10 tips to comply with the U.K.’s new data law
Changes to the U.K.’s privacy regime will immediately affect how companies handle AI-driven decisions, cookie usage, and responses to data subject requests. As a result, experts are warning compliance teams to ensure their organizations take the legislation seriously and make plans to review data governance.
U.K. hopes to create ‘third way’ in AI regulation between EU and U.S.
The U.K.’s data regulator has unveiled a new enforcement approach to AI development and usage that experts say seeks to carve a middle way between the strict rules applied by the European Union (EU) and the pro-industry, light-touch regime favored by the U.S.
Aug 7 | No Longer Optional: The Future of AI in TPRM
Don’t miss this opportunity to prepare your organization for the future of TPRM and stay ahead with AI as your second-in-command.
Google AI Overviews under EU scrutiny after publishers file antitrust complaint
Google has once again been hit with an antitrust complaint. This time, it’s not about its Chrome browser or Google Search business, but instead the company’s use of AI.
Google told to pay $314M over cellular data in California class action suit
A jury in California last week said Google misused cellular data from people who owned smartphones powered by its Android software, and must pay users in the state roughly $314.6 million.
Crypto firms brace for tighter UK oversight as FCA plots integration with financial markets
Trying to put rules in place to oversee an industry that has grown largely outside of regulation is not without serious challenges. But the UK’s Financial Conduct Authority’s (FCA) latest consultation aims to attract industry views about how some key aspects of crypto trading should be regulated ahead of planned ...
Seven years in, GDPR faces growing challenges from AI and ‘consent or pay’ models
Europe’s pioneering data protection legislation turned seven years old in May, but the compliance and enforcement difficulties that have dogged the rules since they came into force look set to present both companies and data regulators with fresh headaches for some time to come.
What is AI washing and why companies need to stop exaggerating their AI prowess
The buzz around generative AI has reached fever pitch over the past few years—to such an extent that it’s practically a death knell for any company to say it’s not investing massively in gen AI to transform their business. There’s only one problem: many companies are either being misleading or ...
Communication and relationships is increasingly critical for compliance teams
Compliance is increasingly in the spotlight as companies are tackling everything from artificial intelligence and other new technologies to risk management and mitigation. But it’s soft skills of communication and relationship building that are becoming the most critical tools for success.
Technology advancements are making export controls more important than ever
Russia’s invasion of Ukraine has sparked a war with unusual implications: The U.S. has stepped up sanctions and export controls. But companies are increasingly learning that the most seemingly innocuous products can find themselves in “dual use,” as a product for daily life and a product for war. A gyroscope ...
U.K. reins in crypto firms to combat ‘scandal’ of freewheeling finfluencers
Up to 25,000 people a year in the U.K. are illegally promoting financial products or offering financial advice on social media, but none have yet appeared in court, according to the first Treasury Select Committee meeting on the subject of so-called “finfluencers.” Regulated financial services firms must comply with strict ...
ESG goes beyond politics: Vendor management, forced labor, sustainability
ESG is no longer in vogue. But its issues still are.
Google’s $500M compliance overhaul may fall short, amid antitrust fallout
Google parent Alphabet has struck a new agreement with shareholders, settling a shareholder lawsuit with a promise to ”completely revamp and rebuild its global compliance structure,” according to a new legal filing. The investment may not go far enough to reform Alphabet’s compliance failings, which are particularly under scrutiny following ...
For the first time, a majority of compliance teams using AI: Inside the Mind of the CCO
For the first time, more compliance teams than not used artificial intelligence (AI) to assist them in their work, according to Compliance Week’s 2024 “Inside the Mind of the CCO” survey.
CPE Webcast: The Compliance Practitioner Challenge: Staying Ahead of AI Regulations
As AI presents new opportunities to drive insight and efficiency, it brings new challenges of risk mitigation and overall company protection.
Trump administration launches pressure campaign against EU Digital Services Act
The Trump administration is preparing to ask the European Union to alter or water down its rules on content moderation on social media, claiming that they hurt the competitiveness of American technology companies.
Calls for audit reforms intensify after hackers attack Harrods and other top UK retailers
Cyberattacks on major UK retailers, including Marks & Spencer, Harrods and Co-op, left the companies scrambling to reassure customers and staff about stolen data, pushing issues of cybersecurity and cyber resilience back into the national debate. Now the question is whether compliance managers should expect more technology regulations, or will ...
CFPB drops Google Payment oversight, latest enforcement pullback under Trump
The Consumer Financial Protection Bureau continued advancing President Donald Trump’s pullback of corporate oversight last week, as it halted supervision of Alphabet’s Google Payment subsidiary. The move followed similar efforts by the Trump administration to weaken government enforcement efforts, particularly concerning digital currencies.
Q&A: Symphony general counsel Corinna Mitchell on regulators’ push for supply chain resilience
Secure, resilient communications and trading platforms are critical both to financial services firms and to governments that know their economies depend upon them, says Corinna Mitchell, General Counsel at FS digital communications provider Symphony. That’s why her company is investing more in managing rapidly evolving compliance demands from multiple regulators ...
For addressing the risks and rewards of AI, Adam Ennamli is Innovator of the Year
When he was hired two years ago by General Bank of Canada (GBC), Adam Ennamli was tasked with shaking up the bank’s compliance function.
EU hits Apple, Meta with antitrust fines weeks after Trump tariffs announced
The European Union issued significant antitrust fines against two tech titans, hitting Apple with 500 million euros (U.S. $570 million) and Facebook owner Meta with 200 million euros (U.S. $228 million). The move sought to undermine key parts of both companies’ businesses less than a month after U.S. President Donald ...
FTC sues Uber over deceptive subscriptions, a rare move for consumers by Trump officials
The Federal Trade Commission (FTC) filed a lawsuit against Uber, alleging the ride-hailing company signed customers up for its Uber One subscription without consent, then made it hard for them to cancel. The move marks the U.S. government’s latest broadside against big tech companies, and the first major action from ...
Is Google headed for a breakup? Second federal judge calls it a monopoly
A federal judge has ruled that Google “willfully engaged in a series of anticompetitive acts” in the advertising technology industry, the latest antitrust setback in what could become a string of losses for tech companies.
AI regulation: U.K. sits on regulatory fence between U.S. and E.U.
The U.K. has pressed pause on artificial intelligence regulation as its government comes under twin pressures from those who fear the growing power of unregulated AI and the overriding need to generate growth. The postponement of long-expected legislation means that the U.K. is left sitting on the fence between federal ...
CPE Webcast: Embracing AI: Navigating compliance and adoption for success
This session will cover AI adoption strategies, ISO 42001 guidance for trustworthy AI systems, and the importance of accurate data as a critical foundation for AI success.
Navigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
EU regulator questions 'culture of compliance' with Digital Markets Act at Apple, Google
The European Commission released its preliminary findings last week regarding Apple and Google not complying with the Digital Markets Act. It issued orders to both companies regarding their business practice and plans to release all of its findings next week.
Making a pitch for compliance: The great chase for stakeholder engagement
Speakers at Compliance Week’s Ethics and Compliance Summit swapped engagement strategies rooted in human behavior, including with through the use of generative AI, free merchandise, and live events, to meet employees where they are.
Compliance should be a business partner, not a blocker
Compliance has long been viewed by some as the “Department of No.” What typically happens is a new product or service is being launched, and compliance is brought in at the end of the process. Inevitably, the compliance team finds aspects of the new product or service that violates a ...
Experts: Companies ‘underestimate risk’ as first provisions of EU AI Act come into force
A European Union-wide ban on AI systems with “unacceptable” risk came into force on Feb. 2 as the first provisions of the EU’s AI Act took effect. Problems persist, however, over what the legislation requires and what corporate practices or uses of data may risk flouting the rules.
Robinhood pays $30M in fines, restitution for faulty AML program, customer disclosures
Robinhood will pay nearly $30 million in penalties for violating Financial Industry Regulatory Authority rules with shortcomings in its anti-money launderingprogram, as well as supervisory and disclosure violations.
Why are CFOs struggling to stay compliant?
CFOs are tasked with overseeing an organization’s entire financial processes, not least ensuring that financial operations remain compliant with the multitude of global regulations. It’s a heavy burden to carry that might be alleviated slightly with the help of artificial intelligence, writes Markus Hornburg, head of compliance at Basware.
Dismissal of CFPB’s Zelle case marks shift to ‘collective effort’ in consumer protection
The Trump administration isn’t slowing down its efforts to defang the Consumer Financial Protection Bureau, with lawsuits dropped against a handful of big banks and financial services firms, most notably a case previously accusing payments app Zelle of failing to secure its network.
Shareholders back Apple sticking to DEI goals as Trump blasts move
Tech giant Apple solidified its commitment to diversity, equity, and inclusion at its annual shareholder meeting on Tuesday, with 97 percent of shareholders rejecting an anti-DEI proposal, according to a public filing.
CPE Webcast: Aligning compliance and IT teams to meet DORA requirements
In this webinar, industry experts will provide actionable strategies for aligning compliance and IT teams to strengthen cyber resilience while staying ahead in an increasingly complex and dynamic regulatory environment.
New era dawns on crypto industry with SEC dismissal of Coinbase case
The Securities and Exchange Commission dismissed its lead case against the cryptocurrency industry, a lawsuit against crypto exchange Coinbase, signaling an about-face in the agency’s enforcement approach toward digital assets under President Donald Trump.
Summit will offer framework for ethical AI use
Artificial intelligence tools are being adopted at a rapid clip in many organizations, in some cases without proper guardrails and without taking ethical considerations into account.
Survey Report: Organizations broadly adopting AI, with varied governance
The vast majority of organizations are using artificial intelligence and generative AI, for everything from upping efficiency to driving innovation.
U.K. competition and markets regulator wields new power to combat fake online reviews
Fake reviews of products and services are a global phenomenon, but regulators in the U.K. are beginning to use newly expanded powers to protect buyers and honest competitors following a recent crackdown by U.S. authorities.
Apple bucks trend in Big Tech, defies anti-DEI headwinds
Apple, one of the most valuable tech giants on the planet, is pushing back against pressure to stop diversity, equity, and inclusion efforts, saying that “a culture of belonging” remains a core value of the organization.
Lawsuits filed to save CFPB amid Trump push to shutter financial watchdog
Enforcement and all other operations at the Consumer Financial Protection Bureau have come to a screeching halt under Trump administration directives but a pair of lawsuits aimed at keeping the agency open mean the stoppage could be short-lived.
Financial crime in the shadows of the dark web
The dark web has been depicted as a long-standing hub for crimes, where illegal activities such as drug dealing, financial fraud, weapon sales, murder for hire, stolen credit cards, and ransomware gags are easily accessible to the public.
What’s keeping compliance leaders up at night? Struggles and strategies for 2025
Managing the unrelenting pace and increasing complexity of regulations is the top concern among compliance professionals, according to a recent survey by Compliance Week and Resolver.
Experts: U.K. digital market reforms a ‘watershed moment,’ could speed up enforcement
The U.K.’s competition regulator has outlined new plans to regulate Big Tech firms that will enable it to take a much more flexible and proactive approach towards investigations.
FBI, Europol shut down hacking sites selling personal info, tools for cybercriminals
Two massive hacking websites–where criminals sold everything from stolen social security numbers to tools for cybercriminals to gain access to computers–have finally been shut down by an international law enforcement team, the Department of Justice announced.
EDPB shift forces AI firms to embed procurement, risk management in GDPR considerations
Efforts to clarify the circumstances in which artificial intelligence models may or may not be violating the General Data Protection Regulation could result in yet more confusion for tech firms, companies deploying the technology, and even data protection authorities, according to experts.
DOJ indicts five in remote IT work scheme to circumvent North Korean sanctions
Five people, including two Americans, allegedly duped U.S. companies into hiring North Koreans for contract IT work, and funneled millions in U.S. dollars to the sanctioned regime, the Department of Justice said.
CPSC fines Google-owned Fitbit $12M for failing to report smartwatch burn hazard
The U.S. Consumer Product Safety Commission ordered Google-owned Fitbit to pay more than $12 million and comply with certain undertakings to settle allegations the company knowingly failed to report a serious burning hazard with its Ionic smartwatches.
Experts say DORA compliance not coming easy as more firms pass buck to IT providers
New rules have come into effect across the European Union to promote better cybersecurity and IT resilience across the financial services sector, but experts warn that compliance is likely to be patchy and regulatory enforcement across the bloc perhaps even patchier.
Trump gives TikTok 75-day reprieve after ban goes into effect
President Donald Trump signed an executive order Monday delaying the Department of Justice (DOJ) from enforcing the long-awaited TikTok ban. While the social media platform’s fate is still up in the air, Trump signaled his support for it being sold, with the U.S. as a “partner.”