Each year, LRN’s Ethics & Compliance Program Effectiveness Report provides one of the most useful snapshots of the global compliance profession. The 2026 report—“The Next Leap: Technology, Trust, and the Transformation of Compliance”—again offers valuable insight into how corporate ethics and compliance programs are evolving amid rapid technological change, new regulatory expectations, and shifting workplace culture Based on surveys of more than 2,500 compliance professionals...

The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) has imposed a $374,474 civil penalty against California-based satellite technology supplier Vizocom for unlawfully exporting controlled technical data related to military antennas to a Chinese manufacturer. Although framed as a single Export Administration Regulations (EAR) violation, the enforcement action carries outsized compliance lessons — particularly for defense contractors navigating cost pressures, supply chain decisions,...

Third-party risk management is undergoing a fundamental shift. For years, companies built their programs around familiar categories—corruption risk, sanctions exposure, data privacy, financial stability, legal compliance, and reputational concerns. Those risks still matter. But they are no longer enough. Today, any serious third-party risk management program has to integrate artificial intelligence risk, cybersecurity risk, and broader technology risk into its core framework. This is no...

For years, I have consistently pushed organizations and compliance professionals to embrace technology and automated solutions as a core component of an effective ethics and compliance program. That message is even more urgent today. Let me put it bluntly: if your compliance program is not automated in key areas, you do not have an effective compliance program—by definition. The compliance environment has changed dramatically. Companies...

The U.S. government has issued significant new guidance clarifying how sanctions and export controls apply to certain oil-related transactions involving Cuba. In coordinated actions, the Office of Foreign Assets Control (OFAC) announced a new “favorable licensing policy” for specific resales of Venezuelan oil to Cuba, while the Bureau of Industry and Security (BIS) issued interpretive guidance regarding the availability of license exceptions under the Export...

As 2026 unfolds, the global cyber threat landscape is rapidly evolving — driven by accelerating attacker sophistication, geopolitical pressures, and, above all, the rise of artificial intelligence as both a tool and a target. The recently released 2026 CrowdStrike Global Threat Report highlights a stark shift: adversaries are no longer only exploiting technical vulnerabilities. They are leveraging AI to supercharge attacks, compress response windows, and...

The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) recently imposed a $1 million civil penalty against Teledyne FLIR, a U.S. manufacturer of thermal imaging cameras, for multiple violations of the Export Administration Regulations (EAR) involving exports to China and Hong Kong. The enforcement action highlights a recurring compliance challenge for multinational exporters: the complex application of the EAR’s de minimis rules, as...