Wait, that’s covered? Insurability of Fines and Penalties Flowing From a Cybersecurity Breach
FCPA Compliance and Ethics Report-Episode 31-the FCPA Year in Review, Corporate Enforcement Actions
FCPA Compliance and Ethics Report-Episode 30-Interview with the FCPA Professor-Part 2
Condo complaints not in writing?
Health Data on Leased Photocopier Costs Company $1.2m—What Others Can Learn
In the past half year of 2025, China’s antitrust watchdog has imposed fines on 11 individuals for antitrust violations, including sole proprietors, senior executives, and employees involved in cartels or obstruction of...more
Effective January 2025, the Occupational Safety and Health Administration (OSHA) hiked the maximum fines for workplace safety violations. As an example, the maximum fine for a “serious” violation is now $16,550 per violation,...more
This article examines the latest trends in U.K. regulatory enforcement and supervisory action and highlights the key takeaways for firms in 2025 and beyond. Over the past 18 months, the Financial Conduct Authority (FCA)...more
NIS2 (Network and Information Systems Directive 2) is the updated version of the NIS Directive, which the EU first introduced in 2016. The original NIS Directive aimed to enhance cybersecurity across member states by...more
You might have yet to hear of the NIS2 Directive, but you should be aware of it if you’re in any sector that relies on digital infrastructure. Whether you’re a business owner, IT professional, or curious about how the EU...more
The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, or AP) has issued a €290 million fine to Uber for violating the EU’s General Data Protection Regulation (GDPR)....more
On December 8, 2023, European Union (EU) lawmakers reached an agreement on the EU’s AI Act. The EU AI Act has many similar themes to the EU’s General Data Protection Regulation (GDPR) and reflects a big step forward in the...more
Report on Patient Privacy 23, no. 11 (November, 2023) Tim DiBona clearly remembers Christmas Eve 2018 when the staff of his small firm—Doctors’ Management Service (DMS)—arrived at their West Bridgewater, Mass., office to...more
On July 26, 2023, the Securities and Exchange Commission (SEC) implemented new cybersecurity rules to require disclosure of material cybersecurity incidents within four business days, with limited exceptions. Additionally,...more
Report on Supply Chain Compliance 3, no. 16 (August 20, 2020) - The Office of the Comptroller of the Currency fined Capital One USD 80 million for inadequate data controls leading to a 2019 data breach and for failing to fix...more
The line between lawful and unlawful unpaid work is not always clear. Many companies are contacted by people offering to work on a voluntary basis. It is often pitched as a “win-win” because the person is willing to work...more
Since the first enforcement actions have been initiated, some with significant fines, many companies may find themselves somewhat at a loss as they may not fully know how to assess the risks involved and how to react should...more
Under Russian Data Protection Law, when collecting personal data, data operators (controllers) must ensure that recording, systematization, accumulation, storage, updating and extraction of personal data relating to Russian...more
With it being Halloween, October being National Cybersecurity Awareness Month, and 2019 drawing to an end, let’s take a look at the data privacy breaches giving compliance professionals a fright this year! ...more
On 14 March 2019, the Dutch data protection authority (Autoriteit Persoonsgegevens, DPA) announced (in Dutch) its fining structure for violations of the European General Data Protection Regulation (GDPR) and the Dutch law...more
Another government settlement demonstrates that not having a HIPAA compliance program can be costly. U.S. Department of Health and Human Services (HHS)'s Office for Civil Rights (OCR) announced, on Dec. 4, 2018, that Advanced...more
On May 23, the new UK conduct regulator, the Financial Conduct Authority (FCA), fined J.P. Morgan for failings in its wealth management business that persisted for two years until 2012. Specifically, the bank failed to retain...more
Introduction: Allocation of antitrust risk is an issue that frequently arises between parties in mergers or acquisitions that raise potential antitrust concerns. • Motivations of the buyer and the seller are the...more
On February 6, the FSA issued a final notice to RBS imposing a fine of £87.5 million for misconduct in submitting rates for the calculation of LIBOR....more