• |

    Dec. 31, 2025

Risk Assessment for Trump 2.0: Employing Data and Emerging Technologies

As corporations and their compliance teams work in an altered enforcement environment, conventional approaches to assessing risk that are anchored in fixed frameworks and predictable threat inventories may not suffice. This final article in a four-part series suggests how companies can leverage adaptive design, actionable data and emerging technologies to ensure that their risk assessments are accurate and informative. Part one addressed what risk assessments should look like in light of recent changes to the DOJ’s Evaluation of Corporate Compliance Programs, how to design an assessment to address rapidly changing risk environments and the importance of documenting the process. Part two unpacked the specific areas of risk that companies should pay attention to when reassessing their risk, and part three examined when and by whom compliance risk should be assessed. See “Unifying Risk Assessments: Breaking Silos to Enhance Efficiency and Manage Risk” (Mar. 26, 2025).

Ten Tips for Building a Generative AI Compliance Policy Tool

Artificial intelligence (AI) can be a time-saving technology for compliance professionals. A well-honed generative AI platform can handle many questions on company policies, for example, that would otherwise require the attention of members of the compliance team. In developing an in-house AI-driven tool to answer questions about company policies, TD Synnex, a B2B IT distributor with more than 23,000 employees across multiple countries, learned a number of crucial lessons that can be deployed by other organizations building similar systems. At SCCE’s 24th Annual Compliance & Ethics Institute, Jannica Houben, vice president for global legal transformation, and Travis Waugh, director of training, policy and communication, shared what they learned. This article distills their insights and provides 10 tips for how to build a similar AI compliance policy tool. See “Survey Finds Increased Value in Having a Culture of Compliance” (Feb. 26, 2025).

Gen AI Chats Becoming Evidence: How Businesses Can Prepare for Requests

Generative artificial intelligence (Gen AI) chats have begun to show up as evidence in both criminal and civil cases. As Gen AI features integrate into everyday interfaces for customers and employees, companies should consider preparing for at least four types of situations where they will need to disclose AI chat logs, Google’s former director of law enforcement and information security told the Anti-Corruption Report. This second article in a series on Gen AI chats as possible evidence examines the types of requests that companies might receive and provides steps they can take to manage responses to those requests. Part one reviewed the use of AI chat evidence in three criminal cases and the unsettled law around external requests for such evidence. See our two-part series on the FirstEnergy decision: “Reaffirming Upjohn’s Approach to Privilege in Internal Investigations” (Dec. 3, 2025), and “Best Practices for Preserving Privilege in Internal Investigations” (Dec. 17, 2025).

How to Help Business Leaders Respond Well to Bad News

An unfortunate but integral part of being a compliance officer is bringing business leaders bad news. However, by combining frameworks from crisis management with strong compliance functions, a CCO can manage expectations and help leaders show up as their best selves. This article distills insights from a panel discussion at SCCE’s 24th Annual Compliance & Ethics Institute featuring Angie Gorman, managing director at FTI Consulting; Ellen Hunt, vice president for the global ethics and compliance program at Cushman & Wakefield; and Junna Ro, head of strategic legal initiatives at the University of California. They discussed leaders’ reactions to unwelcome news, offering practical strategies for how compliance professionals can help companies embrace and act on it. See “Insights From Whistleblowers on How to Foster a Speak‑Up Culture” (Oct. 22, 2025).

Tips From Big Tech Leaders on Navigating Global Privacy Regulations

It is more important than ever for the privacy officers of multinational companies to know how to deal with the increasing complexities of privacy regulations and innovation in a global context. Big Tech privacy processes can offer valuable lessons for other companies because they demonstrate best practices for building consumer trust, ensuring regulatory compliance and managing data in a way that provides a competitive advantage. This article distills commentary from three former leaders of major tech companies, who spoke at the IAPP’s Privacy. Security. Risk. 2025 conference, on strategies for navigating multiple regulatory systems, engaging with regulators, governing artificial intelligence and the importance of consumer trust. See our two-part series on emerging issues in workplace privacy: “Data Collected and Employees’ Perspectives” (Nov. 6, 2024), and “Regulations and Compliance Strategies” (Nov. 20, 2024).

Most-Read Articles

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.