Risk Roundup for January and February 2019
Our first Risk Roundup of 2019 kicks off with two major regulation fines impacting the tech and energy industries. Then it’s off to Washington for a federal shutdown and across the pond for a Brexit update. All together, these Jan-Feb events reflect the power and influence of regulations and governments on risk.
Google fined nearly $57 million for GDPR violations
In January, France’s data protection regulator, CNIL, issued Google the largest-to-date fine for failing to comply with GDPR. In so doing, Google became the first major tech company fined for violating the EU regulation designed to protect individuals’ data privacy. In its statement, CNIL said Google showed users personalized ads without properly obtaining consent.
NERC jolts energy company for NERC-CIP infractions
The North American Electric Reliability Corporation (NERC) recently fined an energy company $10 million for over 100 violations to the regulatory authority’s Critical Infrastructure Protection (CIP) standards. It’s the biggest fine NERC has ever handed out for CIP violations. Hopefully, this news is a wakeup call for all energy firms to revisit how they manage compliance and risk, whether it’s NERC-CIP or another regulation.
Federal shutdown makes business riskier
The longest government shutdown in U.S. history disrupted the operations of federal agencies and furloughing federal workers. How does this impact business risk? Imagine taking commercial flights and arriving late to meetings because of a shortage of TSA agents at security check-in. There was also the case of businesses experiencing payment delays from government contractors. Depending on the operational impact of delayed payments, a company might have to take on additional risk like lowering standards for new customers.
In late February, the UK government made its first announcement that it is considering options for delaying Brexit. A March 13 vote to approve the UK leaving the EU without a deal on March 29 will decide the delay’s fate. An approval leads to Brexit; disapproval opens the door to a delay. Either way, uncertainty is bad for consumer confidence and bad for business. Negative ratings could force companies into higher interest payments or restrict them from financial instruments that require high credit ratings.
That’s it for this edition of Risk Roundup. We’ll be back in May with a roundup of notable risks from March and April.
Follow one of our employees on his journey to prepare for a 50 mile run.
Learn about the parallels between Marie Kondo’s approach to organization and managing risk, running a compliance program, and other GRC activities.
Learn about five ways to escape from routine risk management and make your job easier and more effective this spring break.