Compliance Tip of the Day: Why Engage in Pre-acquisition Due Diligence
Compliance Tip of the Day: Bringing Predictive Analytics into Your Compliance Regime
Compliance into the Weeds: Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Sanctions Compliance Failures: Lessons from Harman International and Interactive Brokers
Adventures in Compliance: The Novels – The Hound of the Baskervilles, Introduction and Compliance Lessons Learned
Compliance Tip of the Day: Assessing Internal Controls
Compliance Tip of the Day: COSO Objective 5 – Monitoring Activities
Compliance Tip of the Day: COSO Objective 2 - Risk Assessment
FCPA Compliance Report: Fraud Risk Management - Insights and Experiences with Peter Schablik
#Risk New York Speaker Series – Inside Behavioral Insights: Tom Hardin on Compliance at #RiskNYC
Compliance Tip of the Day: COSO Framework
#Risk New York Speaker Series: Exploring AI Risks in Compliance with Gwen Hassan
Healthcare Enterprise Risk Management
Compliance Tip of the Day: Assessing Internal Controls in International Operations
Managing Sanctions Compliance
Regulatory Ramblings: Episode 68 - Why Geopolitical Risk Matters to Compliance and Legal Staff with Mark Nuttal and Chad Olsen
FCPA Compliance Report: Amanda Carty on a Due Diligence and Risk Management
Episode 364 -- Five Strategies to Mitigate a New Risk Environment
Strengthening Compliance: Lessons From the OCC's Consent Order With Patriot Bank — Payments Pros – The Payments Law Podcast
Compliance and AI: Ali Khan on Implementing AI Risk Management Systems
Canada’s anti-money laundering (AML) regime is set to undergo its largest transformation yet with the sweeping amendments to the Proceeds of Crime (Money Laundering) and Terrorist Financing Act proposed in Bill C-2. In...more
In June 2025, the Department of Justice announced the largest coordinated healthcare fraud takedown in U.S. history. The numbers were staggering: 324 individuals were charged and more than $14.6B in alleged fraud, more than...more
With the continued absence of comprehensive federal privacy legislation after nearly 20 years of debate, state attorneys general (AGs) are increasingly asserting their role as primary regulators in the data privacy space....more
The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting...more
The Department of Justice (DOJ) is narrowing its focus on Foreign Corrupt Practices Act (FCPA) enforcement, prioritizing national security, U.S. competitiveness, and a crackdown on cartels. This is a critical development for...more
In the past several weeks, the U.S. Department of Health and Human Services ("HHS"), Office for Civil Rights ("OCR") has announced settlements with three health care organizations — Comstar, LLC ("Comstar"); Guam Memorial...more
Following the Federal Trade Commission’s decision in December 2023 to ban Rite Aid from using AI facial recognition, it has become crystal clear that U.S. regulators expect a risk assessment when a retailer uses facial...more
Health care organizations are under pressure to shore up their cybersecurity response efforts. Much of this pressure is coming from the US Department of Health and Human Services Office for Civil Rights (OCR), which has made...more
If you thought your company's collection of email address, IP address, zip code, birth date, or cookie data was too mundane to catch the federal government's attention – think again. Effective April 8, 2025, a new DOJ final...more
Catch up with Hudson Cook partners Anastasia Caton and Rob Tilley for this summer's latest trends in state AG enforcement. Temperatures are rising, and so are consumer defaults. We will give practical tips on how to assess...more
The intersection of international diplomacy and digital governance has reached a critical inflection point with the U.S. State Department’s groundbreaking visa restriction policy announced May 28, 2025. Under Secretary of...more
In the first five months of 2025, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced it had entered into ten Health Insurance Portability and Accountability Act (HIPAA) resolution...more
March 2025 marked the fifth anniversary of the Committee on Foreign Investment in the United States (CFIUS) initiative to “formalize and centralize” within the Department of the Treasury an enforcement function to identify...more
Back in March 2025, we published an article highlighting that Ofcom will be turning up the heat to ramp up pressure on platforms in relation to their duties to the UK’s Online Safety Act (OSA). There has been a flurry of...more
The Environmental Protection Agency announced April 28 a list of upcoming agency actions to address Per- and Polyfluoroalkyl Substances (PFAS). This week’s announcement provides a broad outline of EPA’s plans that centers...more
On April 24, 2025, the UK’s Office of Communications, commonly known as Ofcom—the regulator responsible for enforcing the UK’s Online Safety Act (OSA)—issued its Protecting Children from Harm Online Statement. The statement...more
The U.S. Department of Commerce’s Bureau of Industry and Security has issued the final rule that will determine how its Information and Communications Technology and Services regulations will work going forward....more
Following the Office for Civil Rights (OCR) recent publication of four settlements as part of a new Risk Analysis Audit Initiative. We explore the current regulatory language for Risk Analysis, the proposed language for Risk...more
On 6 April 2025, the unfair commercial practices provisions of the Digital Markets, Competition and Consumers Act 2024 (DMCC Act) entered into force, ushering in a new enhanced consumer enforcement regime administered by the...more
The New York Attorney General recently entered into an assurance of discontinuance with Root Insurance Company following a 2021 data incident. According to the AG, the threat actors obtained people’s drivers’ license numbers...more
Despite the Trump administration’s generally favorable stance toward cryptocurrency and blockchain innovation, virtual asset services providers (VASPs) must remain vigilant in complying with anti-money laundering (AML)...more
Among the many crucial elements of effective compliance initiatives (internal reporting programs, policies, procedures, training, supply chain management, M&A, and more) are risk assessments – the intended foundational...more
Background - On March 21, 2025, the U.S. Department of Health and Human Services, Office for Civil Rights (“OCR”) announced a settlement with Health Fitness Corporation (“Health Fitness”), a company that provides wellness...more
In this episode of Payments Pros, host Carlin McCrory discusses a recent consent order between Patriot Bank and the Office of the Comptroller of the Currency (OCC) following a $27 million loss. The order addresses unsafe...more