Email has long been viewed as a #marketing activity with less #compliance risk, but that may be changing. In this episode of Compliance Pointers, Frank Nolan, a partner at Eversheds Sutherland, explains what’s driving an increase in email compliance litigation. Watch the complete episode to learn:

📧 How a California email law creates more risk than CAN-SPAM and is being used to fuel new class action lawsuits

📧 How Gmail ads and “converted” emails are becoming a novel litigation target

📧 Email mistakes that can land a business in trouble

📧 Best practices to reduce risk

#EmailMarketing #CANSPAM

Learn more about Eversheds Sutherland: https://www.eversheds-sutherland.com/en/united-states

Learn more about Frank: https://www.eversheds-sutherland.com/en/united-states/people/nolan-francis

Learn more about CompliancePoint's Marketing Compliance Services at: https://www.compliancepoint.com/services/marketing-compliance/

ISO 42001 is the first global framework for AI management. The framework is designed to help organizations build trust, reduce risk, and align innovation with accountability. But how do you know if it’s a good fit for your organization? Brandon Breslin joined Compliance Pointers to answer that question. Watch the entire episode to learn:

• How ISO 42001 compares to other AI security frameworks

• The deciding factors when considering ISO 42001 certification

• How to get started

• Benefits of ISO 42001 certification

Learn more about CompliancePoint's ISO 42001 Certification services here: https://www.compliancepoint.com/services/information-security/iso-42001-certification/

CMMC Phase 1 is officially underway. Certified CMMC Professional Chris Abacon joined Compliance Pointers to give his insights on achieving CMMC certification. Listen to the complete episode to learn about:

✅ Why it’s important to conduct a self-assessment, or gap assessment, before a C3PAO assessment

✅ Crafting the right scope

✅ Best practices when preparing for a CMMC assessment

Learn more about CompliancePoint's CMMC services here: https://www.compliancepoint.com/services/federal-cybersecurity-compliance/cmmc-certification/

Texas SB 140 has caused quite a stir and some confusion in the telemarketing world. Alexandra Krasovec, an attorney at Manatt who specializes in TCPA and telemarketing cases, joined Compliance Pointers to analyze the risks posed by Texas SB 140 to businesses. Watch the complete episode to learn about:

☎️ The law’s registration requirements and exemptions

☎️ The private right of action

☎️ Other new requirements in the law and the risks they pose

Learn more about CompliancePoint Marketing Compliance Services at: https://www.compliancepoint.com/services/marketing-compliance/

Learn more about Manatt here: https://www.manatt.com/

The CCPA will require organizations to audit their cybersecurity, beginning in 2027 for large businesses. The audits must assess how a business protects personal information from unauthorized access, destruction, use, modification, or disclosure. Matt Dumiak joined Compliance Pointers to help organizations understand these new cybersecurity audit requirements. Listen to the complete episode to learn about:

✅ CCPA cybersecurity audit requirements

✅ The relationship between cybersecurity and privacy

✅ Internal vs external audits

✅ Components of an audit

✅ How to get started

Learn more about CompliancePoint's CCPA Compliance Services here: https://www.compliancepoint.com/services/privacy/ccpa-compliance/

Learn more about CompliancePoint's Cybersecurity Risk Assessments here: https://www.compliancepoint.com/services/cyber-security/cyber-risk-assessment/

Elements of the FCC’s consent revocation rules, also known as “Revoke One, Revoke All,” were postponed until April 2026, but now the rule could be in jeopardy altogether. Marketing compliance expert Kevin Mayfield joined Compliance Pointers to provide clarity on the rule. Listen to the complete episode to learn:

🛑 What exactly is “Revoke One, Revoke All”

🛑 Why the rule could be in jeopardy

🛑 Best practices for compliance

Learn more about CompliancePoint's Marketing Compliance Services at: https://www.compliancepoint.com/services/marketing-compliance/

We have a unique episode of Compliance Pointers this week. There’s a dangerous misconception circulating among B2B organizations—that the TCPA doesn’t apply to them. This belief can lead to costly mistakes, regulatory scrutiny, and class action lawsuits. Marketing compliance experts Steve Gniadek and Tony Jarnigan teamed up with PossibleNow for a webinar focused on B2B calls and the TCPA. We thought the content would be valuable to Compliance Pointers watchers and listeners, so we’re sharing it today. Listen to the entire podcast/presentation to learn:

☎️ Why B2B calls are not immune to TCPA rules

☎️ The biggest compliance blind spots for B2B organizations

☎️ Practical steps to protect your brand, bottom line, and business from costly violations

Learn more about CompliancePoint's Marketing Compliance Services here: https://www.compliancepoint.com/services/marketing-compliance/

Learn more about PossibleNow's products and services here: https://www.possiblenow.com/

How does an organization’s use of AI impact SOC 2 compliance? Mary Beth Marchione, a partner at Wipfli, joined Compliance Pointers to discuss the risks and how AI can help streamline SOC 2 compliance efforts. Watch the complete episode to learn about:

✅ Aligning AI use and SOC 2 requirements

✅ Compliance challenges posed by AI

✅ Leveraging AI for monitoring and compliance

✅ Documenting AI processes for SOC 2

✅ AI's Role in risk assessment and management

Learn more about CompliancePoint's SOC 2 services at: https://www.compliancepoint.com/services/information-security/soc2-compliance/

Learn more about Wipfli at: https://www.wipfli.com/

Learn more about Mary Beth Marchione at: https://www.wipfli.com/about-wipfli/partners-and-associates/mary-beth-marchione