GRC Report Staff

The French data protection authority, the CNIL (Commission Nationale de l'Informatique et des Libertés), has released its 2024 annual report, showcasing a year marked by significant strides in personal data protection. The report highlights key achievements in inspections, sanctions, public awareness, artificial intelligence (AI) development, and cybersecurity, underscoring the CNIL’s critical role in safeguarding privacy in France.

The Federal Trade Commission (FTC) has just dropped the hammer on Workado, LLC, requiring the company to stop promoting its AI Content Detector tool unless it can provide solid proof to back up its bold claims about the product’s accuracy. The order is currently up for public comment before it becomes final.

The U.S. Department of Justice (DOJ) has recently reached settlements in three significant False Claims Act (FCA) cases, securing substantial financial penalties against major organizations in healthcare and defense contracting. These cases not only highlight the government’s commitment to protecting taxpayer dollars but also underscore the importance of accountability in sectors that handle large sums of public funds.

The Hong Kong Monetary Authority (HKMA) has released its Annual and Sustainability Reports, showcasing how the city’s financial sector is not only navigating the complexities of a changing global economy but also positioning itself at the forefront of green finance and innovation. Through a year of strategic initiatives, the HKMA has embraced resilience in the face of economic volatility and shown a steadfast commitment to sustainable growth, ensuring that Hong Kong’s financial ecosystem remains robust and adaptable.

The Canadian Securities Administrators (CSA) announced recently that it’s temporarily pressing pause on two highly anticipated projects: the development of mandatory climate-related disclosure rules and changes to diversity-related disclosure requirements. The decision, which comes at a time of mounting geopolitical and economic uncertainty, signals the CSA’s focus on supporting Canadian businesses as they navigate the fast-moving, sometimes turbulent, regulatory landscape.

Cybersecurity is no longer just an IT problem, it’s a business problem. And yet, despite all the headlines and constant warnings, a concerning gap remains between the leaders of organizations and the people tasked with defending them from cyber threats. New research from Ernst & Young LLP (EY) has uncovered this alarming disconnect, revealing how the divide between C-suite executives and Chief Information Security Officers (CISOs) is putting organizations at risk.

Vault Medical Services has agreed to pay $8 million to resolve allegations that the company violated the False Claims Act by submitting fraudulent claims to the HRSA COVID-19 Uninsured Program. This program was meant to assist uninsured individuals with testing, treatment, and vaccines during the pandemic.