All Articles

carrot stick

8 Critical Actions to Enjoy the Carrot & Avoid the Stick of DOJ’s Corporate Enforcement Policies

Though it’s announced a new focus on corporate criminal enforcement, the DOJ has also, helpfully, given companies a playbook for avoiding running afoul of the law. StoneTurn’s Jonny Frank explores eight actions firms can take to remain in the government’s good graces. DOJ's initial and further revisions to corporate criminal enforcement policies epitomize the carrot-and-stick...

red flag warnings

Fostering Risk Transparency in the Organization

Serious risks to your company’s financial and reputational health probably aren’t going to walk up and introduce themselves. Protiviti’s Jim DeLoach offers tips on digging to reveal these potential pitfalls. Risk transparency is vital to every company. When Mary Barra became CEO of General Motors in 2014, she had no idea her first order of...

budgeting compliance_n

How to De-Stress Budgeting for Your Compliance Program

Strong compliance programs don’t just happen. They require planning — and budgeting. Being thoughtful and proactive will help drive appropriate budgeting that supports and promotes program effectiveness, while reducing your stress both now and throughout the next fiscal year. ’Tis the season of budget management. Every year, around the time fall beverages show up at...

us cyber security_n

A National Cybersecurity Strategy Is Coming. Are You Prepared?

We don’t know exactly what will be in the upcoming national cybersecurity strategy. But, as FTI Consulting’s Anthony J. Ferrante explains, the policy will almost certainly be an improvement on the status quo. National Cyber Director Chris Inglis has said the Biden Administration plans to release a national cybersecurity strategy this year, perhaps as early...

best employees speak up

Why Our Best Employees Don’t Speak Up

Are we conditioning our employees not to speak up? The traits present in our best employees might make them less likely to raise issues, concerns and ideas. Compliance expert Courtney Sander explores integrating speaking-up practice within the business to benefit your compliance program and the broader organization. What makes good employees great can hurt a...

e stealing resources

Understanding Board’s Expanding ESG Obligations (Hint: It’s Not Just About the Environment)

Among public company directors' many obligations is mitigating ESG-related risks to the company, but as ESG columnist John Peiserich points out, in many organizations that means thinking about the environmental implications and not much else.  Former SEC Commissioner Allison Herren Lee gave an incredibly insightful keynote address at the 2021 Society for Corporate Governance National...

checklist

5 Tips to Gain Compliance on Your Compliance Training

We know that compliance doesn’t necessarily equal security and that training employees is vital to preventing cyber attacks. But a poorly trained worker is the same as one not trained at all, and in too many tech companies, training isn’t exactly exciting or inspiring. As Stu Sjouwerman explores, there are simple-but-effective methods to get everyone...

brazil election

Win-Lose Situation: No Matter Outcome of Brazilian Presidential Election, Corruption Wins (and Everyone Else Loses)

Brazil’s presidential contest will head to a two-man runoff election later this month, but if any observers had hopes for an anti-corruption movement to take hold in the country, Victoria Abut says the only thing that can’t win this election is transparency. On Oct. 2, the first round of Brazil’s presidential election failed to produce...

sec pay vs perf

Are You Ready for Stepped-Up Pay Vs. Performance Requirements in 2023 Proxy Season?

Most public companies will be required to disclose details about executive compensation starting with next year’s proxy statements, under rules the SEC formally adopted in August. Haynes Boone partner Rosebud Nau and associate Alexandria Pencsak sort through the information that will soon be required. In August, the SEC adopted Release No. 34-95607 implementing pay versus...

uk ico data access

UK’s Data Protection Regulator Signals Crackdown on Access Request Violations

Data privacy laws in the EU and UK established the right of individuals to find out what personal information organizations hold about them, but organizations aren’t always timely in answering subject access requests. Cordery’s Jonathan Armstrong and André Bywater discuss recent UK actions and explore methods for ensuring companies remain compliant with consumer data requests....

georgia election 2020

Ahead of Contentious Midterm Election, Political Players Should Be Mindful of Strict Georgia Compliance Rules

As 2022’s midterm Congressional elections approach rapidly, political groups from inside and outside the state are mobilizing in Georgia, targeting a hotly contested U.S. Senate election. Andrew D. Herman and Bria Stephens of Lawrence & Bundy explain why recently revised campaign compliance rules should give political actors in the state pause. Two years ago, Georgia...

cpo and ciso

Allies in Privacy, Security & Compliance: Why Closer Collaboration Between CPOs and CISOs Benefits Everyone

As a former chief privacy officer (CPO) of a publicly traded commercial real estate services firm, Maria D’Avanzo worked in close partnership with her company’s chief information security officer (CISO). They had regular meetings, shared information and issued joint messages and guidance on topics that had both privacy and security implications. Here, D’Avanzo explores the...