All Articles

The SEC packed a month’s worth of major developments into just a few weeks — and compliance teams are sorting through what it all means. CCI editorial director Jennifer L. Gaskin breaks down what’s changed, what hasn’t and where your attention should go.

Step One: inventory and classify AI use cases by risk level

Are you doing enterprise list management or enterprise risk management?

14 new outbreaks reported so far in 2026

When the parallel run has no exit criteria, it stops being a safety net and becomes the process

Essays on moral distancing, information silos and IP infringement

Majority of orgs report breach involving AI

The DOJ released its first-ever department-wide corporate enforcement policy ostensibly to bring fairness and transparency to the government’s decisions on charges against companies accused of criminal conduct. For corporate leaders hoping the new CEP would provide them with clarity on whether to self-report misconduct, some experts told CCI editorial director Jennifer L. Gaskin corporations may...

When a friend is the target of a report, resist the urge to disrupt established processes

New rules could spark compliance tension: share too much personal data run afoul of GDPR, share too little and face Data Act enforcement

Energy sector’s hesitation after fall of Maduro could be softening

OFAC issued 14 enforcement actions in 2025, but the more important signal may be who got dinged

AI tools have multiplied adviser output in financial services — and FINRA’s supervision framework was written for a different volume

Watch for inconsistency among warranty phrasing, support scripts and consumer communications

Controls and infrastructure banks have built over decades were designed for a different speed of money

Nearly 80% of in-house legal pros say AI funding will rise or stay steady

An executive went to trial. Another alleged scheme participant cooperated. Corsa Coal itself went bankrupt. Whatever executives thought the FCPA pause meant for their exposure, this case is a useful corrective — and former US Attorney Eric Olshan, who built the underlying prosecution, is in a rare position to explain exactly what happened and why...

When the mandate grows and the headcount doesn't, we have more options than we think

From scenario analysis to portfolio resilience reviews, the audit committee’s role in 2026 looks considerably different than the one most boards prepared for

Retaliation against compliance officers rarely looks dramatic — it looks like isolation, blocked development and quiet pressure to leave

Legal ops spent a decade solving a problem compliance hasn’t fully named yet

More firms planning to scale up fraud teams

As AI changes drug discovery and patent filing, governance frameworks are being constructed around technology that isn't waiting for them

If your board is still doing passive oversight and your controls are still manual, the gap between your program and examiner expectations is wider than you think

Majority of SMBs rank cyberattacks as biggest business risk

Crypto outflows, art market evasion routes and a Strait of Hormuz chokepoint — the sanctions and supply chain exposure from the conflict are already operating

In recent months, mega-retailer Target has found itself at the center of an object lesson in corporate governance — one that experts who spoke to CCI contributing writer Trevor Treharne suggest the company failed. The federal government’s surge of ICE agents to Minneapolis is reportedly drawing to a close, and while the budget for its...

When controls are system-enforced through approval logic and workflow dependencies, noncompliance becomes operationally difficult rather than procedurally discouraged

Digitalization and globalization have created financial institutions of every size and form, requiring compliance functions that scale from one-person teams to multi-layered departments

Secure AI adoption at scale is a leadership and change management challenge, not a purely technical one