Episode 364 -- Five Strategies to Mitigate a New Risk Environment
Strengthening Compliance: Lessons From the OCC's Consent Order With Patriot Bank — Payments Pros – The Payments Law Podcast
Key Takeaways From the OIG's New Compliance Guidance for Nursing Facilities — Assisted Living and the Law Podcast
Envisioning a Compliant Workforce
Updating the Research Compliance Handbook
The Election's Impact on the FTC Will Bring Big Changes, But Being Vigilant Must Remain a Priority
Navigating the NYDFS' Cybersecurity Guidance on AI — The Consumer Finance Podcast
The Future of AI Regulation and Legislation: 5 Key Takeaways
Investigations and Cognitive Interviews
Fraud Prevention Techniques for Nonprofit Organizations - Part 3
Steps Your Nonprofit Can Take to Mitigate Fraud Risks - Part 2
A Third Party's Perspective on Third Party Risk
Implications of the SEC Cybersecurity Disclosure Rule
Privacy Issues from Third-Party Website Tags
What's the Tea in L&E? Employee Devices: What is #NSFW?
Preparing for a Government Healthcare Audit
Tackling Credit Push Fraud: Understanding Nacha's Risk Management Package (Part Two) — Payments Pros: The Payments Law Podcast
Compliance into The Weeds: The Complexity of Risk Assessments
Behavioral Health Compliance
The Importance of Assessment Areas
In the FDA-regulated industry, a compliance program isn’t just a formality—it’s a critical tool for protecting your business, patients, and reputation. Still, too many companies treat compliance policies as static...more
Ideal for practitioners who want to build strong foundational knowledge of compliance program management and how to apply that knowledge in practice. Attendees will come away better prepared to support, enhance, and manage a...more
HCCA's Healthcare Privacy Compliance Academy is a three-and-a-half-day interactive education program with a focus on the vast body of privacy laws and regulations in place to help you protect PHI and other critical data. Our...more
The U.S. Toxic Substances Control Act (TSCA) plays a critical role in regulating chemicals to safeguard human health and the environment. Its 2016 amendment expanded the U.S. Environmental Protection Agency’s (EPA's)...more
In its first-ever threat assessment of the UK legal sector, the UK’s Office of Financial Sanctions Implementation (OFSI) has raised red flags with regards to suspected sanctions breaches involving UK legal services providers...more
The midstream oil and gas industry, a vital artery of the energy sector encompassing crucial transportation and storage infrastructure, operates within a highly competitive and intensely scrutinized market. Beyond the usual...more
Remediation occurs for a host of reasons. You may identify remediation risk from internal activities (e.g., an audit, a control break) or external activities (e.g., a complaint, a regulatory exam, a lawsuit). Sometimes a...more
Ideal for practitioners who want to build strong foundational knowledge of compliance program management in a healthcare setting and how to apply that knowledge in practice. Attendees will come away better prepared to...more
In a consequential policy shift, the US Environmental Protection Agency (EPA) under the Trump administration announced its intent to reevaluate a cornerstone of modern chemical regulation: the risk evaluation framework rule...more
On April 4, 2025, the California Privacy Protection Agency (CPPA) Board met to discuss the latest draft California Consumer Privacy Act (CCPA) regulations related to cybersecurity audits, risk assessments, automated...more
When evaluating legal risk relating to per- and polyfluoroalkyl substances (“PFAS”), most businesses typically consider wastewater, groundwater, or soil impacts, not air emissions. However, state and federal regulatory...more
On this episode of Culture & Compliance Chronicles, Ropes & Gray partner Amanda Raad and Richard Bistrong of Front-Line Anti-Bribery, are joined by Alexandra Belmonte, the chief compliance officer at A.P. Moller - Maersk,...more
The CRA will affect a broad range of digital products placed on the EU market (including by those based outside the EU), including connected hardware/devices, software and remote data processing solutions. The EU has adopted...more
On April 8, 2025, the European Union (EU) Observatory for Nanomaterials (EUON) published a Nanopinion entitled “A Qualification System to Accelerate Development and Regulatory Implementation of New Approach Methodologies...more
Following the Office for Civil Rights (OCR) recent publication of four settlements as part of a new Risk Analysis Audit Initiative. We explore the current regulatory language for Risk Analysis, the proposed language for Risk...more
Congressman Rick Crawford of Arkansas’ First District introduced H.R. 2594 which is titled: Establishment of the Water Risk and Resilience Organization. The Bill would establish a Water Risk and Resilience...more
On 6 April 2025, the unfair commercial practices provisions of the Digital Markets, Competition and Consumers Act 2024 (DMCC Act) entered into force, ushering in a new enhanced consumer enforcement regime administered by the...more
On April 3, NIST published practical incident response guidance aligned with its CSF 2.0 framework. The guidance outlines best practices in security incident preparation and response for organizations mapped across each of...more
Spring has arrived, and in addition to cleaning, it’s a good time to reassess how your company is handling its trade secrets. Far from being static, trade secret innovations, processes, and data evolve over time. Business...more
In today's rapidly evolving business landscape, the role of the Chief Financial Officer (CFO) extends far beyond traditional financial stewardship. As organizations strive to navigate uncertainties, seize opportunities, and...more
The recent imposition of tariffs by the U.S. government has introduced significant complexities in contractual performance and risk allocation. It is important to assess how these tariffs may influence material adverse change...more
Key Takeaways - - The California Privacy Protection Agency (CPPA) is substantially revising its draft privacy regulations. - Definitions for automated decision-making technology (ADMT) and "significant decisions" are...more
Insights from decades of intense scrutiny of dioxins and PCBs in the environment, beginning in the 1960s, remain pertinent to our current challenges with PFAS. The lessons learned regarding detection and measurement,...more
What do you do when the headlines shift faster than your risk matrix can keep up? In this episode, Michael Volkov dives into the challenge of adapting compliance programs in the face of volatile and fast-changing global...more
This week, the California Privacy Protection Agency (CPPA) board held its April meeting to discuss the latest set of proposed regulations, including automated decision-making technology (ADMT) regulations. Instead of...more