It’s not every day a fashion brand gets caught up in the tangled web of data privacy violations, but here we are. Todd Snyder, the well-known clothing retailer, has been slapped with a $345,178 fine by the California Privacy Protection Agency (CPPA) after failing to meet the standards set by the California Consumer Privacy Act (CCPA).
In an open letter to third-party software providers, Patrick Opet, the Chief Information Security Officer at JPMorgan Chase, has raised a red flag on a growing security vulnerability that’s quietly creeping through the global economic system. And this one might just be a game-changer for IT security, risk managers, and anyone involved in third-party risk management.
Credit Suisse Services AG has pleaded guilty to charges of conspiring with U.S. taxpayers to hide more than $4 billion in assets through offshore accounts. This revelation follows a years-long investigation into the bank’s role in helping wealthy individuals dodge U.S. taxes. The penalty for these crimes? A hefty $510 million in fines and restitution, marking yet another dark chapter in the Swiss bank’s troubled history.
The Federal Trade Commission (FTC) and the Department of Justice (DOJ) Antitrust Division are asking federal agencies to take a closer look at their own rulebooks. The goal? To identify and remove regulations that stifle innovation, reduce competition, and ultimately hinder the American economy.
The world is changing faster than ever, and with it, the landscape of risk and resilience. The 2025 KPMG Risk & Resilience Survey takes a deep dive into how organizations are facing these growing challenges. It clear that the era of “good enough” risk management is over. As risks grow in both size and complexity, companies can no longer afford to rely on outdated strategies. The survey offers crucial insights into what works, and what doesn’t, when it comes to building resilience in today’s fast-paced, volatile world.
The Irish Data Protection Commission (DPC) has handed down a large fine to TikTok, totaling €530 million, following an extensive investigation into the platform's handling of user data. The fine comes after the DPC concluded that TikTok violated key provisions of the General Data Protection Regulation (GDPR), specifically regarding its transfers of personal data of European Economic Area (EEA) users to China.
The Bank of England has recently launched a consultation to update its approach to how banks and insurers should be managing the risks posed by climate change. The Prudential Regulation Authority (PRA), which oversees financial stability, is refining its expectations on how the sector can stay resilient as climate-related risks intensify. While this isn’t the first time the PRA has addressed the issue, having first issued guidelines back in 2019, the new proposals come as a response to the changing landscape of climate risk, which is evolving faster than many expected.