EU Deforestation Directive delayed, experts advise compliance managers to not rest on laurels
If your business uses leather, rubber, wood, beef, palm oil, soy, or paper, then you may need to comply with the EU Deforestation Directive, a new rule intended to ensure that no goods traded in the EU contribute to global deforestation.
Spanish telecomm Telefónica S.A. fined $85M over bribes to government officials in Venezuela
A subsidiary of Spanish telecommunications provider Telefónica S.A. will pay $85.2 million to settle a charge that it violated the Foreign Corrupt Practices Act when it paid bribes to Venezuelan officials to gain preferential access to a currency auction.
Meta-backed EU appeals body facing conflicts of interest concerns
Ireland’s cozy relationship with big business and Big Tech has once again come under scrutiny after the country’s media regulator allowed a $15 million one-off funding payment from Meta’s Oversight Board Trust to help launch the newly formed Appeal Centre Europe.
Irish DPC fines LinkedIn $335M over GDPR violations related to targeted advertising
The Irish Data Protection Commission fined Microsoft-owned LinkedIn 310 million euros (U.S. $335 million) over violations of the European Union’s General Data Protection Regulation related to the social media company’s data processing and targeted advertising.
EU businesses will soon have to report on supply chains and sustainability. Not all are ready
Supply chains are about to become the next big thing in sustainability compliance. However, many organizations still lack the data and assurance capabilities to track sustainability and human rights activities across their extended supply chains – which is required by the EU’s CS3D. Many others that fall out of scope ...
Pace of innovation will make EU AI Act hard to enforce, experts say
Concerns about how robustly European member states may enforce the EU AI Act, which took effect on Aug. 1, are divided between if regulators will take a “light touch” approach or a sledgehammer for noncompliance. One thing’s for sure, the pace of AI innovation will make enforcement very difficult.
Photo gallery: Compliance Week Europe 2024
Compliance Week Europe, held Oct. 15-16 in Amsterdam in partnership with our sister organization the Internation Compliance Association, gathered more than 200 GRC professionals across industries. Check out some of the sights from the event.
What’s your risk appetite? EU firms grapple with ‘ridiculously complex’ ESG reporting rules
Discussions on the increasingly complex ESG rules in the EU were the crux of some conversations at Compliance Week Europe, a two-day conference in Amsterdam Oct. 15-16. The event brought together Compliance Week and its sister organization, the International Compliance Association, and more than 200 GRC professionals across industries.
Companies are slowing AI launches in Europe, some say European Union regulations are why
The European Union’s Digital Markets Act is forcing many Big Tech companies to postpone the launch of artificial intelligence-powered features, like Apple Intelligence, over user privacy and data security concerns.
AI misuse could lead to sanctions from multiple regulators, experts warn
The proliferation of AI, as well as the promised business cases promoting its use, has led companies around the world to quickly invest in the technology. Executives hope these AI tools will improve efficiencies, reduce costs, and help them stay competitive. But it could lead to just the opposite.
Barclays is axing its bonus caps. Is it also ditching good governance?
Four years post-Brexit, London-based Barclays became the first British bank to scrap bonus caps for its traders that were meant to curb excessive risk-taking with client cash, improve corporate governance, and restore faith in an industry most working people still hold responsible for 15 years of economic misery.
FTC sounds alarm on business practices turning into ‘vast surveillance’
The Federal Trade Commission took aim at the business models of some of the world’s largest companies, publishing a years-long study that decried technologies that have created “vast surveillance” networks that expose people to “a host of harms” and violate children’s privacy laws.
An Amsterdam discussion on increased role of CCOs
Compliance Week and its sister organization the International Compliance Association will bring together more than 200 GRC professionals for Compliance Week Europe Oct. 15-16 in Amsterdam to discuss how they’re making sense of the constantly changing regulatory landscape.
All hands on deck needed to get ESG disclosures right, report finds
Multiple emerging environmental, social, and governance and disclosure standards pose legal and operational risks to many companies, but also opportunities to improve reporting and get ahead of requirements, a new report found.
DORA set to enhance cyber resilience requirements for EU financial firms
The European Union’s Digital Operational Resilience Act, which is set to take effect next year, will require financial services firms to implement stronger measures to protect not only themselves from disruption caused by cyberattacks but also the sector as a whole.
Lithuanian DPA orders Vinted to pay $2.6M over GDPR violations
The data protection authority of Lithuania levied a fine of 2.4 million euros (U.S. $2.6 million) against Vinted UAB, an online clothing trading and exchange platform, for alleged violations of the European Union’s General Data Protection Regulation.
European Commission informs X it may be in breach of Digital Services Act
The European Commission informed X, formerly Twitter, that it may be the first company found to be in violation of the European Union’s Digital Services Act in areas “linked to dark patterns, advertising transparency, and data access for researchers.”
EU agencies examine efforts to identify and monitor examples of greenwashing
The European Securities and Markets Authority, European Banking Authority, and European Insurance and Occupational Pensions Authority issued reports on greenwashing in the financial sector, describing how they plan to call out examples of false or misleading sustainability claims.
Reignited calls to tighten up AML in London, crown dependencies
Despite repeated interventions, fines, and negative publicity, money laundering is rife in U.K. financial services firms, according to Deputy Foreign Secretary Andrew Mitchell.
Big Tech data for finance: Will FCA plans set trend?
Plans in the United Kingdom to share Big Tech data with financial services firms could prompt other industry regulators to follow suit or result in “unintended consequences” that see Meta, Google, and others growing market share.
Ericsson completes DOJ-imposed compliance monitorship
Swedish telecommunications giant Ericsson announced the conclusion of the independent compliance monitorship imposed on the company following its 2019 settlement for violations of the Foreign Corrupt Practices Act.
Experts express skepticism toward ‘challenging’ SFO strategy
The U.K. Serious Fraud Office last month published its five-year strategic plan outlining how it intends to improve information gathering and international cooperation, as well as its enforcement record.
BaFin relaxes growth restrictions on N26 following AML improvements
German financial regulatory authority BaFin lifted growth restrictions on N26, after the digital bank made improvements to its anti-money laundering program.
HSBC fined $8M by FCA for mishandling customers in default
The U.K. Financial Conduct Authority fined HSBC nearly £6.3 million (U.S. $8 million) for failing to properly consider the financial position of customers who missed payments.
N26 fined $9.6M for not timely filing AML reports to BaFin
Germany’s financial supervisory authority issued a fine of €9.2 million euros against mobile bank N26 for “systematically” submitting late anti-money laundering reports.
Citi unit fined $78.6M by U.K. regs for trading control failures
The Financial Conduct Authority and Prudential Regulation Authority combined to fine a London-based Citigroup subsidiary approximately £61.7 million (U.S. $78.6 million) for control failures related to its trading system.
Survey: Social media remains vexing issue for financial firms
A recent survey by surveillance technology firm SteelEye found most financial institutions do not monitor their employees’ use of social media or factor in market risks exacerbated by social media posts.
Senate report cites VW, BMW, JLR for potential forced labor violations
A U.S. Senate report found three European automakers—Volkswagen, BMW, and Jaguar Land Rover—sold cars in the United States with parts sourced from a supplier suspected of using forced labor from China’s Xinjiang region.
ESMA guidelines tackle greenwashing via fund names
The European Securities and Markets Authority published its final report containing guidance for the use of environmental, social, and governance- and sustainability-related terminology in fund names.
Crowe U.K. dinged $181K by FRC for Aseana Properties audit failures
Crowe U.K. was assessed a penalty of £144,000 (U.S. $181,000) by the U.K. Financial Reporting Council for failures in its audit of Aseana Properties Limited’s financial statements for the year ended Dec. 31, 2019.
FRC fines PwC, EY for London Capital & Finance audit failings
Big Four firms PwC and EY were each penalized by the Financial Reporting Council for alleged shortcomings during their respective audits at collapsed investment firm London Capital & Finance.
DOJ orders Hahn Air to pay $27M over travel fee false claims
Hahn Air Lines and its U.S. subsidiary agreed to pay $26.8 million to settle alleged violations of the False Claims Act over knowingly failing to provide remittance for travel fees it collected from commercial airline passengers flying into or within the United States.
EU charts green path forward with ECT withdrawal, new regs
The impending decision by the European Parliament to withdraw from the international Energy Charter Treaty and adopt further climate rules sets a clear direction for green regulations in the region.
What’s the problem for GDPR repeat offenders?
The General Data Protection Regulation has been in force for nearly six years. Some industries—and some companies—have been more prone to fall foul of the rules than others.
Lloyds decision to cut risk staff draws criticism, defenders
Lloyds Banking Group is cutting jobs in its risk management function after an internal review reportedly found it was a “blocker” to the organization’s strategic transformation.
U.K. regs up pressure on debt collection practices
Debt collection has become a hot topic as U.K. regulators pile pressure on utilities and financial services companies to improve how they treat customers in arrears.
Wirecard whistleblower laments EU speak-up protection inconsistencies
The European Union’s strong stance on whistleblower protection has been undermined by member states’ wildly different approaches to punishing organizations that fail to safeguard people who raise concerns, says Wirecard whistleblower Pav Gill.
TikTok scrutiny mounts across globe amid EU, U.S. crackdowns
TikTok is suspending new features amid an inquiry by the European Commission into its compliance with the Digital Services Act, all while responding to a U.S. ban just signed into law.
Czech DPA fines Avast $15M over GDPR violations
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
Accountancy bodies urge ethical behavior amid exam cheating scandals
Trust in the integrity of corporate finance and auditing is vital, but repeated scandals over exam cheating at the largest multinational firms are denting faith in the system globally.
FCA exploring how Big Tech data can aid financial services
The U.K. Financial Conduct Authority reemphasized its desire to work with Big Tech firms to examine how their data might be useful to the financial industry.
FCA publishes guidance on anti-greenwashing rule
The U.K. Financial Conduct Authority issued new guidance on how to comply with its upcoming anti-greenwashing rule, which is set to take effect May 31.
BaFin fines Commerzbank $1.6M over supervision, AML lapses
Germany’s financial supervisory authority issued total fines of €1.45 million (U.S. $1.6 million) against Commerzbank AG to settle allegations of inadequate monitoring and anti-money laundering controls.
Report: Poor awareness of supply chain disclosure regs leaving firms exposed
Compliance failures in the supply chain are hampering organizations’ efforts to implement environmental, social, and governance initiatives and meet disclosure requirements, according to a new report by U.K. law firm Burges Salmon.
SFO outlines five-year strategy amid ‘increasing pace of change’
The U.K.’s Serious Fraud Office said in a five-year strategic plan it’s “struggled to keep pace with demand” as ballooning casework shows no signs of slowing down.
EDPB decision sparks ‘consent or pay’ debate for Big Tech firms
Big Tech firms might need to rethink their plans to charge users for not selling their personal data for behavioral advertising following a decision by Europe’s primary data regulator.
Focused on consumer privacy? Don’t forget employees’ rights
The implications of a privacy rights case involving a U.K.-based Uber Eats driver underscore a popular belief that companies prioritize protecting the personal information of their customers over the data rights of their employees.
U.S., U.K. ban new Russian metal imports
The U.S. Treasury Department, in coordination with the United Kingdom, is clamping down harder on Russia’s ability to wage war against Ukraine by banning the import of Russian-origin aluminum, copper, and nickel.
ECHR ruling opens door to climate change litigation on basis of human rights
By holding the Swiss government accountable for failing to do more to limit climate change, a ruling by the European Court of Human Rights might have significant implications for legislators and organizations in other countries across the European Union.
KPMG Netherlands fined record $25M by PCAOB for exam cheating
KPMG Netherlands agreed to pay a record $25 million penalty levied by the U.S. Public Company Accounting Oversight Board for allegedly allowing widespread cheating by employees on internal training exams and misinforming regulators about the misconduct.