Compliance Tip of the Day: Why Engage in Pre-acquisition Due Diligence
Compliance Tip of the Day: Bringing Predictive Analytics into Your Compliance Regime
Compliance into the Weeds: Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Adventures in Compliance: The Novels – The Hound of the Baskervilles, Introduction and Compliance Lessons Learned
Compliance Tip of the Day: Assessing Internal Controls
Compliance Tip of the Day: COSO Objective 5 – Monitoring Activities
Compliance Tip of the Day: COSO Objective 2 - Risk Assessment
FCPA Compliance Report: Fraud Risk Management - Insights and Experiences with Peter Schablik
#Risk New York Speaker Series – Inside Behavioral Insights: Tom Hardin on Compliance at #RiskNYC
Compliance Tip of the Day: COSO Framework
#Risk New York Speaker Series: Exploring AI Risks in Compliance with Gwen Hassan
Healthcare Enterprise Risk Management
Compliance Tip of the Day: Assessing Internal Controls in International Operations
Managing Sanctions Compliance
Regulatory Ramblings: Episode 68 - Why Geopolitical Risk Matters to Compliance and Legal Staff with Mark Nuttal and Chad Olsen
FCPA Compliance Report: Amanda Carty on a Due Diligence and Risk Management
Episode 364 -- Five Strategies to Mitigate a New Risk Environment
Strengthening Compliance: Lessons From the OCC's Consent Order With Patriot Bank — Payments Pros – The Payments Law Podcast
Compliance and AI: Ali Khan on Implementing AI Risk Management Systems
Join Thora Johnson and Jeremy Sherer to learn about: Evaluating compliance through privacy notices Key questions to address, from leadership accountability to employee training...more
I didn’t plan on working in cybersecurity. My path wasn’t exactly traditional, but every job I had taught me how systems break—technical or operational, it didn’t matter. ...more
Last month, Paul Hastings sponsored the Cybersecurity Law Workshop at the Spring Privacy & Security Forum held at George Washington University in Washington, D.C. The Cybersecurity Law Workshop featured three panels of...more
When assessing cybersecurity risk in your organization, it is important to understand your users and their behavior. A new study by Keepnet sheds light on new hire behavior concerning phishing susceptibility. According to its...more
An organization’s code of conduct often serves as the foundation upon which other elements of the compliance program—such as employee training and communications—are built. More than just a tool for establishing baseline...more
This summer, Mission: Impossible – Dead Reckoning Part Two is expected to raise the bar again with heart-stopping stunts, cliff-hanging escapes, and the relentless pace we’ve come to expect from the Impossible Missions Force...more
The phrase alone – human trafficking – is enough to stir outrage, discomfort, or disbelief. What many employers may not realize, however, is that you do not have to be a “trafficker” to be held liable for trafficking....more
High rates of violent acts against heath care workers pose a serious risk to the safety and wellbeing of the medical and support professionals on the front lines of patient care. Studies show that health care workers are five...more
The Bottomline: Five Practical Steps for Generative AI Risk Management - As the first line of defense, employees within business operations must own and manage risks related to the business, including risks resulting from...more
So, for those of you who missed last year’s “The Grinch Who Stole Compliance,” never fear: We have an endless supply of compliance-related holiday mirth. After all, who doesn’t like a bit of eggnog and the traditional singing...more
The Economic Crime and Corporate Transparency Act 2023 (the “ECCTA”) introduced a corporate ‘failure to prevent fraud’ offence providing that ‘large’ organisations may be held criminally liable if an ‘associate’ (such as an...more
On November 12, 2024, the DOJ Antitrust Division updated its Evaluation of Corporate Compliance Programs in Criminal Antitrust Investigations (ECCP), which was initially issued in 2019. The ECCP provides guidance to...more
On October 2, 2024, New York adopted new regulations requiring general hospitals to implement heightened cybersecurity safeguards. General hospitals, as defined in Article 28 of the NY Public Health Law, generally must begin...more
Earlier this week, the Antitrust Division updated its compliance guidance. The Division first issued guidance on its evaluation of corporate compliance programs in July 2019. This week’s updates follow multiple updates to the...more
On August 28, the Financial Crimes Enforcement Network (FinCEN) issued a final rule establishing anti-money laundering and countering the financing of terrorism (AML/CFT) compliance obligations for US Securities and Exchange...more
They appeared. They caused a fright. And then they disappeared… along with all of your data. While not a ghost, that is how most hacking groups operate and their ghostly presence is growing across the globe....more
On September 23, 2024, the U.S. Department of Justice (“DOJ”) released updates to its Evaluation of Corporate Compliance Programs (“ECCP”) guidance. In a move that surprised no one (especially if companies have been reading...more
A new duty on employers to take reasonable steps to prevent the sexual harassment of their employees takes effect on 26 October 2024. The Current Rules - While an employer can be vicariously liable for harassment...more
When corporations use Artificial Intelligence (AI) programs, they should be sure to use them in a manner that doesn’t result in the Department of Justice knocking on their door. The DOJ just released an updated version of its...more
As healthcare technology continues to evolve, so does the need for robust compliance strategies to safeguard patient information and ensure the integrity of medical devices. In a joint September 19, 2024 presentation, the...more
The UK Worker Protection Act 2023, amending the 2010 Equality Act, represents a significant milestone in safeguarding employees against sexual harassment. With a compliance deadline of October 26, 2024, this Act places a...more
The increasing threat of cyberattacks against U.S. water supplies has raised significant concerns among federal officials, who emphatically stress the need for utilities to bolster their cybersecurity measures. A recent...more
The human element in your supply chain - There is little risk in claiming that ESG (Environment, Social, Governance) has been one of the most used acronyms over the last few years. Some salient examples that changed how...more
Cybersecurity success depends on more than just technology. As we’ve seen in part one and part two of this series on cybersecurity risk, the costs of a cyber attack are high – and bad actors always look for the easiest entry...more
Today is World Password Day, a day for organizations to remind their employees of the importance of using strong passwords and practicing good password hygiene to protect personal and work accounts. Given the large number of...more