How to Prove Healthcare Compliance Program Effectiveness

Can you walk the healthcare compliance walk? Regulators no longer accept activity reports as proof of success. They want hard evidence that your compliance program changes behavior and operates independently. What's next? Here are three actionable steps to improve your healthcare compliance program, as suggested by our annual survey, in partnership with Strategic Management Services, on the current state of healthcare compliance programs. Since Outcomes ...

New DOJ FCPA Guidelines: What it Means for You

On June 9, 2025, the Department of Justice (DOJ) issued new DOJ FCPA guidelines that reshape how—and when—the Foreign Corrupt Practices Act (FCPA) will be enforced. The update follows a 180-day pause under Executive Order 14209, which directed prosecutors to stop initiating new FCPA investigations unless tied to national security, cartel activity, or competitive harm to U.S. companies. What is the FCPA? The FCPA prohibits ...

What CPS 230 Means for Your Supply Chain Security

The Australian Prudential Regulation Authority’s (APRA) CPS 230 mandates critical supply chain risk management updates. Financial institutions reliant on third-party services must pay close attention to this mandate. Why? Supply chain security breaches remain a critical issue, actually now affecting over 75% of software supply chains and involving recent high-profile incidents.   CPS 230 therefore aims to act as a shield to better safeguard organizations. To ...

By |2025-07-02T17:46:48+00:00July 2nd, 2025|Governance, Risk & Compliance: GRC, Regulatory Change|

What is Provision 29? The New UK Internal-Controls Declaration is Here

Does your risk management and internal framework really work? Some companies working in the United Kingdom will need to start proving it. Starting with accounting periods that open either on or after 1 January 2026, every company in either the FCA’s commercial companies or closed-ended investment fund categories must make a statement in its annual report confirming whether its risk management and internal control framework ...

Understanding DOJ Guidance: What’s the Impact on Corporate Compliance Programs?

The U.S. Department of Justice (DOJ) has long emphasized the importance of effective corporate compliance programs. While enforcement priorities may shift over time, the core expectations outlined in DOJ guidance remain consistent: programs must be well-designed, applied in good faith, and actually work in practice. What does that look like in real terms? First, programs must reflect the unique risks of the organization. There’s no ...

By |2025-06-02T15:54:55+00:00June 2nd, 2025|Compliance, Governance, Risk & Compliance: GRC|

Regulatory Horizon Scanning: Why It Belongs in Your Risk Toolkit 

Regulatory change continues to challenge organizations worldwide. From the UK's Digital Services Act and the EU's Cyber Resilience Act to the U.S. Corporate Transparency Act, businesses must continuously pay close attention to ongoing local and global regulations. With escalating ESG disclosure mandates, increasing AI governance, and a surge in enforcement actions, the volume of new requirements—and the speed at which they hit—is forcing companies to rethink how ...

By |2025-05-08T13:31:35+00:00April 22nd, 2025|Governance, Risk & Compliance: GRC, Regulatory Change|

How to Create an Effective Compliance Program

Ask five organizations what makes an effective compliance program, and you’ll likely get five different answers. But ask a regulator, and the picture gets a lot clearer.  Regulators are not looking for flashy training modules or one-size-fits-all policies. What they’re looking for is evidence—evidence that your compliance program is real, rooted in risk, and taken seriously across the business. Can you walk the compliance walk ...

By |2025-06-17T20:25:38+00:00April 16th, 2025|Compliance, Governance, Risk & Compliance: GRC|

2025 Global Regulatory Changes to Watch: ESG, AI, Cybersecurity & More

Global regulations are evolving—and before our very eyes. But it’s not just the volume of regulatory changes that matters. It’s the new direction changes may be headed and the need to keep up. Across global markets, a greater shift is taking hold. Compliance is now operating like a mirror, becoming a clear reflection of corporate values, ethics, and long-term resilience. In 2025, a new wave ...

By |2025-04-28T03:08:23+00:00April 14th, 2025|Compliance, Governance, Risk & Compliance: GRC|

10 Innovations Shaping the Future of Compliance and Learning

At SAI360’s CustomerConnect Chicago event, industry leaders and forward-thinking professionals came together to explore the intersection of compliance and learning and discuss the cutting-edge advancements shaping both of these fields. A siloed approach to risk management is no longer the solution. What is? With compliance playing a critical role in navigating risks and maintaining organizational integrity and operational resilience, GRC-learning integration is revolutionizing how teams learn, ...

What is the Corporate Transparency Act? Here’s What to Know.

The Corporate Transparency Act (CTA) is shaking up how small businesses handle ownership disclosures. Enacted in 2021, this Act went into effect in January of 2024. It's enforced by the Financial Crimes Enforcement Network (FinCEN), which is part of the U.S. Department of Treasury. Similar to the Economic Crime and Corporate Transparency Bill enacted a few years ago in the UK, the goal of CTA ...

By |2025-04-28T03:00:51+00:00March 17th, 2025|Governance, Risk & Compliance: GRC, Regulatory Change|