Policy changes underscore need for enhanced child labor due diligence
Rooting out potential child or forced labor violations in your company’s supply chain can have benefits beyond protecting reputation and being ethically sound. The process can also help your firm comply with pending child labor laws in other jurisdictions.
The auditor’s role in supply chain due diligence
Although compliance should be the company’s primary responsibility, auditors have become the last line of defense and are getting pressured and blamed for supply chain issues, including instances of child labor. Is this expected to become the normal for the profession?
U.S. banking regs mulling enhanced operational resiliency frameworks
Acting Comptroller of the Currency Michael Hsu said federal banking agencies are considering enhancements to their operational resiliency requirements for member banks.
DOL seeking more authority in crackdown on child labor violations
The Department of Labor has stepped up its enforcement of child labor law amid a concerning rise in child labor exploitation, yet the agency acknowledges its resources are not great enough to be a significant deterrent for such misconduct.
Child labor violations are on the rise in U.S. Are they in your supply chain?
The compliance community has not been spending time addressing a problem mistakenly thought to be a rarity: The proliferation of child labor violations occurring in the United States.
EU to ban sale of products made with forced labor
The European Union announced an agreement to ban products made with forced labor, a decision that will oblige organizations to track and declare more information about their supply chains for goods entering EU markets.
CPE Webcast: Applying traditional TPRM security and data privacy practices in the digital space
This webinar explores the compliance challenges posed by evolving privacy regulations and the recent explosion of class-action litigation arising from third-party advertising technology on websites.
Metropolitan Commercial Bank adds risk chief, AML officer
Metropolitan Commercial Bank announced the appointments of a chief risk officer and Bank Secrecy Act/anti-money laundering officer to bolster its reporting lines following a $30 million enforcement action from federal and state authorities last year.
Best practices for determining need for a human rights policy
Does your business need a human rights policy? An increasing number of organizations believe they do, according to research firm Gartner.
March 28 | Rapid expansion of global forced labor regulations
Join us as we dive into the best practices for performing due diligence across your entire supply chain—from the sourcing of raw materials to the delivery of finished goods—to become (and stay) compliant with this ever-evolving landscape.
Q&A: ManpowerGroup compliance director on CSRD prep efforts
James Levey, compliance director at global recruitment agency ManpowerGroup, discusses with Compliance Week his focus on preparing the group’s European operations to gather the data required for compliance with the EU’s Corporate Sustainability Reporting Directive.
CPE Webcast: TPRM: Time to change how you approach vendor assessments
Forward-thinking third-party risk management teams are changing the way they approach vendor assessments.
Alphabet to pay shareholders $350M over Google+ privacy lapses
Alphabet, the parent company of technology giant Google, agreed to pay $350 million in a preliminary settlement with shareholders over alleged data privacy violations and materially false and misleading statements linked to now-defunct social media site Google+.
U.K. Post Office scandal sparks contractor accountability debate
The recent furor in the United Kingdom over the Post Office’s wrongful prosecutions of sub-postmasters for alleged fraud has put the government’s relationship with private contractors under the spotlight and raised questions about how companies could be held more accountable in future.
FCPA violations in China: Lessons learned from 2023 cases
Enforcement actions regarding alleged violations of the Foreign Corrupt Practices Act at 3M, Albemarle, Clear Channel Outdoor, and Royal Philips each had China touchpoints. Experts assess third-party risk management lessons learned from each case.
White paper: Quantify Third-Party Financial Risk to Efficiently Address Threats
Financial risk is one of the third-party risk management (TPRM) domains most likely to directly harm your organization.
NYDFS proposes AI use guidance for insurers
The New York State Department of Financial Services issued for public comment guidance for insurers operating in the state regarding their use of artificial intelligence systems and other predictive technologies.
Lessons from Albemarle, ABB: How data-driven compliance can help your firm
Andrew McBride, chief risk officer of Albemarle Corp., and Tapan Debnath, head of integrity, regulatory affairs and data privacy at ABB, discussed how and why their respective organizations use data analytics to conduct business as part of a recent webcast.
FinCEN analysis: Most common identity-related suspicious activities
Fraud remains the leading form of identity-related suspicious activity cited in Bank Secrecy Act reports by a large margin, while technologies enable greater overall risks around exploitation, according to new research from the Financial Crimes Enforcement Network.
Ten things I’d like to see happen in 2024
Election years in the United States, United Kingdom, and at European Parliament, along with ongoing geopolitical tensions, make 2024 difficult to predict—aside from the expectation compliance officers will be busy.
Freepoint Commodities to pay $99M in Brazil bribery FCPA case
Freepoint Commodities agreed to pay nearly $99 million to settle allegations by the Department of Justice that it paid bribes to Brazilian government officials in return for business from state-owned oil company Petrobras.
U.S. agencies issue ‘know your cargo’ transport compliance note
Five agencies of the U.S. government combined to issue best practices guidance for entities in the maritime and other transportation industries to help reduce risk of sanctions and export control violations and evasion efforts.
Efficiency, consistency among goals of modernized TPRM program
Managing directors at KPMG share how firms are making strides in building robust third-party risk management programs for the future.
OCC offers compliance guidance to banks on ‘buy now, pay later’ loans
New guidance from the Office of the Comptroller of the Currency advises banks to tailor their risk management strategies and lending oversight for “buy now, pay later” plans.
e-Book: Goals of a modernized TPRM program
Companies have shown a willingness to invest in technology to enhance their third-party risk management efforts. But that doesn’t mean new opportunities don’t remain.
Survey: Companies bullish on new tech amid enhanced sanctions scrutiny
Emerging technologies like automation and generative AI are on the radar as difference-makers for businesses serious about keeping pace with increasing regulatory scrutiny toward third-party due diligence and sanctions compliance, a survey conducted by Compliance Week and Certa found.
CPE Webcast: Better risk assessments: Practical, data-driven assessments made simple
Today’s risk assessments require improved quantitative, data-driven analysis, including interpreting inherent risk data in a meaningful way. Organizations are looking for risk assessments to be actionable, easier to execute, and defensible.
CPE Webcast: Elevating third-party safety: The art of TPRM and TPDD integration
This webinar will address the unique competencies of third-party risk and due diligence programs and examine when and how to align them to maximize the effectiveness of each.
A job never done: Tips for TPRM integration
Taking risk mitigation further and understanding your third parties and their risks can create value for your organization, practitioners discussed as part of a panel at CW’s virtual TPRM and Oversight Summit.
CPE Webcast: How to strengthen your TPRM to be more resilient
In this session, experts from Riskonnect and Deloitte will explore why it is important for organizations to align strategies, processes, and practices related to business resilience with the risks posed by third-party vendors and partners.
TPRM Summit: How to operate a risk-based due diligence program
A panel of experts broke down the nuts and bolts of integrating a risk-ranking strategy and tailored approach to third-party due diligence at CW’s virtual TPRM and Oversight Summit.
Due diligence in China: Mitigating arrest, detention risks
Lack of transparency around how to remain within the legal bounds of China’s national security laws has heightened companies’ concerns regarding performing on-site due diligence in the country.
CPE Webcast: Beyond the questionnaire: Tips to modernize your TPRM program
Join ProcessUnity for a discussion on how forward-thinking TPRM teams are incorporating new relationships, technologies, and techniques to mature their risk-reduction capabilities.
Supply chain due diligence must go beyond self-assessments
So many companies rely on suppliers to self-certify they comply with buyers’ codes of business conduct that the practice is “almost useless,” a panel of experts discussed at Compliance Week’s Europe conference in London.
CPE Webcast: Best practices for third-party due diligence for ethics & compliance
Increased regulatory and consumer scrutiny on the integrity of businesses has shined a spotlight on the reputational risks of unethical business practices involving third parties.
Survey: Risk chiefs feeling pressure from growing compliance mandates
Mounting compliance requirements and technological innovations have chief risk officers facing more complex risk environments, according to a KPMG survey.
Metropolitan Commercial Bank fined $30M for third-party oversight failings
New York-based Metropolitan Commercial Bank was assessed nearly $30 million in penalties by federal and state banking regulators for failing to properly oversee a third-party program manager whose prepaid cards were a popular target of fraud during the Covid-19 pandemic.
Digital Transformation of Compliance podcast: Stellantis CCO Darren Bradshaw
In this episode of the Digital Transformation of Compliance podcast series, Darren Bradshaw, chief audit and compliance officer at Stellantis, shares how the automaker has digitized and automated parts of its compliance function.
CPE Webcast: TPRM privacy compliance: 10 best practices when working with third parties
Businesses are facing an increasing amount of pressure to protect their customers’ data and demonstrate privacy compliance. At the same time, for most modern organizations, more data is flowing to third parties than ever before.
TransUnion settles with CFPB, FTC over tenant screening accuracy
Credit reporting agency TransUnion agreed to pay $23 million total across settlements with the Consumer Financial Protection Bureau and Federal Trade Commission for alleged tenant screening and security freeze deficiencies.
OCC examiners to focus 2024 attention on risks that led to bank failures
Bank examiners from the Office of the Comptroller of the Currency are focusing their supervision attention on how banks manage risks that brought down three mid-sized financial institutions earlier this year.
Discover dodges fine in FDIC order over consumer compliance shortcomings
Discover Financial Services disclosed it avoided a monetary penalty in agreeing to a consent order with the Federal Deposit Insurance Corporation over alleged compliance shortcomings at its subsidiary bank.
CPE Webcast: Interagency guidance on third parties: How the expanded scope affects everyone
This webcast will provide an overview of new interagency guidance on third-party relationships, as well as share practical advice to ensure your organization is fully prepared for the expanded scope and what this means for your organization’s TPRM program.
Deutsche Bank unit fined $25M in ESG, AML settlements
DWS Investment Management Americas agreed to pay $25 million in penalties across separate settlements with the Securities and Exchange Commission addressing alleged misstatements in environmental, social, and governance investments and anti-money laundering violations.
Experts: How ESG materiality assessments impact compliance
Transparency in environmental, social, and governance reporting has become an important goal, with materiality assessments impacting compliance outcomes, experts said during CW’s virtual ESG Summit.
CPE Webcast: TPRM Program and Technology Modernization
As organizations increasingly rely on third and fourth parties to support critical business services many are assessing their existing capabilities and modernizing their Third Party Risk Management (TPRM) programs and enabling technologies.
Survey: Tech gaps, third parties pose biggest ABAC threats
A recent survey conducted by Compliance Week and Morgan Lewis determined areas of insufficient resource support to combat bribery and corruption, along with trends in third-party due diligence.
Survey Report: Tech gaps, third parties pose biggest ABAC threats
Compliance professionals asked to assess their anti-bribery and corruption efforts indicated resource support deficiencies in areas including staffing and technology, according to a survey conducted by Compliance Week and Morgan Lewis.
Experts: SEC or not, Scope 3 GHG disclosure requirements coming
The actions of companies like Amazon and new legislation passed in California prove it’s no longer a question of if companies will be required to disclose their greenhouse gas emissions—it’s a question of when, experts told attendees at CW’s virtual ESG Summit.
CPE Webcast: Seven practical tips for ongoing third-party risk monitoring
Are you staying vigilant when it comes to third-party risk? With more businesses relying on external third parties, it’s critical to monitor third-party risk on an ongoing basis.