Tag: Risk Management

Categories
Daily Compliance News

Daily Compliance News: March 24, 2025, The ABC Task Force Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News—all from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Top stories include:

  • UK, France, and Switzerland launch the ABC task force. (WSJ)
  • How resilient is your power supply? (BBC)
  • China targets ‘petty’ corruption. (WSJ)
  • Is the Former Argentinian President banned from the US for corruption? (Buenos Aires Times)
Categories
Compliance Tip of the Day

Compliance Tip of the Day – Next-Generation Predictive Analytics for Risk Management

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

We begin a week of exploring how AI can impact your compliance program in 2025. Today, we examine how compliance can use next-generation predictive analytics for its overall risk management process.

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Categories
Blog

AI Game-Changing Compliance: Part 2 – Next-Generation Predictive Analytics for Risk Management

Last week, I looked at five things a Chief Compliance Officer (CCO) or compliance professional could do at little or no cost to ‘Up Their (Compliance) Game.’ I want to continue this theme this week but want to tackle it differently. I will look at five innovations for compliance professionals around Artificial Intelligence (AI). AI has moved from an emerging trend to a fundamental component of modern corporate compliance programs. Today, I want to examine how compliance can use next-generation predictive analytics for your overall risk management process.

Predictive analytics tools have become more sophisticated, allowing compliance teams to move from reactive enforcement to proactive risk mitigation. By leveraging machine learning models, companies can expect compliance risks based on historical data, employee behavior, and external factors like geopolitical instability or regulatory changes. This approach enables organizations to allocate compliance resources more effectively and address emerging risks before they escalate.

The ability to predict and prevent compliance failures before they occur is a fundamental change. AI-driven predictive analytics help organizations identify patterns of misconduct, assess third-party risks, and enhance fraud detection. Regulators are also increasingly emphasizing the importance of data-driven compliance programs, with the DOJ’s latest guidance on corporate compliance highlighting the need for real-time monitoring and risk assessments.

Predictive Compliance Enhances Proactive Risk Mitigation

Predictive analytics transforms traditional AI methods to analyze vast data sets, identify patterns, and forecast potential risk areas before they escalate into full-blown violations. This proactive stance empowers companies to take decisive action ahead of time, mitigating risks, reducing the frequency of compliance breaches, and ultimately safeguarding the organization from financial penalties and reputational damage. When discussing predictive compliance analytics, we are talking about a paradigm shift. No longer are compliance teams simply reacting to incidents as they occur; instead, they are actively scanning the horizon for early warning signals. This foresight allows companies to allocate resources more efficiently, tailor their monitoring efforts to emerging trends, and address compliance issues at the root before they evolve into systemic problems.

Embracing this technology streamlines internal processes and solidifies an organization’s commitment to regulatory adherence, building stakeholder trust and reinforcing its reputation as an industry leader. It calls all corporate compliance professionals to invest in robust AI tools and predictive analytics to stay one step ahead. In an era where non-compliance costs are high, predictive compliance is not just an operational upgrade; it is a strategic imperative that enables organizations to preempt violations, strengthen their internal controls, and create an agile, forward-thinking compliance culture built to last.

The Future is Now in AI-Driven Predictive Analytics in Risk Management-Mastercard

The challenge was that Mastercard needed a proactive approach to detect fraudulent transactions and mitigate compliance risks in its vast payment network. The solution it came up with was to implement an AI-driven predictive analytics model that detects suspicious activity in real time by analyzing billions of transactions and identifying anomalies. The outcome was that fraud detection rates improved by 40%, reducing regulatory risk while enhancing customer trust and compliance with financial crime regulations. For compliance professionals striving to navigate the complex landscape of modern regulatory environments, the Mastercard case offers several critical lessons for compliance professionals.

1. Predictive Compliance is the Future

Mastercard’s success illustrates that predictive analytics is not simply a technological upgrade—it’s a strategic imperative. Compliance departments must invest in systems that monitor and predict. When you can anticipate a fraudulent transaction before it occurs, you gain invaluable time to implement remedial measures.

2. Regulators Expect Real-Time, Data-Driven Oversight

The landscape of regulatory oversight is evolving rapidly. Agencies like the DOJ, SEC, and FCA increasingly demand that companies move beyond periodic reviews and adopt real-time monitoring systems. In this context, AI-driven predictive analytics is not a luxury; it’s a necessity. Organizations that fail to implement such technologies risk regulatory penalties and a loss of market credibility. The Mastercard example serves as a clarion call: regulatory bodies are watching and expect data-driven compliance that leaves no stone unturned.

3. Integration of AI and Human Judgment is Critical

While AI can process vast amounts of data at lightning speed, it is not infallible. The human element remains essential in interpreting AI-generated insights. Corporate compliance professionals must ensure a seamless integration between sophisticated algorithms and experienced human judgment. Technology is a powerful tool, but it must be wielded by hands that understand the nuances of ethics, fairness, and regulatory intent. This means that a balanced approach, where AI identifies patterns and humans validate them, can lead to more robust compliance outcomes.

4. Enhancing Third-Party Risk Management

A significant part of any company’s risk profile comes from its network of third-party partners. Mastercard’s deployment of AI-driven predictive models also included monitoring third-party activities and enhancing its risk assessment capabilities. Compliance professionals should note that predictive analytics can extend beyond internal processes to encompass suppliers, vendors, and other external entities. By applying the same rigorous standards across the board, organizations can mitigate risks associated with external compliance breaches and ensure a holistic approach to risk management.

5. Early Adoption Creates Competitive and Ethical Advantages

Mastercard’s early adoption of AI-driven fraud detection positioned it as a leader in risk management and an ethical champion in the fight against financial crime. Early adopters of predictive compliance systems gain a dual advantage: they reduce immediate risks and build a reputation for being proactive and responsible. This attracts customers, investors, and regulators alike. For corporate compliance professionals, the lesson is clear: waiting to embrace innovation is a luxury that few can afford in today’s fast-paced regulatory environment.

The Broader Implications for the Compliance Landscape

Beyond Mastercard’s specific successes, this case study reflects a broader trend in compliance management. Integrating AI into compliance operations is transforming the field, offering unprecedented opportunities to preempt and neutralize risks before they escalate into full-blown crises. As more organizations recognize the value of predictive analytics, we can expect a shift toward a more dynamic and responsive compliance culture.

The Mastercard example also underscores the importance of continuous innovation. Fraudsters are constantly evolving, and so must the systems designed to thwart them. Compliance professionals must foster an environment of perpetual improvement, where technology and processes are continually refined to meet emerging challenges. This proactive mindset is good for business and essential to upholding the ethical standards that form the backbone of any reputable organization.

Next-generation predictive analytics is revolutionizing corporate compliance by transforming the traditional, reactive approach into a proactive, forward-looking discipline. By leveraging advanced machine learning models, companies can expect compliance risks before they escalate, drawing on historical data, employee behavior, and external factors, such as geopolitical shifts and regulatory changes. This paradigm shift enables organizations to allocate resources more efficiently, address emerging risks at their root, and ultimately strengthen regulatory adherence while avoiding costly enforcement actions.

At the core of this transformation is predictive analytics’ ability to identify subtle patterns of misconduct and potential vulnerabilities in real-time. Instead of waiting for a compliance failure to occur, compliance teams are now empowered to detect warning signals early, implement timely interventions, and continuously refine their risk management strategies. The article emphasizes that such proactive measures safeguard an organization’s reputation and financial stability and build greater trust with regulators, investors, and stakeholders by demonstrating a commitment to ethical governance.

Ultimately, this forward-thinking approach to compliance is an operational improvement and a strategic imperative for staying ahead in a rapidly changing regulatory landscape. By embracing predictive analytics, organizations position themselves as industry leaders in risk management, fostering a culture of continuous improvement essential for ethical and sustainable business practices. This article serves as a rallying cry for corporate compliance professionals to harness these innovations, turning compliance challenges into competitive advantages.

Categories
Popcorn and Compliance

Popcorn and Compliance – All Quiet on the Western Front: Lessons on Business Resilience in Risk Management

Tom Fox and Richard Lummis are back with a new season of Popcorn and Compliance. Get ready for a ton of fun, insights, and all things Hollywood and the movies. In this episode, Tom and Richard dive into some Oscar-winning Best Pictures for Compliance and Leadership Lessons. Today, they consider the 1930 Oscar-winning Best Picture, All Quiet on the Western Front.

Leadership in extreme situations is a crucial skill, applicable not only on the battlefield but also in high-stakes corporate environments such as supply chain management and compliance. Tom emphasizes the importance of adaptability and resilience. He believes that having a structured approach to managing evolving risks is vital, much like soldiers navigating unpredictable battle conditions. Richard echoes this sentiment, highlighting how extreme emotions and behaviors in war necessitate extreme leadership responses, often revealing a disconnect between officers and frontline soldiers. Both perspectives underscore that effective leadership in such challenging scenarios requires decisiveness, emotional intelligence, and the ability to empower others, reinforcing the timeless nature of these leadership qualities.

Key highlights:

  • Adaptability and Resilience in Extreme Leadership
  • Adaptability Frameworks: Business Resilience in Risk Management
  • Executing Decisions with Imperfect Information
  • Leadership Insights from 1927 War Story

Resources:

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
FCPA Compliance Report

FCPA Compliance Report – DeepSeek and the Recalibration of Risk with Mike Huneke and Brent Carlson

Welcome to the award-winning FCPA Compliance Report, the longest-running podcast in compliance. In this episode, Tom welcomes back Mike Huneke and Brent Carlson for a special two-part podcast series on DeepSeek’s bombshell AI advancements announced on President Trump’s inauguration day. In Part 1, they review the business and compliance implications, and in Part 2, they consider the Sputnik Moment that has occurred.

In Part 1, they consider the immediate and significant repercussions in both the business and compliance landscapes. Key topics include the economic and geopolitical ramifications of DeepSeek’s innovations, changes in export control policies, and the unique compliance challenges AI technology poses. The discussion also examines how corporations can recalibrate their risk frameworks, integrate high-probability standards, and leverage data analytics to handle millions of transactions in a global economy. Emphasizing the importance of comprehensive compliance programs, the episode provides actionable insights for compliance professionals navigating this evolving landscape.

Key highlights:

  • DeepSeek’s AI Breakthrough
  • Economic and Compliance Implications
  • Export Controls and Legal Concerns
  • Compliance Strategies and Risk Management
  • Training and Organizational Culture

Resources

Mike Huneke

Hughes Hubbard & Reed website

Brent Carlson on LinkedIn

A Fresh Look at US Export Controls and Sanctions

DeepSeek Finds US Export Controls at a New ‘Sputnik Moment’ in Bloomberg.Law

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Categories
Blog

From Sanctions to AI Disruption: How Compliance Officers Can Navigate the Rapid Pace of Change

The pace of change in today’s global business environment is breathtaking. Events that unfold over a weekend can have massive implications for corporate compliance professionals by Monday morning. When there is a business change, risks constantly change. Over the past week, this was demonstrated with two seemingly unrelated but equally impactful developments:

  • The U.S. is imposing sanctions on Colombia because of its alleged failure to take back migrants, including a 25% tariff on goods imported from the country.
  • The emergence of DeepSeek, a Chinese AI company that has developed a large language model rivaling OpenAI’s ChatGPT—at a fraction of the cost.

For the compliance professional, what do these risks mean for your organization? What do you think about a framework for assessing and managing these risks as they raise critical compliance concerns spanning sanctions enforcement, export controls, supply chain transparency, and regulatory readiness? In the most recent episode of the FCPA Compliance Report, I explored these issues with Jag Lamba, CEO at Certa.ai. We focused on the Department of Justice (DOJ) framework in its 2024 Update to the Evaluation of Corporate Compliance Programs (2024 Update) to make sense of and respond to these rapid developments.

The DOJ’s framework in the 2024 Update is broken down into three key components:

  1. Is the compliance program well-designed?
  2. Is the compliance program adequately resourced and empowered to function effectively?
  3. Does the compliance program work in practice?

We applied these elements to the recent developments and explored how compliance professionals can prepare for similar shocks in the future.

  • Is Your Compliance Program Well-Designed to Handle Rapidly Emerging Risks?

The first test of a compliance program is whether it is designed to assess, identify, and mitigate risks promptly. The DOJ has emphasized real-time risk assessment—a shift from static, once-a-year reviews to continuous monitoring.

Take the U.S. sanctions against Colombia. This was not a predictable, drawn-out regulatory action. It happened over a weekend, and by Monday, businesses importing Colombian goods faced a 25% tariff with little time to prepare. Compliance officers had to:

  1. Quickly identify how much of their supply chain relied on Colombian imports.
  2. Determine if alternatives existed to mitigate the cost impact.
  3. Communicate rapidly with leadership to ensure the company could pivot operations where needed.

A traditional, slow-moving risk assessment process would have left companies flat-footed. Instead, an agile risk management system, leveraging real-time data analytics and automated monitoring, can help companies proactively spot emerging risks before they become crises.

The same logic applies to export controls in the tech sector, especially in light of the DeepSeek development. Compliance officers at major AI and semiconductor companies must now be asking:

  1. Who are our customers in Singapore and neighboring markets?
  2. Are our chips being resold or rerouted to sanctioned entities in China?
  3. Do we have automated tools to track and verify shipments to ensure compliance with U.S. export control laws?

It may be too late to prevent regulatory scrutiny if a company relies on manual risk assessments and outdated compliance processes.

  • Is Your Compliance Program Adequately Resourced and Empowered?

The DOJ has clarified that a compliance program is only as good as the resources allocated to it. Ten years ago, the conversation centered around whether compliance officers had direct access to the board. The conversation then shifted to the quality of your Chief Compliance Officer (CCO) and compliance personnel. Today, the discussion is shifting to whether compliance has the technology, data, and personnel necessary to operate effectively.

Consider the situation with NVIDIA and its skyrocketing sales in Singapore—a market that, while business-friendly, is geographically close to countries facing strict U.S. export controls. Regulators are undoubtedly scrutinizing this data. The question for NVIDIA’s compliance team is:

  1. Do they have the visibility to track where these chips are ending up?
  2. Are they able to monitor sales intermediaries in real time?
  3. Can they preemptively flag anomalies—such as a single country purchasing a huge volume of restricted technology?

Without AI-driven compliance monitoring and data analytics, even the best compliance teams risk being overwhelmed by the sheer volume of transactions and regulatory changes.

Similarly, companies impacted by the Colombian tariffs must ensure their compliance programs have the right supply chain monitoring tools to:

  1. Identify impacted suppliers instantly.
  2. Assess alternative sourcing options without regulatory hurdles.
  3. Develop contingency plans to mitigate financial and operational risks.

This compliance function cannot be effectively run using spreadsheets and email chains. Companies must invest in data automation, AI-driven analytics, and cross-functional collaboration tools to avoid such fast-moving regulatory changes.

  • Does Your Compliance Program Work in Practice?

Finally, compliance programs must not exist solely on paper but must demonstrate real-world effectiveness. The DOJ’s 2024 Update mandates data-driven evidence to assess whether a compliance program is functional and effective.

This means compliance teams must be able to show:

  1. How many third-party vendors and intermediaries have been vetted and monitored?
  2. How export controls are enforced in practice—not just documented in policy.
  3. How quickly can the company respond to a sudden regulatory change, such as the Colombian sanctions?

One of the best ways to demonstrate effectiveness is through compliance storytelling. A compliance officer should be able to present:

  • This is a clear narrative backed by data showing how the company detected and addressed a regulatory risk before it became a crisis.
  • These are case studies of how compliance actions have improved business outcomes—for example, reducing onboarding time for sales intermediaries without compromising compliance integrity.
  • Tangible evidence includes video training logs, compliance dashboards, and documented decision-making trails.

A powerful example comes from a Fortune 100 company that secured five years of compliance funding in one go rather than having to renegotiate budgets annually. How? By presenting compliance in business terms:

  • Demonstrating how compliance efficiencies improved sales and reduced onboarding delays.
  • Showing the financial impact of proactive risk management.
  • Using data-driven evidence to justify long-term compliance investments.

This is the future of compliance: a function that prevents regulatory risk and actively contributes to business strategy and growth.

The CCO as a Strategic Risk Navigator

The recent developments with Colombian sanctions and DeepSeek’s AI breakthrough highlight how fast compliance risks can evolve. Sanctions, export controls, and regulatory enforcement actions are no longer slow-moving threats—they can materialize overnight.

The DOJ’s 2024 Update provides a clear roadmap for compliance professionals to navigate these challenges:

  1. Risk assessment must be dynamic and continuous. Compliance programs must be designed to identify risks in real-time, not just during annual reviews.
  2. Compliance must be adequately resourced. Companies must invest in technology, data analytics, and automation to meet regulatory changes.
  3. Compliance must demonstrate real-world effectiveness. Data-driven evidence, compelling narratives, and tangible business impact must back compliance programs.

Compliance professionals who embrace data-driven decision-making, automation, and proactive risk management will not only survive but thrive in this era of regulatory volatility. The question is: Is your compliance program ready for the next unexpected headline?

Categories
Blog

What Are Agentic AI Systems, Part 1

We live in an era where artificial intelligence (AI) is no longer just a tool for answering questions or providing recommendations; it has strengthened into a partner capable of acting on our behalf. In a recent article in Bloomberg entitled Using AI Agents Requires a Balance of Trust, Privacy, Compliance, Sabastian Niles, President and Chief Legal Officer of Salesforce, discussed the role of AI agents. Today, we, therefore, enter the world of agentic AI systems. Understanding this new breed of AI is essential for compliance professionals to harness its power responsibly while safeguarding trust, privacy, and compliance. Over this three-part blog series, I will explore what Agentic AI systems are, how they can be used in compliance, and how to use Agentic AI going forward.

Defining Agentic AI Systems

In simple terms, Agentic AI does not simply inform; it acts. For compliance professionals, this opens up many possibilities for automating tasks, improving efficiency, and enhancing decision-making. However, with greater autonomy comes greater responsibility, particularly in ensuring these systems operate ethically and within regulatory boundaries.

Agentic AI systems differ significantly from traditional AI tools like chatbots or standalone large language models. While the latter is primarily reactive, responding to queries or prompts, Agentic AI systems operate with a higher degree of autonomy. These systems can analyze data, adapt to new information, and act within pre-defined parameters without requiring constant human oversight. Some of the key differences include the following.

  1. Autonomy. Unlike traditional AI, which often requires human input to execute tasks, agentic AI can take the initiative within established guidelines.
  2. Adaptability. Agentic AI learns and develops based on new data or changing conditions, making it highly dynamic.
  3. Action-Oriented. These systems can analyze data and decide and execute tasks in real time.

For example, imagine a compliance chatbot that answers employees’ questions about corporate policies. While useful, this chatbot cannot take further steps, such as generating a personalized policy report or flagging potential compliance risks. On the other hand, an Agentic AI system could handle these additional tasks autonomously, freeing compliance teams to focus on more strategic priorities.

Agentic AI in Action for Compliance

What does agentic AI mean for the compliance function? Essentially, it represents an opportunity to reimagine how compliance teams operate, enabling them to do more with less. Here are a few ways agentic AI systems can be used effectively in corporate compliance.

  1. Automating Repetitive Tasks. Compliance professionals often find themselves bogged down by routine, resource-intensive tasks. Agentic AI can take over many of these responsibilities, such as in policy management automation, by reviewing and updating compliance policies based on regulatory changes. You can provide employee support by responding to frequently asked compliance questions and escalating complex issues to the appropriate team members. You can move it outside your organization by continuously assessing third-party risks and analyzing real-time data, such as media reports or transaction histories.
  2. Enhancing Risk Assessment. Agentic AI systems can analyze vast amounts of data quickly and accurately, making them invaluable for identifying and mitigating risks. They can assist in transaction monitoring by detecting anomalies in financial transactions that may show potential fraud or corruption. You can move to more proactive risk screening by monitoring news and regulatory updates to identify emerging risks that could impact the organization. Most excitingly, they can provide predictive analytics. They could allow you to expect compliance challenges based on historical trends and current data.
  3. Supporting Decision-Making. With their ability to analyze complex data and generate actionable insights, agentic AI systems can help compliance teams make better-informed decisions. This can include scenario planning and forecasting by modeling the impact of potential regulatory changes on the organization. As the Department of Justice reminded us in the 2024 Update to the Evaluation of Corporate Compliance Programs (2024 Update), you can move to true data-driven recommendations to provide documented guidance on addressing identified risks or improving compliance processes. Finally, in the never-ending battle for resource allocation, Agentic AI can identify areas where compliance efforts should be prioritized for maximum impact.

The Risks and Responsibilities of Agentic AI

While the benefits of agentic AI are clear, compliance professionals must approach its adoption cautiously. The autonomy of these systems introduces new risks. First and foremost is data integrity and Garbage In, Garbage Out (GIGO), which tells us that AI systems are only as good as the data they process. The system’s outputs could be flawed if the data is incomplete, biased, or outdated. Accountability and transparency are critical, as the question will be asked, “When AI systems make decisions or take actions, who is ultimately responsible?” Compliance teams must establish clear guidelines to ensure accountability and transparency. Finally, there are the ethical concerns involved. The ability of agentic AI to act autonomously raises questions about transparency, fairness, and privacy. These concerns must be addressed through robust governance and ethical guidelines.

Why Compliance Professionals Should Care

Agentic AI systems are not just another tech innovation—they are a significant change that will shape the future of compliance. By understanding these systems, compliance professionals can position themselves as strategic enablers, helping their organizations harness the power of AI responsibly. Compliance teams are uniquely positioned to ensure that AI systems operate transparently and ethically, fostering stakeholder trust.

As AI-specific regulations emerge, compliance professionals will play a critical role in ensuring adherence to new legal standards, as echoed in the 2024 Update.

By integrating agentic AI into their workflows, compliance teams can improve efficiency, reduce costs, and drive profitability in the company. It will certainly demonstrate an increased ROI for compliance.

The Path Forward

The rise of agentic AI systems represents a transformative opportunity for compliance professionals, but only if implemented thoughtfully and responsibly. By embracing this technology, compliance teams can move from being seen as cost centers to becoming innovation partners, driving compliance and business success.

The key is striking the right balance: leveraging the autonomy of agentic AI to achieve efficiencies while maintaining the trust, privacy, and ethical standards foundational to compliance. As compliance professionals, we can lead this transformation, ensuring that agentic AI serves as a tool for good, not a source of risk. The bottom line is that the future of compliance is not simply about saying no to innovation; it is about guiding it responsibly. Let Agentic AI be your ally in this journey.

Join us tomorrow in Part 2, to discuss how to use Agentic AI systems.

Categories
Innovation in Compliance

Innovation in Compliance – Navigating Risk Management in the Automotive Industry with Tom Kline

Innovation comes in many forms, and compliance professionals need to be ready for it and embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom Fox is joined by Tom Kline, a seasoned automobile industry expert and risk management authority.

The two Toms delve into specific risks unique to car dealerships and how to manage customer and employee relations to avoid regulatory problems effectively. Kline shares his extensive experience from almost 35 years in the industry, detailing strategies like proactive online reputation management and creative contractual clauses designed to preempt legal issues from customer disputes. They also discuss the complexities of insurance policies in the automotive sector and the importance of understanding coverage as a risk mitigation tool. Kline introduces ‘Tuck the Octopus,’ a metaphor for handling the multifaceted challenges dealerships face, emphasizing customer service’s importance in fostering long-term loyalty.

Key highlights:

  • Key Risks in Automobile Dealerships
  • Managing Customer and Employee Complaints
  • Upstream Risk Management
  • Tuck the Octopus: A Creative Solution
  • Service Aspect of Dealerships

Resources:

Tom Kline on LinkedIn

Better Vantage Point

Tuck the Octopus

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Tip of the Day

Compliance Tip of the Day – Board Questions and Metrics for 3rd Party Risk Management

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we consider what questions a Board of Directors should ask a CCO and the types of metrics they should ask for in their role of overseeing the compliance program.

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the full 3-book series, The Compliance Kids, on Amazon.com.

Categories
Compliance Into the Weeds

Compliance into the Weeds: Risk-Based Compliance Lessons from a Young Entrepreneur’s Ice Cream Stand

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Are you looking for some hard-hitting insights on compliance? Look no further than Compliance into the Weeds! In this special election day episode of ‘Compliance into the Weeds,’ Tom Fox and Matt Kelly dive into a lighter yet insightful compliance story involving a young boy named Danny Doherty.

At 12 years old, Danny set up a homemade ice cream stand in Massachusetts to raise money for a hockey team for children with developmental disabilities. However, the local health department shut its stand down due to risks associated with homemade dairy products, highlighting the importance of a risk-based approach in compliance activities. Tom and Matt discuss key compliance lessons from this incident, such as the necessity of addressing real risks, the potential for compliance failures despite good intentions, and the importance of effective communication by regulators.

Key highlights:

  • The Story of Danny Doherty
  • Compliance Lessons from Danny’s Story
  • Risk-Based Approach in Compliance
  • The Importance of Communication in Compliance

Resources:

Radical Compliance

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn