GDPR logo on map of europe

How GDPR Enforcement is Shaping Up in Europe

Posted by - December 13, 2018
(And Why U.S. Companies Should Take Note) The General Data Protection Regulation (GDPR), Europe’s sweeping data protection law, has been in effect for six months, and while fines have yet to be levied against U.S. companies for breach of the law, enforcement is beginning to take hold. Anne Shannon Baxter…
Read More
bills on scale

TRACE: Measuring Corruption

Posted by - December 12, 2018
Robert Clark, Manager of Legal Research at TRACE, discusses the challenges associated with measuring something as widespread and varied as corruption and refinements to the 2018 TRACE Bribery Risk Matrix after another year of research.  
Read More
bills hanging on line to dry

AML Compliance: Spotlight on Nordic Banks

Posted by - December 11, 2018
The Changing Landscape As AML regulations are getting more stringent globally, criminals are focusing on using countries with lowest risk categorizations and intermediary banks with high credibility to launder money. The latest victims of this crime are the Nordic banks, which were until recently among the safest and most stable…
Read More
whirlwind coming from empty paper box held by businessman

The Data Privacy Whirlwind Grows in California

Posted by - December 10, 2018
What the CCPA Signals About the Future California is leading the way to pass meaningful legislation on data privacy and cybersecurity. The new California Consumer Privacy Act (CCPA) is a strong complement to the EU’s GDPR, although many businesses will need to comply with both regulations. This primer by CipherCloud’s Anthony James on the CA…
Read More
perpetual motion balls with one red ball in center and label reading time for change

Compliance Success Starts with Change Management

Posted by - December 7, 2018
Best Practices for Merging Security and Compliance Within many organizations today, security and compliance teams are running in isolation. This introduces significant enterprise risk, as the security team might be doing what’s best to combat advanced attackers, but their actions may not be in compliance with corporate, industry or federal…
Read More
compliance in speech bubble

The Purpose of a Compliance Program

Posted by - December 6, 2018
To Prevent and Detect Compliance programs exist for the purpose of protecting against misdeeds, and the most effective programs are those that exist within a culture of ethics. Michael Volkov discusses the truism that a company’s culture and its compliance controls are mutually reinforcing. I do not think there is…
Read More
black and white arrows merging into one

Integrated Risk Management: The Intersection of GRC and RMIS

Posted by - December 6, 2018
3 Arguments for Integrating RMIS and GRC Processes Gartner suggests that integrated risk management (IRM) is the next evolution of risk management practices. This piece from Riskonnect’s Dawn Ward explores IRM practices and what they mean specifically for GRC and enterprise risk. As risk controls and appetites evolve, managers continue…
Read More
businessman facing minefield

Common Pitfalls in Third-Party Due Diligence

Posted by - December 5, 2018
5 Risky Mistakes Companies Make Third-party relationships result in a majority of FCPA resolutions and investigations. Dan Wendt, member at Miller & Chevalier, discusses why third-party due diligence should be a central part of any anti-corruption program and shares insights into some of the customary ways companies fall short in…
Read More
collaboration word engraved on gears

If You Want Better Compliance, Focus On Collaboration

Posted by - December 4, 2018
Ensuring Both with Cloud Enterprise Content Services For many years, there has been a fear among IT professionals that the user freedom and empowerment offered by collaborative systems would make it difficult to adhere to processes and enforce compliance standards. However, in today’s digital world, enterprises need both compliance and…
Read More