SEC Warning Shot on Climate Disclosure

By Matt Kelly | February 24, 2021 |

The acting head of the Securities and Exchange Commission said today that agency staff will start paying more attention to companies’ climate change disclosures, as a prelude to the SEC updating its original climate change guidance now 11 years old.  Allison Herren Lee, acting chair since the Biden Administration took office in January, released her…

Read More

2021 World’s Most Ethical Announced

By Matt Kelly | February 23, 2021 |

Ethisphere announced its 2021 list of World’s Most Ethical Companies today, and corporate ethics and compliance officers know what that means: a barrage of emails from the CEO and board asking, “Why aren’t WE on that list???” This year Ethisphere honored 135 companies from 22 countries and across 47 industries. We can’t name all 135…

Read More
compliance jobs

Compliance Jobs Report: Feb. 19

By Matt Kelly | February 19, 2021 |

The Compliance Jobs Report this week has new hires at Peloton, Coinbase and a few other cryptocurrency players, Arcutis, and more. We also have promotions at DraftKings, TJX Cos., and RPM International. Job leads this week are in Cleveland, Boston, and Helsinki; and our Meme of the Week goes out to IT risk managers. As…

Read More

OFAC Hits Bitcoin Processor

By Matt Kelly | February 18, 2021 |

The Treasury Department has slapped a $507,375 fine against a bitcoin payments processor for sanctions compliance failures that allowed transactions with parties in Cuba, North Korea, Iran, and elsewhere — only the second such enforcement action ever taken over digital currency transactions, but probably not the last.  The firm in question is BitPay, headquartered in…

Read More

DoJ Dinged on Whistleblower Protection

By Matt Kelly | February 16, 2021 |

Radical Compliance is never one to engage in schadenfreude, but for whatever this may be worth: the Justice Department has been dinged by its own inspector general for sloppy whistleblower protection efforts with its third parties. The inspector general, Michael Horowitz, sent a memo to senior Justice Department officials last week warning that the department…

Read More

Digging Into Diversity Disclosures

By Matt Kelly | February 15, 2021 |

The other week we had a post on what companies are saying about ethics and corporate culture in the new human capital disclosures now required in annual reports. Today I want to circle back to another subset of that information: what companies are saying about their diversity and inclusion efforts.  Diversity disclosures have been on…

Read More

CDC Guidance Change Worth Noting

By Matt Kelly | February 12, 2021 |

All right compliance officers, gird your loins. The Centers for Disease Control published new guidance this week relaxing a crucial public health restriction on people vaccinated against covid, opening what could be a Pandora’s Box of policy management challenges. The guidance came Wednesday. It specifies that “fully vaccinated persons” — people who have received all…

Read More
compliance jobs

Compliance Jobs Report: Feb. 12

By Matt Kelly | February 12, 2021 |

The Compliance Jobs Report this week has personnel moves all over the world: Italy, Argentina, Spain, Iceland, Nigeria, and even right here in the United States. Updates from the World Food Programme, Novartis, Volkswagen, Olympus Corp., Abercrombie & Fitch, and many more. Our Meme of the Week goes out to anyone dealing with data. As…

Read More
data security

Thoughts on IT Risk Management

By Matt Kelly | February 11, 2021 |

Another week, another report painting a mottled picture of corporations and their approach to IT risk and compliance. This time around we have interesting points to explore about the pandemic’s effect on IT risk, how companies are responding to that pressure, and who is or isn’t in charge of all this stuff. The report is…

Read More

A Hair-Raising Ransomware Story

By Matt Kelly | February 7, 2021 |

Anyone interested in a sobering example of cybersecurity risk management and disaster recovery planning gone wrong? Because we have a doozie, courtesy of Washington’s top cybersecurity preparedness agency. CISA, the Cybersecurity & Infrastructure Security Agency, released a bulletin last Friday warning corporate organizations about the threat of ransomware. The bulletin wasn’t much (two pages long)…

Read More

About Us

Technically, Radical Compliance is the personal blog of Matt Kelly, long-time writer and observer of the corporate compliance and GRC scene. I was a writer, editor, and publisher at Compliance Week, 2003 through 2015; some of you may know me from my career there. I also speak frequently at compliance conferences and other events, and will pretty much shoot the breeze on any compliance topic with anyone who asks.

Keep in Touch