On July 25, 2019, New York’s Governor, Andrew M. Cuomo, signed the Stop Hacks and Improve Electronic Data Security (SHIELD) Act, which imposes stronger obligations on businesses handling private data to provide proper notification to affected consumers when there is a security breach. The act amends New York’s existing laws governing data breach notification requirements and becomes effective March 21, 2020.Read More
One of the key elements of successful compliance training is having a unified goal of what training should accomplish. However, a survey by the Society of Corporate Compliance and Ethics showed that compliance and ethics professionals see themselves, their managers, and boards as having different primary goals when it comes to compliance. This suggests that there is much work to be done in getting compliance specialists and the C-suite of a company on the same page.Read More
True Office Learning has offered top-notch compliance training for years, and along the way we’ve gathered data from millions of users’ experiences with our courses. Within this data, we see insights. We see expected results along with surprises. And, we see risk.
For example, in our data privacy module, the average percentage of regulation scenario questions answered correctly is 80. That sounds good at first, but it also means that employees are wrong about data privacy regulation a fifth of the time. From that point of view, it is worth digging deeper into the risk.Read More
On August 9, 2019, Illinois became the first state to legislate the use of artificial intelligence (AI) in the employment context. The Artificial Intelligence Video Interview Act (AI Interview Act) targets businesses that require applicants to provide a video interview and thereafter utilize AI technology to analyze the candidate's body language, speech patterns, and other characteristics to score and predict a candidate's likelihood of success at that organization. The law will go into effect Jan. 1, 2020.Read More
Here come the 2020s, a decade that could potentially have more regulations on the compliance front. Several events of the last few years have shown an evolution in compliance:
- Regulators slapped huge fines on British Airways and Marriott International for violating the General Data Protection Regulation (GDPR).
- Equifax was hit for a $575 million penalty last summer by the Federal Trade Commission and the Consumer Financial Protection Bureau for its 2017 data breach.
- Increased awareness of workplace harassment and the impactful #MeToo movement have placed companies in the spotlight for allowing bad behavior by employees and apathy from leadership.
- Unfathomable diversity gaffes—such as this incident at a Buffalo Wild Wings, in which a multiracial family was asked to move tables because a “regular customer” didn’t want them sitting near him—result in PR nightmares for businesses, which struggle to fully recover.