Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. All from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, and general interest, all of which are relevant to the compliance professional.
Top compliance stories:
Show Summary
The classic episode, “Devil in the Dark,” is a compelling exploration of misunderstandings, communication breakdowns, and reconciliation between drastically different cultures—lessons that resonate strongly for corporate compliance officers navigating today’s global marketplace.
In “Devil in the Dark,” the USS Enterprise is dispatched to investigate mysterious deaths in a mining colony. What initially seems like straightforward monster attacks turns out to be a profound misunderstanding between humans and an alien creature called the Horta. Today, we will examine five key compliance lessons that corporate professionals can learn from the iconic Star Trek episode.
Lesson 1: Recognize and Challenge Your Own Biases
Illustrated By: When the Enterprise crew arrives, the miners describe a monstrous creature attacking and killing miners, labeling it simply as a dangerous beast to be eliminated. Their preconceived notions blinded them to the possibility of understanding the creature.
Compliance Lesson: Compliance professionals must actively recognize and challenge their assumptions and biases.
Lesson 2: Effective Communication Requires Genuine Effort and Empathy
Illustrated By: The turning point of the episode comes when Spock mind-melds with the Horta. Through genuine empathy and effort, he discovers that the Horta is not malevolent but is protecting its offspring, the silicon nodules that the miners had inadvertently been destroying.
Compliance Lesson: Corporate compliance teams operating in multinational contexts must make a genuine effort to communicate effectively with global partners, subsidiaries, and stakeholders.
Lesson 3: Cultural Awareness as a Risk Mitigation Strategy
Illustrated By: The miners’ failure to recognize the silicon nodules as living offspring stems from ignorance about the Horta’s culture and biology. This ignorance creates hostility and unnecessary conflict.
Compliance Lesson: Understanding local cultural norms, regulatory landscapes, and business ethics is vital for operating ethically and legally across jurisdictions.
Lesson 4: Embrace Diversity to Foster Innovation and Solutions
Illustrated By: The Enterprise crew’s diverse backgrounds and experiences enable them to devise innovative solutions. Spock’s unique Vulcan abilities allow communication with the Horta, transforming a volatile situation into a collaborative one.
Compliance Lesson: Diverse compliance teams bring varied experiences, perspectives, and problem-solving approaches essential for effectively managing complex compliance challenges.
Lesson 5: Seek Win-Win Solutions through Collaboration
Illustrated By: Ultimately, Captain Kirk brokers a cooperative agreement between the miners and the Horta, allowing peaceful coexistence and mutual benefit. The miners extracting resources and the Horta species continue unharmed.
Compliance Lesson: Compliance professionals should adopt a win-win mindset, working collaboratively with regulatory authorities, local communities, employees, and third-party partners to align compliance objectives with mutual benefits.
Final ComplianceLog Reflections
Star Trek’s “Devil in the Dark” vividly illustrates the consequences of cross-cultural misunderstandings and the immense benefits of cultural empathy, clear communication, diversity, and collaborative problem-solving. For corporate compliance professionals, this episode serves as a powerful reminder that effective compliance programs necessitate intentional cross-cultural engagement, ongoing education, and empathy-driven interactions.
Resources:
Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.
Today, we continue our look at the 5 COSO Objectives. Today, Number IV—Control Information and Communication.
For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.
Welcome to a new season of the award-winning Hill Country Authors Podcast, sponsored by Stoney Creek Publishing. In this podcast, Hill Country resident Tom Fox visits with authors who live in and write about the Texas Hill Country. In this episode, Tom visits author Phil Oakley, discussing his intriguing professional background and his novels, which are based on his family’s history in Texas.
Oakley shares stories from his childhood, professional encounters, and inspirations drawn from his grandparents’ lives. They delve into his book series, starting with ‘Little Hatchet’ and ‘Runners,’ exploring the ways he incorporates Texas history and personal heritage into his work. Oakley also reflects on the impacts of weather, railroads, and prohibition on his family and the state. Towards the end, he discusses his transition from biography to fiction and the potential for his books to be adapted into a streaming series. The session concludes with insights on working with Stony Creek Publishing and resources for readers to find his books.
Key highlights:
Resources:
Little Hatchet | Book 1 of The Oakley Series
Runners | Book 2 of The Oakley Series
Little Hatchet and Runners on Texas A&M University Press
Stoney Creek Publishing Website
Little Hatchet Book Trailer on YouTube
Podcast Cover Art
Tom Fox
The compliance profession has long relied on the COSO frameworks for a solid foundation in internal controls and enterprise risk management. Now, in a move that promises to unify governance practices across sectors, COSO has released a Corporate Governance Framework (CGF) as a Public Exposure Draft. It’s not just a policy document—it’s a strategic blueprint. For compliance professionals, it represents an opportunity to elevate our role from risk mitigators to architects of long-term value. Today, we begin a multipart exploration of the Framework: what you need to know, why it matters, and how it changes the governance game.
The Big Picture: What Is COSO’s Corporate Governance Framework?
At its core, the CGF is a principles-based, integrated governance system that complements COSO’s earlier frameworks for internal control (ICIF) and enterprise risk management (ERM) while extending beyond them. It is designed to guide boards, executives, shareholders, employees, and other stakeholders in aligning governance structures and practices with the creation of long-term value.
The CGF is built around six interdependent components:
Each Component contains several Principles (24 in total), supported by Points of Focus, Deeper Insights, and Leading-Edge Considerations.
In short, this is not a checkbox approach to governance. It’s a holistic, iterative model that adapts to an entity’s purpose, risk profile, stakeholder expectations, and regulatory landscape.
Why This Framework—and Why Now?
The business case for the CGF is compelling and overdue. COSO makes clear that good governance is no longer just about compliance; rather, it should be seen as a competitive differentiator.
Consider the drivers:
COSO’s framework encourages organizations to move beyond the reactive “check-the-box” mindset and embed governance into every aspect, from executive decision-making to workforce engagement.
The Six Components: What Compliance Needs to Know
Now, consider each component through a compliance lens.
1. Oversight
This section reminds us that effective governance starts with the board, not ends there. It focuses on board structure, independence, committee roles, director selection, and accountability.
Compliance takeaway: The audit committee remains central, but boards are encouraged to create or expand roles for risk, technology, ethics, and culture oversight, which is great news for CCOs who want more engagement at the top.
2. Strategy
This is where compliance shifts from gatekeeper to enabler. The CGF pushes alignment between strategy and purpose, with boards and management jointly accountable for development, execution, and course correction.
Compliance takeaway: This is your call to integrate risk and ethics into strategic planning. Be present in the room when business models are reviewed, not after decisions have been made.
3. Culture
The CGF recognizes culture as both a risk and an asset. Boards are expected to model ethical conduct and oversee cultural assessments, while management must embed values into decision-making, hiring, rewards, and performance management.
Compliance takeaway: If culture eats policy for breakfast, this is your lunch menu. From whistleblower protections to leadership coaching, this is your roadmap for making culture measurable and actionable.
4. People
Talent is governance. This Component covers workforce strategy, succession planning, performance management, and incentives. It also underscores the board’s growing responsibility to understand workforce-related risks.
Compliance takeaway: Pay attention to the alignment between values, behaviors, and rewards. Compensation structures are now squarely in the realm of ethical risk, and compliance should have a voice in this area.
5. Communication
Information flow is framed as a governance issue, not just a reporting function. This section covers data quality, internal and external communications, technology platforms, escalation protocols, and stakeholder engagement.
Compliance takeaway: Effective GRC programs rely on reliable data and timely communication to ensure effectiveness. If your systems still rely on spreadsheets and email, the CGF serves as a reminder to modernize.
6. Resilience
This section ties together risk management, compliance, internal controls, and adaptability. It encompasses principles related to compliance ownership, fraud management, third-party risk, and continuous monitoring.
Compliance takeaway: The CGF validates what we already know —that compliance is a pillar of enterprise resilience. However, it also encourages us to adopt more intelligent tools (e.g., risk analytics, AI-driven monitoring, integrated assurance platforms).
What Makes This Framework Different?
Several innovations stand out:
What Should Compliance Professionals Do Now?
The CGF is in the public exposure draft phase, with comments due by July 11, 2025. You should take the time to respond proactively:
Final Thoughts
COSO’s Corporate Governance Framework is more than a governance tool. It is a leadership manual for the modern era. For those of us in compliance, it validates that our work is not merely about avoiding risk but about enabling performance, trust, and value creation.
In the spirit of the Compliance Evangelist: Preach governance, embed culture, and lead with purpose.
Now, we should all roll up our sleeves and help build the future of corporate governance, one component at a time.
To read or comment on the full CGF Public Exposure Draft, click here. The comment period closes on July 11, 2025.
Show Summary
Star Trek has always served as a powerful lens through which to view not just the potential future of humanity but the contemporary complexities we face today. The classic episode, “Devil in the Dark,” is a compelling exploration of misunderstandings, communication breakdowns, and reconciliation between drastically different cultures—lessons that resonate strongly for corporate compliance officers navigating today’s global marketplace.
In “Devil in the Dark,” the USS Enterprise is dispatched to investigate mysterious deaths in a mining colony. What initially seems like straightforward monster attacks turns out to be a profound misunderstanding between humans and an alien creature called the Horta. Today, we will examine five key compliance lessons that corporate professionals can learn from the iconic Star Trek episode.
Lesson 1: Recognize and Challenge Your Own Biases
Illustrated By: When the Enterprise crew arrives, the miners describe a monstrous creature attacking and killing miners, labeling it simply as a dangerous beast to be eliminated. Their preconceived notions blinded them to the possibility of understanding the creature.
Compliance Lesson: Like the miners’ initial response, corporate biases can obscure critical perspectives and valuable information. Compliance professionals must actively recognize and challenge their assumptions and biases. It’s critical to maintain impartiality, especially during investigations, risk assessments, or due diligence processes involving diverse international markets. Conducting training sessions on unconscious bias and regularly revisiting corporate procedures helps organizations maintain objectivity and fairness.
Lesson 2: Effective Communication Requires Genuine Effort and Empathy
Illustrated By: The turning point of the episode comes when Spock mind-melds with the Horta. Through genuine empathy and effort, he discovers that the Horta is not malevolent but is protecting its offspring, the silicon nodules that the miners had inadvertently been destroying.
Compliance Lesson: Effective communication across cultural boundaries requires empathy, openness, and genuine effort. Corporate compliance teams operating in multinational contexts must make sincere efforts to communicate effectively with global partners, subsidiaries, and stakeholders. Language barriers, differing business practices, and cultural nuances can lead to costly misunderstandings. Investing in cross-cultural training, employing bilingual staff, and engaging empathetically with diverse perspectives strengthens communication and helps prevent costly compliance failures.
Lesson 3: Cultural Awareness as a Risk Mitigation Strategy
Illustrated by: The miners’ failure to recognize the silicon nodules as living offspring stems from ignorance about the Horta’s culture and biology. This ignorance creates hostility and unnecessary conflict.
Compliance Lesson: Cultural ignorance significantly increases compliance risk, especially in international operations. Understanding local cultural norms, regulatory landscapes, and business ethics is vital for operating ethically and legally across jurisdictions. Companies must integrate cultural intelligence training into their compliance programs, conduct thorough risk assessments, and cultivate local relationships to enhance awareness and understanding. This proactive approach mitigates misunderstandings and ethical lapses, fostering respectful and legally compliant international operations.
Lesson 4: Embrace Diversity to Foster Innovation and Solutions
Illustrated By: The Enterprise crew’s diverse backgrounds and experiences enable them to devise innovative solutions. Spock’s unique Vulcan abilities allow communication with the Horta, transforming a volatile situation into a collaborative one.
Compliance Lesson: Diversity is not only ethically commendable but also strategically vital. Diverse compliance teams bring a range of varied experiences, perspectives, and problem-solving approaches, which are essential for effectively managing complex compliance challenges. Organizations should proactively recruit and empower diverse talent in compliance roles, ensuring comprehensive perspectives in assessing risks and solving compliance-related issues. Embracing diversity fosters innovation and resilience in managing compliance across various markets.
Lesson 5: Seek Win-Win Solutions through Collaboration
Illustrated By: Ultimately, Captain Kirk brokers a cooperative agreement between the miners and the Horta, allowing peaceful coexistence and mutual benefit. The miners extracting resources and the Horta species continue unharmed.
Compliance Lesson: Effective compliance strategies often involve creative, collaborative solutions that benefit multiple stakeholders. Compliance professionals should adopt a win-win mindset, working collaboratively with regulatory authorities, local communities, employees, and third-party partners to align compliance objectives with mutual benefits. Encouraging collaborative dialogues rather than adversarial stances with stakeholders reduces friction, ensures sustainability, and promotes ethical business practices that benefit everyone involved.
Final ComplianceLog Reflections
Star Trek’s “Devil in the Dark” vividly illustrates the consequences of cross-cultural misunderstandings and the immense benefits of cultural empathy, clear communication, diversity, and collaborative problem-solving. For corporate compliance professionals, this episode serves as a powerful reminder that effective compliance programs necessitate intentional cross-cultural engagement, ongoing education, and empathy-driven interactions.
Navigating the global compliance landscape involves bridging cultural divides with sensitivity, understanding, and respect. Companies that prioritize cultural intelligence, diversity, and collaborative solutions not only minimize compliance risks—they also cultivate resilient, ethical, and respected global brands. Like the Enterprise crew, compliance professionals must boldly reach across cultural divides, ensuring business integrity thrives on mutual respect, innovation, and cooperative achievement.
Resources:
In this episode of the Hill Country Hustlers Podcast, host Zach Green speaks with Ross Dunagan, the owner of Flyin’ Diesel Performance, to discuss his journey from starting a small mom-and-pop shop to growing a thriving business in Kerrville, Texas. Ross shares his background, the challenges he faced starting, and the importance of overcoming fear and leveraging available resources. He delves into the significance of communication, loyalty, and making use of key ratios to ensure business growth. Ross also highlights the evolving nature of leadership and the importance of employee relationships in a successful business. The conversation touches on the rewards of entrepreneurship, the joy of giving back to the community, and the continuous pursuit of personal and professional growth.
Key highlights:
Resources:
Zach Green on LinkedIn
The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Are you seeking insightful perspectives on compliance? Look no further than Compliance into the Weeds! In this episode of Compliance into the Weeds, Tom Fox and Matt Kelly discuss Boeing’s recent safety initiatives and reforms, as outlined in their annual aerospace safety report.
They explore Boeing’s efforts to improve its speak-up culture, internal reporting systems, and the introduction of an expansive Safety Champions Program. The episode explores the procedural changes Boeing has implemented, including the handling of third-party reports and increased transparency for employees. Additionally, they examine the challenges and necessities of manager training in fostering an ethical corporate culture. The conversation concludes with insights on the recent Federal District Court hearing regarding Boeing’s non-prosecution agreement and the implications for transparency and accountability.
Key highlights:
Resources:
Matt Kelly in Radical Compliance
Tom
A multi-award-winning podcast, Compliance into the Weeds, was most recently honored as one of the Top 25 Regulatory Compliance Podcasts, a Top 10 Business Law Podcast, and a Top 12 Risk Management Podcast.
Show Summary
Star Trek has consistently excelled at blending imaginative storytelling with deeply reflective, ethical, and compliance lessons. In the episode “This Side of Paradise,” Captain Kirk and the crew of the USS Enterprise visit a colony thought to be lost, only to discover colonists who appear unnaturally happy and content due to the influence of strange alien spores. These spores eliminate negative emotions and ambition, creating an illusion of paradise. However, beneath the serene surface lies an unsettling truth, one that reveals significant lessons for corporate compliance professionals.
Lesson 1: The Danger of Complacency
Illustrated By: Upon their arrival, Captain Kirk and his crew are astonished at how content and relaxed the colonists appear, lacking any sense of urgency or purpose beyond their immediate happiness. The spores create an environment devoid of ambition or challenge.
Compliance Lesson: Complacency is a significant risk in corporate compliance. When companies become too comfortable, essential controls can slip, leaving vulnerabilities unnoticed.
Lesson 2: Understanding the Real Nature of Risks
Illustrated by Spock, affected by the spores, embracing an emotional side long repressed, initially finding joy and peace. Yet, Kirk soon realizes that beneath the artificial happiness lies a dangerous stagnation and lack of progress.
Compliance Lesson: Compliance officers must develop comprehensive risk assessment processes that look beneath surface-level compliance indicators.
Lesson 3: The Critical Importance of Culture
Illustrated By: Despite being seduced by the spores’ false paradise, Captain Kirk resists their influence due to his strong commitment to duty and mission, illustrating his deeply embedded professional and personal integrity.
Compliance Lesson: Organizations that foster strong ethical values and clearly defined principles are better equipped to withstand pressures and challenges.
Lesson 4: The Necessity of Clear and Effective Communication
Illustrated by: Kirk ultimately defeats the spores by broadcasting an emotionally charged message that disrupts their tranquilizing effects, restoring awareness and rational thinking to the affected crew.
Compliance Lesson: Compliance officers must clearly articulate expectations, rules, and regulations through targeted and impactful messaging.
Lesson 5: Resilience in the Face of Adversity
Illustrated By: After breaking the spores’ influence, the crew members realize the illusory nature of their paradise and recommit themselves to their mission and responsibilities, emerging stronger and more focused.
Compliance Lesson: Encouraging resilience involves preparing for potential compliance breaches with robust response plans, clear accountability structures, and lessons-learned reviews.
Final ComplianceLog Reflections
This Side of Paradise offers a vivid metaphor for corporate compliance professionals, illustrating the dangers lurking within complacency, the hidden nature of certain risks, and the powerful influence of a well-embedded compliance culture. By emphasizing proactive vigilance, thorough risk assessments, robust communication, and organizational resilience, compliance leaders can steer their companies clear of deceptively comfortable but ultimately harmful situations. Like Captain Kirk, compliance professionals must boldly confront challenges, keeping the integrity and commitment central to their mission and ensuring sustainable and ethical organizational success.
Resources:
Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.
Today, we continue our look at the 5 COSO objections. Today, Number III—Control Activities.
For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.
