News & Analysis as of

Due Diligence Third-Party Service Provider Compliance

Bracewell LLP

FINRA Facts and Trends: November 2024

Bracewell LLP on

Welcome to the latest issue of Bracewell’s FINRA Facts and Trends, a monthly newsletter devoted to condensing and digesting recent FINRA developments in the areas of enforcement, regulation and dispute resolution. This month,...more

Walkers

Personal Information Protection Act deep dive

Walkers on

The Personal Information Protection Act ("PIPA") comes into full force on 1 January 2025. All organisations in Bermuda are expected to be in compliance with it by that date – time is running out! The Privacy Commissioner...more

Mayer Brown

EU Cyber Legislation Puts Emphasis on Board Responsibility

Mayer Brown on

What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial...more

The Volkov Law Group

A Deeper Dive into Supply Chain Transparency & Accountability

The Volkov Law Group on

The sheer proliferation of supply chain transparency and accountability regulations at international scale itself warrants a closer look at the level of scrutiny required of organizations with complex, multi-faceted, global,...more

Epiq

Deepfakes Bring Deep Risk

Epiq on

Most people know what a deepfake is but have not put much thought into how it could affect business operations. Deepfakes are videos, pictures, or audio that have been convincingly manipulated to misrepresent a person saying...more

Mitratech Holdings, Inc

What is a Vendor Risk Assessment?

We recently dove into what vendor risk and vendor risk management entails. Once you understand that this is the risk that results from vendors, it’s simple to extend this and establish that vendor risk assessment (VRA), or...more

BCLP

Supervision of Vendors When Outsourcing - The Buck Stops with FINRA Member Firms

BCLP on

Key Takeaways: ..On August 13, 2021, FINRA issued Regulatory Notice 21-29 (“RN 21-29”) to remind member firms that they must establish and maintain an adequate supervisory system, including written supervisory procedures...more

Mitratech Holdings, Inc

What is Vendor Risk & Vendor Risk Management (VRM)?

Vendor risk management (VRM), or third-party risk management, is the management, monitoring, and evaluation of risks that result from third-party vendors and suppliers of products and services. It’s a crucial initiative...more

Society of Corporate Compliance and Ethics...

[Webinar] Update on China and Russia: Restrictions and Best Practices - June 1st, 12:00 pm - 1:30 pm CDT

Learning Objectives: - Develop greater understanding of the main US trade restrictions on China and Russia - Gain familiarity into key compliance issues under current restrictions, including related to exports, supply...more

Hudson Cook, LLP

Vendor Service Contracts - Not Just Arm's Length Transactions Anymore

Hudson Cook, LLP on

The Consumer Financial Protection Bureau's Compliance Bulletin and Policy Guidance; 2016-02, Service Providers addresses the CFPB's expectation that companies oversee their business relationships with service providers in a...more

The Volkov Law Group

Five Lessons for Third-Party Distributor Risk Management from Microsoft FCPA Settlement (Part III of III)

The Volkov Law Group on

The Microsoft FCPA settlement, while not significant in the total penalty of approximately $25 million, provides some important instructions concerning distributor and re-seller risks and mitigation strategies.  ...more

NAVEX

If Things Have to Be Risky for Your Third-Party Risk Management Program to be Valuable, You’re Doing It Wrong.

NAVEX on

Seventy-five percent of respondents in the 2016 Ethics & Compliance Third Party Risk Management Benchmark Report rejected at least one third party as a business partner last year because of high risk factors identified in due...more

The Volkov Law Group

Focusing on Due Diligence (Part II of IV)

The Volkov Law Group on

He that can have patience can have what he will. – Benjamin Franklin Putting together an effective due diligence system requires patience. I freely admit that I am not a patient person, especially when it comes to...more

Perkins Coie

SEC’s Increased Cybersecurity Enforcement and How to Reduce Your Risks

Perkins Coie on

The SEC announced last week that an investment adviser had agreed to settle charges that it failed to take required steps to protect against and respond effectively to a cybersecurity breach. The action comes on the heels of...more

BakerHostetler

The SEC OCIE Announces Increased Scrutiny of Broker-Dealers’ and Investment Advisers’ Cybersecurity Programs

BakerHostetler on

On September 15, 2015, the Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE) issued a National Exam Program Risk Alert (2015 Risk Alert) to provide broker-dealers and investment...more

Burr & Forman

TN Ethics Opinion Approves Lawyers’ Cloud Storage of Client Data

Burr & Forman on

Tennessee has joined other states in formally approving lawyers’ cloud-storage of client-confidential data. The Board of Professional Responsibility (“BOPR”) held that lawyers ethically may use cloud storage for...more

Burr & Forman

OCIE to Conduct More Cybersecurity Exams

Burr & Forman on

This week the SEC’s Office of Compliance Inspections and Examinations (“OCIE”) announced a second-round of cybersecurity examinations, continuing its initiatives on the issue. The move follows the SEC’s: March 2014 roundtable...more

NAVEX

I Want To Automate My Third Party Due Diligence Processes: Where Do I Start?

NAVEX on

There is little doubt that automated third party due diligence systems are in the future for many companies. An automated approach to third party due diligence is a critical risk mitigation tool to help employers avoid...more

Foley Hoag LLP

Federal Acquisition Regulation: Amendments to Strengthen Prohibitions Against Trafficking

Foley Hoag LLP on

On January 29, 2015, the U.S. Government released a final rule amending the Federal Acquisition Regulation (“FAR”). The final rule reflects changes to proposed amendments originally released in September 2013. The...more

19 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide