Day: November 19, 2025

Categories
Daily Compliance News

Daily Compliance News: November 19, 2025, The Accountability Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. All, from the Compliance Podcast Network. Each day, we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Top stories include:

  • Supply Chains are vulnerable to Chinese exploitation. (WSJ)
  • The fraud case against Adani is in limbo. (NYT)
  • French police raid Altice re: corruption allegations. (Bloomberg)
  • Hold tech companies accountable for fraud. (FT)

The Daily Compliance News has been honored as the No. 2 in the Best Regulatory Compliance Podcasts category.

Categories
Compliance Into the Weeds

Compliance into the Weeds: Uncovering FCPA Violations: Millicom’s Complex Case Involving Drug Cartel Funds

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Looking for some hard-hitting insights on compliance? Look no further than Compliance into the Weeds! In this episode of Compliance into the Weeds, Tom Fox and Matt Kelly discuss the intricate details of a recent FCPA enforcement action against Millicom Cellular, a Luxembourg-based telecommunications company with operations in Guatemala.

The discussion uncovers how Millicom’s joint venture, Comunicaciones Celulares (CommCell), became embroiled in bribery and corruption involving duffel bags of drug cartel cash used to pay off Guatemalan officials. Despite the DOJ’s earlier pause on FCPA enforcement, the emergence of narco-trafficking aspects led to a reopened investigation and significant penalties for Millicom. Key points include the case timeline, the lack of Millicom’s operational control and visibility, and the broader implications for due diligence in joint ventures and cross-border operations in high-risk regions.

Key highlights:

  • Details of the FCPA Enforcement Action
  • Millicom’s Joint Venture in Guatemala
  • Self-Disclosure and DOJ’s Response
  • Timeline of Events and Corruption Details
  • Drug Trafficking and Bribery Connections
  • Implications and Compliance Lessons

Resources:

Matt in Radical Compliance

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

A multi-award-winning podcast, Compliance into the Weeds was most recently honored as one of the Top 25 Regulatory Compliance Podcasts, a Top 10 Business Law Podcast, and a Top 12 Risk Management Podcast. Compliance into the Weeds has been conferred a Davey, a Communicator Award, and a W3 Award, all for podcast excellence.

Categories
AI Today in 5

AI Today in 5: November 19, 2025, The Turning No into Flow Edition

Welcome to AI Today in 5, the newest edition to the Compliance Podcast Network. Each day, Tom Fox will bring you 5 stories about AI to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the AI Today In 5. All, from the Compliance Podcast Network. Each day, we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest about AI.

Top AI stories include:

  1. Of APIs and AI. (Forbes)
  2. Will 2026 redefine GenAI and compliance risk? (PR Newswire)
  3. Energy is key for AI’s next chapter. (Trading View)
  4. New report on the CEO’s Guide to AI Transformation. (AINews)
  5. Teaching students to shape AI. (BusinessInsiderAfrica)

For more information on the use of AI in Compliance programs, see my new book, Upping Your Game. You can purchase a copy of the book on Amazon.com

Categories
Compliance Tip of the Day

Compliance Tip of the Day – The Questionnaire

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice for navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide you with bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

This week, we are reviewing the third-party risk management process. Today, we consider the questionnaire.

For more on this topic, check out The Compliance Handbook: A Guide to Operationalizing your Compliance Program, 6th edition, which LexisNexis recently released. It is available here.

Categories
The Hill Country Podcast

The Hill Country Podcast – Pat Flynn’s Unique Journey in the Stump Removal Business

Welcome to the award-winning The Hill Country Podcast. The Texas Hill Country is one of the most beautiful places on earth. In this podcast, Hill Country resident Tom Fox visits with the people and organizations that make this the most unique area of Texas. This week, Tom visits with Pat Flynn, who has been running a stump grinding and removal business in Keville since 2012.

Pat shares his unique journey into the business, from meeting an inventor of a specialized stump grinding machine to operating his own custom-built grinder. He discusses the high demand for stump removal in the Hill Country, particularly due to oak wilt and drought. Pat also talks about the versatility of his equipment, which can handle both large and small stumps. Operating as a one-man band, with his dog Jackson, who doubles as his customer service representative, Pat provides insights into his business operations, pricing strategies, and the geographic areas he serves. He highlights some of his most extensive projects, including a major post-snowpocalypse job, and his preferences for working in Dallas and the Hill Country.

Key highlights:

  • Pat Flynn’s Unique Business
  • The Journey into Stump Grinding
  • The Stump Grinding Machine
  • Meet Jackson, the Customer Service Rep
  • Memorable Jobs and Challenges
  • Impact of Natural Disasters

Resources:

Pat Flynn Stump Removal on Facebook

Other Hill Country Focused Podcasts

Hill Country Authors Podcast

Hill Country Artists Podcast

Texas Hill Country Podcast Network

Cover Art

Nancy Huffman

Categories
ACI FCPA Conference 2025

ACI-FCPA Conference Speaker Preview Series – Matt Ellis on FCPA Enforcement in Mexico

In this episode of the ACI-FCPA and Global Anti-Corruption Conference Speaker Podcasts series, Matt Ellis discusses his panel at the event, “The New FCPA Enforcement Focus in Mexico: A Look at How TCO/FTO Designations Could Impact Prosecutions, Coordination with U.S. Authorities, and the Risk Calculus for Businesses Operating There.”

Some of the issues the panel will discuss are:

  • The evolving enforcement landscape in Mexico.
  • The impact of FTO designations; and
  • Business risks and prosecutorial strategies going forward.

I hope you can join me at the ACI–FCPA Conference. This year’s event will take place on December 3-4 at the Gaylord National Resort & Convention Center in National Harbor, Maryland, near Washington, D.C. The lineup of this year’s event is simply first-rate, featuring some of the top FCPA professionals, white-collar attorneys, and compliance practitioners in the field.

The 2025 program is being completely redesigned to help your organization stay agile, responsive, and ahead of the curve. Expect a dynamic agenda shaped by real-world priorities, practical takeaways, and the most cutting-edge thinking in compliance—led by a faculty of global practitioners with boots on the ground, encountering the very risks that come across your desk.

Please join me at the event. For information on the event, click here. Listeners of this podcast will receive a discount by using the code D10-999-CPN26.

Categories
Great Women in Compliance

Great Women in Compliance – Building Trust at the Speed of Technology

In this episode of Great Women in Compliance, co-host Dr. Hemma Lomax welcomes Shannon Ralich, Vice President of Compliance and Chief Privacy Officer at Machinify, to discuss the evolving landscape of data privacy, cybersecurity, and responsible AI.

Shannon shares her remarkable journey from a curious child taking apart electronics to a seasoned leader blending technology, law, and strategy. She offers insight into how curiosity and creativity can fuel governance excellence and explains what it means to design systems that anticipate risk and enable responsible innovation.

Together, Hemma and Shannon explore:

  • How privacy and cybersecurity intersect in today’s fast-evolving AI environment
  • The most pressing compliance challenges around data governance and global regulation
  • Lessons from the SolarWinds and Uber cases and the growing conversation around individual accountability for CISOs and compliance leaders
  • Practical steps for staying agile—through reliable news sources, cross-functional camaraderie, and professional networks
  • How to translate corporate compliance skills into meaningful community impact through nonprofit leadership and animal rescue advocacy

Shannon’s message is a powerful reminder that the best leaders bring their full selves to the work: technical precision, ethical clarity, and human compassion.

Biography:

Shannon Ralich is the Vice President of Compliance and Chief Privacy Officer at Machinify, a healthcare intelligence company applying AI to improve the efficiency and integrity of healthcare payments. With more than 20 years of experience across legal, compliance, privacy, and cybersecurity roles, Shannon specializes in aligning governance frameworks with business innovation.

She also serves on the Advisory Board of the Privacy Bar Section of the IAPP (International Association of Privacy Professionals). She is widely respected for her strategic, forward-thinking approach to data protection and responsible AI governance.

Beyond her professional expertise, Shannon is a passionate advocate for animal welfare. She sits on the Board of Directors for the Neuse River Golden Retriever Rescue, where she leverages her operational and technological skills to strengthen fundraising, improve systems, and support global rescue missions.

A lifelong learner and self-described “builder,” Shannon finds creativity and grounding through woodworking, outdoor adventures with her family, and contributing to causes that make both workplaces and communities more humane.

Note: The views expressed in this podcast are our own and do not represent the views of our employers, nor should they be taken as legal advice in any circumstances. 

Categories
Blog

Risk in Action: What Jim Massey Teaches Us About Crossing the Gap

Corporate leaders love to talk about innovation, transformation, and building the future. Yet most organizations still get stuck in the same place: standing at the edge of a decision, staring into the unknown, and doing nothing. At that moment, the hesitation between where we are and where we need to go is the space Jim Massey calls the gap. And in Risk in Action, Massey makes a compelling argument that how leaders approach this gap will define not only their relevance but also their ability to lead in today’s fast-moving environment.

For the corporate compliance professional, this book is more than leadership philosophy. It is a practical guide for making disciplined, values-driven choices under uncertainty. It is also a call to rethink how our organizations confront risk, how we enable decision-making, and how we build systems that do more than slow the business down.

Risk as the Distance Between Now and Next

Early in the book, Massey reframes a concept that compliance professionals often treat as static. Risk, he argues, is not a heat map, a mitigation plan, or a quarterly review. Risk is the distance between where you are and where you want to be. Trust is the bridge. Fear is the fog that makes the crossing difficult (see Chapter 2). That deceptively simple framing is powerful. It exposes why so many organizations fall into oscillation: they mistake movement for progress. More meetings. More decks. More analysis. And yet nothing moves.

We tell ourselves we are being prudent, disciplined, or thorough when in reality we are waiting for fear to subside. Massey does not dismiss the importance of analysis. Instead, he asks leaders to confront their own reflexive relationship with risk. Whether the risk is regulatory, strategic, environmental, or reputational, the greater danger is not action; it is inaction. The world moves quickly. Competitors accelerate. Expectations shift. Standing still is its own risk, and often the most significant one.

Face, Frame, Forward: The Anatomy of Real Decision-Making

The central model in the book—Face, Frame, Forward—offers a decision-making cadence that leaders can apply daily. As Massey describes, the greatest failures he has seen in organizations did not come from a bad decision but from delaying a necessary one. His model helps break that paralysis.

Face

Facing risk begins with naming the truth in front of you. Not the sanitized version. The real version. What is the risk that keeps you up at night? What is the organizational behavior you keep tolerating? What is the emerging external pressure that is already reshaping your strategic environment? (see Chapter 4).  Massey’s point is blunt: You cannot frame a risk you refuse to see, and you cannot move forward from a place of ambiguity.

Frame

Framing is about meaning-making. Two companies can experience the same regulatory change, market disruption, or technology shift and respond in completely different ways. Why? Because they frame its significance differently (see Chapter 5). Framing is where compliance officers have enormous influence. We help leaders see regulatory shifts as more than check-the-box obligations. We help boards see cultural issues as more than HR noise. We help executives understand that ESG risks are strategic risks and that reputational risks are governance risks. Impact matters, yes. But meaning drives action.

Forward

Forward is where clarity becomes motion. Not recklessness. Not speed for speed’s sake. But disciplined, intentional, values-aligned action. Massey writes that the fog does not lift before we move. It lifts because we move (Chapter 6). That insight is especially relevant for compliance professionals. We often wait for the perfect policy, perfect data, or perfect operating plan. Yet most risks today evolve faster than our systems can process. The future belongs to organizations that move forward with clarity, not certainty.

Risk, Trust, and Fear: The Three-Dimensional Model of Leadership

What makes Risk in Action uniquely valuable for compliance professionals is Massey’s integration of risk, trust, and fear. These forces, he argues, are always active, competing, overlapping, and shaping our choices (see Chapter 7). Compliance professionals know this intuitively. A team hesitates to escalate a concern—not because they lack information, but because fear is louder than trust. A business unit drags its feet on a remediation plan—not because the fix is complicated, but because the risk feels abstract. A board over-rotates to control, not because of a regulatory requirement, but because fear has dominated the discussion.

Massey identifies three essential questions every leader must answer:

  1. Can we? (capability)
  2. Do we care? (intent and connection)
  3. Will we do it? (commitment)

These three elements—Can, Care, Do—form the building blocks of trust (see Chapter 8). And trust, in turn, is what enables movement across the risk gap.

FearFULL Leadership: Why Pretending to Be Fearless Does Not Work

One of the book’s most compelling contributions is Massey’s challenge to the myth of fearlessness. Leaders spend too much time trying to appear unshakable. In reality, fear shows up silently, through overcontrol, indecision, or relentless perfectionism. Massey argues for something more honest: becoming fearFULL, not devoid of fear, but full of awareness, reflection, and intention (see Chapter 9). FearFULL leaders admit the truth early. They ask the hard questions. They name the tension. And by doing so, they create a sense of psychological safety for others.

For compliance professionals, this matters enormously. Transparency, escalation, and ethical decision-making cannot coexist with unacknowledged fear. Leaders who cannot name their own fear cannot build environments where employees feel safe speaking up.

The Compliance Connection: Why This Book Matters for Our Profession

At its core, Risk in Action is about building systems and cultures where leaders face reality with honesty, interpret risks with clarity, and move with purpose. That is the very heart of compliance work. Massey critiques the old model of compliance as the organizational brake pedal. The modern compliance function must instead help the business navigate uncertainty, not out of fear, but with disciplined confidence (see Chapter 1).

Compliance does not eliminate risk. Compliance enables the organization to move forward intelligently. Risk in Action reinforces several truths compliance professionals have long understood:

  • Controls without comprehension fail.
  • Strategy without alignment stalls.
  • Culture without clarity decays.
  • And risk without action accumulates.

What Massey offers is a leadership model that makes movement possible again.

Five Key Takeaways for the Compliance Professional

  1. Risk is not a barrier. Risk is the path forward.
  2. Treating risk purely as something to avoid limits innovation and weakens relevance. Compliance must help leaders see risk as the space where opportunity lives.
  3. Face, Frame, Forward is a practical tool for enabling action.
  4. Name the risk clearly, interpret it through values and strategy, and move forward with intention. Avoid the organizational trap of oscillation.
  5. Trust is operational. Fear is real. And both shape risk decisions.
  6. Compliance programs must build systems that reinforce capability, connection, and commitment—because without trust, no risk model works.
  7. FearFULL leadership produces better compliance outcomes.
  8. Pretending to be fearless creates silence. Acknowledging fear creates honesty. Leaders who name fear make it safer for others to speak up early.
  9. Compliance must evolve from protectors to navigators.
  10. The speed of today’s risks demands a forward-looking, strategy-aligned compliance function. Your role is not to slow the business down; your role is to move it wisely.

Perhaps the most interesting overall concept posited by Massey is one I learned from John Lee Dumas from his interview in the award-winning podcast series, Looking Back on 9/11. On 9/11, Dumas was a college senior in ROTC, and that night, he knew he was going to war. As a 21-year-old Lieutenant, he led a 40-man tank crew in the invasion of Iraq. I asked him what he learned from his Army experience. He instantly responded, “Make a Decision.” He added that you never have perfect information, so you have to take what you have, synthesize it, and act on it. Massey makes clear that compliance leadership requires action.