The most important aspect of DOJ’s revised Criminal Division Corporate Enforcement and Voluntary Self-Disclosure Policy may be its unmistakable message to compliance professionals: a compliance program will be judged not by what it says on paper, but by whether it can drive fast, credible, and measurable action when misconduct is uncovered. This is where the unified policy has real day-to-day significance for companies. For years,...

The Department of Justice has now unified and revised its approach to corporate enforcement in a way that deserves close attention from corporate boards, general counsel, compliance officers, and white collar defense counsel. With its issuance of the Criminal Division Corporate Enforcement and Voluntary Self-Disclosure Policy, DOJ has attempted to bring greater transparency and consistency to a subject that has too often depended on discretionary,...

Maintaining regulatory compliance has never been easy. Today, it is becoming even harder. Financial institutions and other regulated businesses are facing a steady wave of new laws, guidance, enforcement priorities, and supervisory expectations. The challenge is no longer limited to digesting a few major rule changes each year. Instead, compliance teams are being forced to manage a continuous stream of smaller, interconnected updates arriving from...

The final quarter of 2025 produced a modest resurgence in Foreign Corrupt Practices Act (FCPA) activity following the administration’s June 2025 FCPA guidelines. Whether that uptick signals a sustained enforcement trend remains uncertain. The Department of Justice (DOJ) and Securities and Exchange Commission (SEC) continue to balance FCPA enforcement against other national priorities, and senior officials have issued at times inconsistent public statements regarding enforcement...

Each year, LRN’s Ethics & Compliance Program Effectiveness Report provides one of the most useful snapshots of the global compliance profession. The 2026 report—“The Next Leap: Technology, Trust, and the Transformation of Compliance”—again offers valuable insight into how corporate ethics and compliance programs are evolving amid rapid technological change, new regulatory expectations, and shifting workplace culture Based on surveys of more than 2,500 compliance professionals...

The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) has imposed a $374,474 civil penalty against California-based satellite technology supplier Vizocom for unlawfully exporting controlled technical data related to military antennas to a Chinese manufacturer. Although framed as a single Export Administration Regulations (EAR) violation, the enforcement action carries outsized compliance lessons — particularly for defense contractors navigating cost pressures, supply chain decisions,...

Third-party risk management is undergoing a fundamental shift. For years, companies built their programs around familiar categories—corruption risk, sanctions exposure, data privacy, financial stability, legal compliance, and reputational concerns. Those risks still matter. But they are no longer enough. Today, any serious third-party risk management program has to integrate artificial intelligence risk, cybersecurity risk, and broader technology risk into its core framework. This is no...