Compliance may cost companies millions, but non-compliance costs even more