Compliance Tip of the Day: Rethinking Corporate AI Governance Through Design Intelligence
Compliance Tip of the Day: COSO Governance Framework: Part 4, Culture
Compliance Tip of the Day: COSO Governance Framework: Part 1, Introduction
Compliance Tip of the Day: Internal Control Deficiencies
FCPA Compliance Report: Stay the Course: Ellen Lafferty on Navigating Anti-Corruption Compliance in 2025
Adventures in Compliance: The Novels – The Hound of the Baskervilles, Introduction and Compliance Lessons Learned
Compliance Tip of the Day: Assessing Internal Controls
Key Discovery Points: BYOD Case Law Covering Subpoenas and Employee Handbooks
Compliance Tip of the Day: COSO Objective 5 – Monitoring Activities
Compliance Tip of the Day: COSO Objective 4 - Control Information and Communication
Hospice Insights Podcast - Election Inspection: Be Proactive to Avoid Costly Election Statement Denials
Compliance Tip of the Day: COSO Objective 3 – Control Activities
Compliance Tip of the Day – COSO Objective 1 – Control Environment
Compliance Tip of the Day: Code of Conduct as an Internal Control
Rethinking Records Retention
Compliance Tip of the Day: Internal Controls for GTE
FCPA Compliance Report: Revolutionizing Speak Up: Ariel D. Weindling on Enhancing Whistleblower Systems
Compliance Tip of the Day: Implementing Internal Controls
Podcast: Addressing Patient Complaints About Privacy Violations
Compliance Amidst a Global Consensus Breakdown
In June 2025, the ABA held its annual Risk and Compliance Conference. The conference heavily focused on how banks are leveraging AI to support front-, middle-, and back-office functions. Conference participants noted that...more
The Bank of England and the Prudential Regulation Authority (PRA) have released a letter to PRA-regulated firms and relevant financial market infrastructure (FMIs) outlining the thematic findings from the 2024 Cyber Stress...more
The UK Financial Conduct Authority (FCA) has published the findings of its multi-firm review into risk management and wind-down planning across e-money and payment firms. While the FCA had observed examples of good practice...more
Hogan Lovells and Teneo have worked together to produce the first in a series of articles aimed at helping regulated firms (and particularly those that hold client money and safe custody assets) better understand the rules...more
The UK Prudential Regulation Authority (PRA) has published a policy statement on the identification and management of step-in risk (PS5/25). The policy statement provides feedback on responses to consultation paper (CP) 23/23...more
Remediation occurs for a host of reasons. You may identify remediation risk from internal activities (e.g., an audit, a control break) or external activities (e.g., a complaint, a regulatory exam, a lawsuit). Sometimes a...more
Ensuring high-quality standards in any organization is an essential ingredient that must be rooted within a company’s Quality Management Program (QMP) – a program that creates a framework to ensure quality....more
The EU’s Digital Operational Resilience Act (DORA) becomes binding on 17 January 2025. As the compliance deadline approaches, EU financial regulators (ESAs) have issued a flurry of statements on the act, including: - An...more
In December 2024, a task force consisting of 24 representatives from the Democratic and Republican parties issued a 273-page report with key findings and recommendations in relation to Artificial Intelligence on a...more
The Digital Operational Resilience Act (DORA) establishes a harmonised and comprehensive framework for information and communication technology (ICT) risk management in the financial sector. It is a directly applicable EU...more
On June 27, 2024, the Financial Industry Regulatory Authority, Inc. (“FINRA”) issued Regulatory Notice 24- 09 (the “Notice”) reminding member firms that FINRA’s rules and the securities laws apply to the use of artificial...more
SEC DROPS NEW REQUIREMENT FOR INCIDENT RESPONSE PROGRAMS, PROPOSAL FOR RIAS TO ADOPT CIP, SEC EXAMS SHARES MARKETING RULE FAILURES, RIA SLAMMED FOR FAILING TO RETAIN TEXTS, AND SEC WINS ON SHADOW TRADING THEORY - Welcome to...more
States are taking varied positions on environmental, social, and governance (ESG) policies as a tool for investing and risk management. Many businesses have adopted ESG policies and states’ responses to this practice have...more
At the start of 2024, the New York State Department of Financial Services (“DFS”) issued an industry letter: Guidance on Assessment of the Character and Fitness of Directors, Senior Officers, and Managers (the “Guidance”),...more
Start Planning Now to Reduce Your Increased Money Laundering, Sanctions, and Conflicts of Interest Risks The introduction and use of generative artificial intelligence (GenAI) and predictive data analytics (PDAs) by...more
Editor's Note: The following newsletter provides a roundup summarizing enforcement actions, guidance, rulemakings, and other public statements taken by a federal and/or state financial services regulatory agency, specifically...more
On November 1, 2023, New York Department of Financial Services (NYDFS or the “Department”) released the finalized revisions (the “Second Amendment”) to 23 NYCRR Part 500 (Part 500) – the most significant modifications to Part...more
Guidance for the largest US financial institutions is intended to promote climate risk management consistent with general safety and soundness practices. On October 30, 2023, the three US federal bank regulatory agencies...more
The U.S. Department of the Treasury's Office of the Comptroller of the Currency (OCC), Board of Governors of the Federal Reserve System (Board) and the Federal Deposit Insurance Corp. (FDIC) (collectively, the Agencies) on...more
On October 24, 2023, the Federal Reserve (Fed), Federal Deposit Insurance Corporation (FDIC), and Office of the Comptroller of the Currency (OCC) issued the joint agency climate-related financial risk management guidance for...more
Introduction - Further to a recent update, in which the Government, in consultation with the Jersey Financial Services Commission ("JFSC"), announced its intention to make legislative changes to the anti-money laundering,...more
Last month, Gurbir Grewal, the Director of the SEC’s Division of Enforcement, spoke at the Financial Times Cyber Resilience Summit. During the remarks, he outlined the importance of cybersecurity and signaled that the SEC is...more
Agencies Issue Final Guidance on Third-Party Risk Management - On June 6, the Federal Reserve, FDIC, and OCC issued final joint guidance (the Guidance) pertaining to banking organizations’ risk management of third-party...more
Roundtable Discussion: Off-Channel Communications and Mobile Surveillance Policies - Surveillance, monitoring, escalation, and reporting are critical components to regulatory compliance and risk management. So is...more
As cyber-attacks and data breaches pose an increasing threat to market participants, the US Securities and Exchange Commission (“SEC”) has become increasingly focused on the cyber risks to the public and the market at large....more