Healthcare Enterprise Risk Management
Managing Sanctions Compliance
Regulatory Ramblings: Episode 68 - Why Geopolitical Risk Matters to Compliance and Legal Staff with Mark Nuttal and Chad Olsen
FCPA Compliance Report: Amanda Carty on a Due Diligence and Risk Management
Episode 364 -- Five Strategies to Mitigate a New Risk Environment
Strengthening Compliance: Lessons From the OCC's Consent Order With Patriot Bank — Payments Pros – The Payments Law Podcast
Compliance and AI: Ali Khan on Implementing AI Risk Management Systems
Compliance Tip of the Day: Superforecasting
Compliance Tip of the Day: The Last Mile
Key Takeaways From the OIG's New Compliance Guidance for Nursing Facilities — Assisted Living and the Law Podcast
Envisioning a Compliant Workforce
Updating the Research Compliance Handbook
The Election's Impact on the FTC Will Bring Big Changes, But Being Vigilant Must Remain a Priority
Navigating the NYDFS' Cybersecurity Guidance on AI — The Consumer Finance Podcast
The Future of AI Regulation and Legislation: 5 Key Takeaways
Investigations and Cognitive Interviews
Fraud Prevention Techniques for Nonprofit Organizations - Part 3
Steps Your Nonprofit Can Take to Mitigate Fraud Risks - Part 2
A Third Party's Perspective on Third Party Risk
Implications of the SEC Cybersecurity Disclosure Rule
Most organizations rely on complex supply chains, and that reliance has become a point of vulnerability for cyberattacks. This spring, we have witnessed a large-scale cyberattack on a major British multinational retailer due...more
The United Kingdom’s (UK) Health & Safety Executive (HSE) has begun a public consultation on a legislative proposal to reform the Great Britain (GB) Classification, Labelling and Packaging (CLP) Regulation. HSE notes that GB...more
Last month, Paul Hastings sponsored the Cybersecurity Law Workshop at the Spring Privacy & Security Forum held at George Washington University in Washington, D.C. The Cybersecurity Law Workshop featured three panels of...more
On June 18, 2025, FDA announced for public comment a Post-market Assessment Prioritization Tool (Prioritization Tool) as an enhanced systematic process for post-market scientific assessment of chemicals in food, including...more
If you’re trying to strengthen your organization’s compliance program, one of the most important recommendations from the Office of Inspector General’s (OIG) General Compliance Program Guidance is to integrate quality and...more
When assessing cybersecurity risk in your organization, it is important to understand your users and their behavior. A new study by Keepnet sheds light on new hire behavior concerning phishing susceptibility. According to its...more
The 2025 Mitratech Third-Party Risk Management (TPRM) Study conveys a clear message: the third-party risk landscape is evolving into a complex, interconnected ecosystem — one where every vendor, supplier, and partner plays a...more
Citing “escalating global conflict,” the New York Department of Financial Services issued an alert on Monday, June 22, 2025, to its regulated covered entities, urging them to be vigilant against potential security threats,...more
As tensions flare in the Middle East, speculation is growing over the potential impacts of Iranian cyberattacks targeting US based companies and infrastructure. We saw similar reactions in 2020 following the death of the head...more
Against the backdrop of climate change and the increasing health and safety challenge of preventing heat-related risks at work, France has introduced a new decree reinforcing the obligations on employers to prevent these...more
In the first installment of this Tip of the Week series, we examined how the authority to mandate a risk assessment is defined, established, and effectively communicated within higher education and K-12 communities. In part...more
El Ministerio de Hacienda y Crédito Público de Colombia expidió el pasado 28 de mayo de 2025, el Decreto 573 del 2025, por medio del cual se modificó el tratamiento otorgado a los créditos de libranza en relación con su...more
In the next phase of Online Safety Act implementation, children’s safety duties and related codes of practice will come into full effect on 25 July 2025....more
What is Due Diligence? Due diligence is a thorough investigation service of a business by a potential buyer, to establish value, assets, liabilities, potential and the associated risks....more
The U.S. Department of Justice Antitrust Division has updated its Evaluation of Corporate Compliance Programs in Criminal Antitrust Investigations (the “Guidance”). This Guidance updates the 2019 guidance to federal antitrust...more
GROWING DEMAND FOR DATA CENTERS - As many involved in Asian infrastructure today will testify, Asia’s digital transformation is fueling an unprecedented demand for data centers....more
On June 18, 2025, FDA published a proposed “Post-Market Assessment Prioritization Tool” to guide how the agency plans to rank and prioritize food chemicals under its enhanced post-market review process. FDA’s unveiling of...more
An organization’s code of conduct often serves as the foundation upon which other elements of the compliance program—such as employee training and communications—are built. More than just a tool for establishing baseline...more
The Department of Justice (DOJ) is narrowing its focus on Foreign Corrupt Practices Act (FCPA) enforcement, prioritizing national security, U.S. competitiveness, and a crackdown on cartels. This is a critical development for...more
The US Environmental Protection Agency (EPA) has announced plans to extend the reporting deadlines for a rule under Section 8(d) of the Toxic Substances Control Act (TSCA). This rule mandates that manufacturers and importers...more
This post is one in a series where we discuss the US Department of Justice’s (DOJ’s) bulk sensitive data rule (rule), which prohibits individuals or entities from certain foreign countries, including China, from accessing...more
The New York State Department of Financial Services (the “Department”) has issued guidance (“Guidance”) to all individuals and entities regulated by the Department (“Regulated Entities”) to underscore the importance of...more
Clinicians play a crucial role in Behavioral Intervention Teams (BITs) and may be tasked with conducting certain types of risk assessments. However, this responsibility may not always align with their role. Their expertise is...more
Artificial intelligence (AI) systems are vulnerable to more than just threat actors. Our Privacy, Cyber & Data Strategy Group examines joint guidance issued by U.S. and international cybersecurity agencies that provides best...more
We have previously outlined several cases where lawyers have been sanctioned by courts for citing fake cases generated by artificial intelligence (AI), also known as “hallucinations.”...more