Steps Your Nonprofit Can Take to Mitigate Fraud Risks - Part 2
A Third Party's Perspective on Third Party Risk
Implications of the SEC Cybersecurity Disclosure Rule
Privacy Issues from Third-Party Website Tags
What's the Tea in L&E? Employee Devices: What is #NSFW?
Preparing for a Government Healthcare Audit
Tackling Credit Push Fraud: Understanding Nacha's Risk Management Package (Part Two) — Payments Pros: The Payments Law Podcast
Compliance into The Weeds: The Complexity of Risk Assessments
Behavioral Health Compliance
The Importance of Assessment Areas
RegFi Episode 8: The Technological Path to Outcomes-Based Regulation with Matt Van Buskirk
What Physicians Need to Understand About Balance Billing
What Nonprofit Board Leadership Needs To Know About Internal Investigations
Taking a Behavioral Approach to Compliance
Episode 291 -- Interview of Mary Shirley on Her New Compliance Book
ChatGPT Risks for Compliance Programs
Season 2 Episode 3 - The Role of Ethics and Compliance Programs in International Business
In the Boardroom With Resnick and Fuller - Episode 4
What Non-Financial Institutions Need to Know About Gramm-Leach-Bliley
"Board-er" Patrol in Privacy and Cyberattacks - Unauthorized Access Podcast
There have been significant changes to the regulations surrounding artificial intelligence (AI) on a global scale. New measures from governments worldwide are coming online, including the United States (U.S.) government’s...more
The Department of Commerce released three final guidance documents incorporating public comments from earlier this spring which provide recommendations for managing AI risk, securing AI software development processes, and...more
On June 24, 2024, the Commerce Department published a Final Determination under its Information and Communications Technology and Services (ICTS) authorities. The determination prohibits the Russian-controlled cybersecurity...more
Senators Gary Peters (D-MI) and Thom Tillis (R-NC) introduced the PREPARED for AI Act. The bill aims to position federal agencies to safely and effectively adopt AI technologies by creating a comprehensive risk-mitigating...more
The Department of Justice ("DOJ") is wasting no time in implementing the new cyber-security Executive Order (the EO), signed on February 28, 2024. As explained in our April 2024 blog post, the EO aims to portect Americans’...more
Pursuant to President Biden’s October 2023 AI executive order, the US Department of Treasury (Treasury) released a report on cybersecurity risks in the financial services sector in March 2024. While recognizing the...more
On February 28, 2024, President Biden signed Executive Order (EO) 14117 titled “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.” On March 5,...more
The growth of cloud services, Software-as-a-Service (“SaaS”) and Infrastructure-as-a-Service (“IaaS”) arrangements, Artificial Intelligence (“AI”) models, and increased reliance on the use outsourced technology service...more
On March 14, 2024, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced its first enforcement case of the year and its first ever involving dealings with a Russian designated for sanctions...more
The oversight obligations of boards continue to expand. Recent enforcement actions and new laws in areas such as cybersecurity, artificial intelligence and supply chains create new challenges for boards, as we explain in this...more
On 24 January 2024, the European Commission (EC) published its proposed reform of foreign investment screening in the EU. The proposal introduces more comprehensive rules for the review of foreign investments and strengthens...more
The Cybersecurity and Infrastructure Security Agency (CISA) has released a revised draft of its Secure Software Development Attestation Common Form ("Form"). The Form, once finalized, will obligate vendors providing software...more
A year in review for the ChatGPT (chatbot generative pre-trained transformer) — and a look ahead at the global response to AI & which governance “guardrails” are required. On November 30th, 2023, the world will celebrate...more
Guidance for the largest US financial institutions is intended to promote climate risk management consistent with general safety and soundness practices. On October 30, 2023, the three US federal bank regulatory agencies...more
On November 1, 2023 the Department of the Treasury’s Federal Insurance Office (FIO) formally submitted a request to proceed with a climate-related financial risk data collection for homeowners’ multi-peril underwriting data...more
On 30 October 2023, President Biden issued a long-awaited executive order (EO) on artificial intelligence (AI). The EO itself is available here, and a one-page fact sheet issued by the White House is available here. The...more
On October 30, President Biden issued a sweeping Executive Order calling on Congress to enact privacy laws and directing federal agencies to review existing rules and potentially explore new rulemakings governing the use of...more
The development of artificial intelligence (AI) and particularly Generative Artificial Intelligence (GenAI) has exploded in recent years, prompting government officials including the Biden administration to call for studies...more
After nearly seven months of lawmaking, California legislators ended this session without the passage of a bill regulating the development or deployment of artificial intelligence (AI) systems....more
California continues to forge ahead on potential new privacy, cybersecurity, and artificial intelligence (AI) obligations, including through its California Consumer Privacy Act (CCPA) rulemaking process and by launching a new...more
Last week, Governor Gavin Newsom issued an executive order to tackle the new field of Generative Artificial Intelligence (GenAI). As technology develops and changes, Newsom indicated that it’s time to be “Asking questions....more
California Governor Gavin Newsom issued a groundbreaking executive order today charting a course for the business community given the explosion of artificial intelligence use across all industry sectors – and employers should...more
This first part of a two-part series on U.S. regulation of artificial intelligence systems provides an overview and modern context for the existing regulatory, legal and risk management landscape for AI systems in the U.S.,...more
On April 6, 2023, Treasury issued its risk assessment for decentralized financial (“DeFi”) services as required by Executive Order 14067. While not guidance, the Risk Assessment can provide some insight into Treasury’s views...more
The Federal Acquisition Regulatory Council recently issued a far-reaching proposed rule that includes significant compliance obligations for contractors related to their greenhouse gas emissions. Most federal contractors,...more