More startup companies are emphasizing corporate governance earlier in their processes, writes former CEO and serial entrepreneur Betsy Atkins. In this commentary, Atkins stresses the need for outside perspectives, "often achieved by naming independent directors with no material stake or interest in the company."

A preliminary survey to understand an audit client's business processes can set the tone for a good start to an audit engagement, writes Hassan Khayal, a 2020 Internal Auditor magazine Emerging Leader. Khayal discusses how interview techniques can help internal auditors establish a relationship with the client, identify areas to focus on during the audit and give clients a way to provide feedback.

Updated disclosure rules from the Securities and Exchange Commission will require public companies to report on human capital concerns. The rule is principles-based, which will leave interpretation up to each company and gives HR executives a chance to work with the C-suite and board on an important and evolving issue.

Microsoft, Google and Cisco have released analytics technology that allows managers to track employee productivity and work habits. However, some industry watchers say the tools violate privacy and the data may not give companies a comprehensive view of their workforce.

IBM's Excelsior Pass and apps like it that display COVID-19 vaccination status or test results are touted as tools for restoring normalcy to public life, but they also raise significant privacy and legal issues. The government is not creating or mandating digital passports, but agencies are discussing guidelines that developers could use to alleviate concerns, White House adviser Andy Slavitt says, and whether apps are subject to privacy and security rules under the Health Insurance Portability and Accountability Act depends on who develops them, attorney Savera Sandhu says.

The Florida House has passed a bill that would require disclosures about personal data collection and usage by companies that have $50 million or more in yearly revenue as well as those that gather, share or sell the data of at least 50,000 customers per year. Consumers would be able to sue companies individually under the legislation, whereas a Florida Senate data privacy bill would task the state attorney general with enforcement, and it would more narrowly define what is considered personal information.

The Federal Trade Commission has charged the first person with violating the COVID-19 Consumer Protection Act, possibly resulting in civil monetary penalties. St. Louis chiropractor Eric Nepute is accused of falsely marketing products under the Wellness Warrior brand as effective for treating COVID-19 symptoms.

The cyberthreats that employees pose to the companies they work for "have been growing by leaps and bounds," resulting from either negligence or malicious intent, said Ram Kumar of Nissan. Warning signs include employees downloading sensitive data or copying such data to personal devices, working unusual hours, or acting disgruntled around co-workers, Kumar said.

More than half of fraud examiners have seen a "significant increase" in cyberfraud during the pandemic, per an Association of Certified Fraud Examiners report, and manufacturers most commonly face ransomware attacks and fraudulent electronic payments, write Brad Lutgen and Mary O'Connor of Sikich. Combating fraud requires employee education and a system for collecting anonymous tips, Lutgen and O'Connor write.

Urgency and patience overlap in that being patient creates the preparation and skills that are necessary when urgent action is needed, writes Scott Eblin, who relates the concepts to the yin and yang of yoga, a dance floor and a team's playbook. "You can't just keep urgently running the old pre-pandemic plays and expect them to work in a late-stage and post-pandemic world," he writes.

Did you know The IIA has resources for internal auditors to educate stakeholders on the value internal audit brings to the organization? It's true, and all for you to use as you choose. Access our Building Awareness toolkit and enjoy other advocacy items, such as position papers and thought leadership. Shout it out and share your success stories.

This year's study provides valuable insight into how well internal audit weathered the storm caused by COVID-19. This webinar will provide critical takeaways for chief audit executives and their audit staff by exploring the key findings of Pulse, including valuable benchmarking data on staffing, resources, hiring practices, reporting lines and more. AEC members, register now for the April 28th webinar.