Coinbase disclosed certain of its transactions are “under review” by the Office of Foreign Assets Control for potential violations of U.S. sanctions laws. Fellow cryptocurrency platforms BitGo and BitPay have each been fined by the regulator in the last three months.
Five senior compliance practitioners tell us how their companies have reacted to recent privacy legislation like the GDPR, CCPA, and other state regulations in the pipeline.
Aaron Nicodemus acknowledges Google’s decision to stop selling ads based on user browsing history as a good first step, while Kyle Brasseur laments apparent red flags ignored in the seemingly impending collapse of Greensill Capital.
The Center for Audit Quality and American Institute of Certified Public Accountants released a new roadmap that provides tools for independent auditors to support companies in achieving their ESG reporting goals.
Five senior compliance practitioners outline their strategies for protecting their firms from data breaches.
OFAC Director Andrea Gacki shares insights about her organization’s latest sanctions enforcement priorities, its expectations of sanctions compliance programs, and how to mitigate sanctions risk.
The long-awaited 2021 examination priorities of the Securities and Exchange Commission were released Wednesday, with climate- and ESG-related risks unsurprisingly among areas that will receive enhanced focus.
In what might be a sign of things to come for data privacy legislation nationwide, Virginia passed the country’s second comprehensive data privacy law. How does it stack up to its peer in California?
Five senior compliance practitioners tell Compliance Week how their organizations are reacting to new cyber-threats introduced by the pandemic.
Five senior compliance practitioners share insights on their roles in implementing and overseeing cyber-security policies and procedures.
LifePoint Health’s VP for Compliance Program Operations/Chief Privacy Officer Ellen Hunt and VP/CISO Andy Heins share how they work ”hand in glove” to protect their company’s data from bad actors.
The Biden administration is not so quietly making big moves in the area of ESG regulatory initiatives that should give CCOs the cachet to elevate these issues closer to the top of the priority list at their organizations.
An increase in the submission of suspicious activity reports for cash values that fall under the mandatory $10,000 transaction reporting threshold last year is a proactive step by banks, but more can always be done, writes Martin Woods.
Experts at CW’s “Compliance Considerations for the New Workplace” virtual summit discuss striking the balance between complying with laws applicable to matters of health and safety while still respecting employee privacy in the return to the office and beyond.
The SEC settled charges against gas exploration and production company Gulfport Energy and its former CEO Michael Moore for failing to properly disclose as compensation certain perks provided to Moore and related personal expenses.
Mandating COVID-19 vaccines for your workplace might not be as straightforward as following the legal precedent set by flu vaccines, an expert explained at CW’s “Compliance Considerations for the New Workplace” virtual summit.
If there were any doubts the SEC under the Biden administration will increase its expectations of public companies to assess and disclose climate change-related risks, they were laid to rest Wednesday.
It’s not realistic to outright ban talk of politics with coworkers, but in today’s polarized climate it’s smart to set policies and educate employees about lines that should not be crossed.
Threat Intelligence is normally used to enrich the process of security assessment, providing proof on the enforcement of security controls required to be secure and compliant.
As cyber-attacks surge, the need for cyber-insurance is growing more urgent. But it’s critical for companies to first familiarize themselves with how to navigate the labyrinth of cyber-insurance products on the market so that they are properly covered.
Two months after cloud service vendor Accellion first identified one of its legacy products was targeted by a sophisticated cyber-attack, users of the product continue to feel the impact, with grocery chain Kroger the latest to reveal its exposure.
Should you consider outsourcing some of your firm’s compliance functions? Perhaps, even, all of them? The answer is complicated and requires a thorough analysis of the risks and rewards.
After a bad week for motivational leadership in the United Kingdom, experts expound on who should really set “tone from the top.”
In the wake of COVID-19, compliance professionals need to be aware that the pandemic made instances of fraud more likely. This reflects the astonishing pressure put on governments and global financial systems and service providers to respond and adapt to the crisis.
Companies forced to pivot to remote work in a global health crisis spent the bulk of 2020 grappling with heightened cyber-security risks. A year later, compliance practitioners say their companies’ cyber-security postures are better for it—even in the wake of the stunning SolarWinds hack.
Aly McDevitt reviews “The Empathetic Workplace” by Katharine Manning, a practical guide that offers an eye-opening look into how employers should use empathy and soft skills to respond to employees in crisis.
Today’s breach landscape is unprecedented and complex. Every organization is facing potential enforcement of many interconnected and overlapping laws in multiple jurisdictions.
Compliance Week is pleased to announce James Comey will be joining two key virtual events this year—“Financial Crimes: Risks, Trends, and Proven Practices” from March 30-31 and “Compliance Week 2021” from May 11-13.
Jaclyn Jaeger lauds two oil companies for raising the bar on ESG commitment in the industry, while Dave Lefort assesses new developments in the Wirecard saga that point to greater failures in the firm’s internal controls.
There’s no question that F&A teams have been disrupted by the ongoing pandemic. In fact, nearly half of respondents in a recent survey said that closing virtually with a distributed workforce impacts the audit and other third-party engagements.
This one-hour Webinar covers what coronavirus pandemic training and education are needed to safely re-enter the workplace.
This guide will help you better understand the choices before you, no matter if your organization hasn’t even cracked the seal on third party cyber risk management.
The Securities and Exchange Commission has launched an investigation into Clover Health Investments in response to scathing allegations made against the Medicare provider by short-seller Hindenburg Research.
The Financial Industry Regulatory Authority has published a new report designed to help inform member firms’ compliance programs by providing annual insights from its examinations and risk monitoring programs.
The aftermath of the coronavirus pandemic dominates the top risks that will keep boards of directors and executive management teams on their toes in 2021, a new survey by Protiviti and NC State’s ERM Initiative finds.
Treasury Secretary Janet Yellen will meet with the heads of several regulatory agencies to discuss potential responses to the wild swings in value of GameStop and several other stocks.
A global panel of experts with law firm Gibson Dunn share insights around recent anti-corruption developments in some of the world’s largest regions, including China, India, Latin America, and Africa.
As Goldman Sachs cuts the pay of its top executives in response to more than $5 billion in penalties incurred for the 1MDB scandal, Martin Woods once again ponders whether bonuses helped facilitate the improper conduct that took place.
The more we learn about the SolarWinds hack, the more troubled compliance officers should be by the scope and breadth of the risks their companies might have incurred.
USAA announced the appointment of Neeraj Singh as chief risk officer nearly four months after its federal savings bank was fined $85 million by the OCC for compliance risk management failures.
The acting chair of the Securities and Exchange Commission has created a new senior policy advisor position on climate change and ESG, another signal the agency will prioritize both areas under a Biden administration.
Companies must make cyber-security a continuous priority as threats evolve, often more quickly than the technology and regulations to counter them. That’s why the New York Department of Financial Services, under Maria Vullo, developed a policy that should act as a model for organizations.
Corrupt activity bolstered by the coronavirus pandemic features heavily in the findings of Transparency International’s 2020 Corruption Perceptions Index, with even some of the highest-scoring countries having their share of challenges.
While Kyle Brasseur gives Data Privacy Day the shout-out it deserves, Dave Lefort explains why retail investors, the apps they use, and regulators all “Failed It” in the GameStop stock market craze.
Wall Street has been consumed this week watching a real-time battle unfold between retail investors and hedge funds over formerly moribund stocks like GameStop, AMC Entertainment, and BlackBerry. The compliance lessons lie in the levels of risk.
Actions taken by Robinhood and TD Ameritrade amid the crazy GameStop stock surge can be understood from the perspective of risk management, but who’s watching out for the retail investors? That’s where the real risks lie.
While big fines against big companies make headlines, Spain and Italy have flown under the radar as two of the most frequent enforcers of the GDPR, instead primarily focusing on smaller penalties. Might other countries follow suit?
With the pandemic lingering and the coronavirus vaccine shipping in the United States, we are hopefully beginning to turn the corner on the pandemic.
Janet Yellen takes over as leader of a Treasury Department with a lot on its plate, including studying the effects of climate change on the economy, unwinding Trump administration sanctions, revamping the Bank Secrecy Act, and more.
Norway’s data privacy watchdog issued gay dating app Grindr with a notice of intention to fine it NOK 100 million (U.S. $11.7 million) for sharing personal data with third parties without users’ consent.