reporting guidance under President Donald Trump.
Former Deloitte partner dinged by PCAOB for failures in Bancolombia audit
A former Deloitte partner will pay $75,000 and be barred from working as a public company registered accountant for two years by the Public Company Accounting Oversight Board after violating audit standards during a 2016 audit.
Trump has called for a six-month ban on FCPA enforcement. How should compliance respond?
With a six-month ban on enforcement of the Foreign Corrupt Practices Act, compliance should retreat from fear-based messaging and instead focus on why ethical practices make good business sense, experts say.
Photo gallery: Cyber Risk & Data Privacy Summit
Compliance Week’s Cyber Risk & Data Privacy Summit, held Feb. 10-11 in Alexandria, Va., gathered legal, compliance, and risk professionals in person for the first time since before the pandemic to benchmark best practices on managing cyber risks.
What’s keeping compliance leaders up at night? Struggles and strategies for 2025
Managing the unrelenting pace and increasing complexity of regulations is the top concern among compliance professionals, according to a recent survey by Compliance Week and Resolver.
Experts: Prepare now with U.K. failure to prevent fraud offense on horizon
Fraud prevention is about to get more complicated with penalties rising sharply for U.K. organizations. Starting Sept. 1, larger businesses will be liable to criminal prosecution if any of their employees–or an agent, subsidiary, or other “associated person”–commits fraud that is intended to benefit the company.
CW nomination deadline for 2025 ‘Excellence in Compliance Awards’ closed
The nomination deadline has closed for Compliance Week’s sixth annual “Excellence in Compliance Awards.”
GM sued by FTC for selling location and behavioral data without drivers' consent
General Motors failed to disclose to customers that it tracked their precise locations and driving behavior and sold the data to third parties, the Federal Trade Commission alleged in a proposed order.
SEC issues $63M in fines to dozen firms in ongoing off-channel comms sweep
Twelve more firms have been dinged with fines by the Securities and Exchange Commission for failing to properly supervise employees who used off-channel communications to conduct company business. In this latest round of enforcement actions, nine investment advisers and three broker-dealers will pay a total of $63 million.
Experian failed to correct flawed financial data about consumers, CFPB complaint alleges
Experian, the credit reporting giant, let compliance slide when it came to addressing consumer complaints about incorrect data, the Consumer Financial Protection Bureau said in a lawsuit against the credit agency.