Compliance

Managers’ C&E duties are generally one of the first topics covered in a code of conduct, but the discussion shouldn’t end at the program’s introduction. Managers’ C&E duties must be reinforced continually through communications, training and evaluations. Do your managers have a handle on their compliance- and ethics-related duties?

There are a host of rules and restrictions around what can -- and more to the point, can't -- be asked when interviewing candidates. Questions about ethnicity, religion, disability, marriage status and parenthood are off-limits. Trying to get at any of that information in a round-about way is no safer. Better to stick to inquiries directly related to the job.

For a CCO or compliance practitioner to do his job well, he’s got to have a clear picture of the risks at hand. This is especially critical when it comes to third party transactions. Armed with all the pertinent information at once, he can much more easily spot corruption risks, unusual payments, control violations and other red flags and exercise...

A wider network is valuable to compliance practitioners for a number of reasons. Broadening one's exposure to alternate viewpoints can be critical in improving the collective intelligence of your leaders. Preventing compliance from being viewed as "the land of no" necessarily means remaining open to different ideas. Compliance leaders, check your ego at the door.

A recent study has found that nearly 40 percent of general counsel lack visibility into corporate risk due to poor contract management practices. This lack of visibility directly impacts compliance, which is especially troubling for the financial services industry, where regulatory violations open organizations up to massive liability and fees.

Compliance managers understand the need for stringent protection of employee medical and health information. Managers may not understand, though, that in many cases, requirements to assemble information about workplace injuries and illnesses outweighs the need for such protections. So where do OSHA reporting requirements and HIPAA rules part ways?

Doing business out of state or planning to expand your operations? If so, it is important to determine the need to register and obtain a Certificate of Authority with every state in which you conduct business. Doing so will help to ensure that you avoid fines and other penalties such as being barred from using a state’s court system.

As companies begin to implement the new standard, it’s critical to understand the accompanying business and technology implications that follow. PwC’s latest report offers top-of-mind considerations to prepare for the process, data, system and control impacts and offers a five-step plan to ensure compliance with the new standard. Additional key elements include: Differences between the Full Retrospective Method and Modified...

Implementing a GRC technology solution can be a boon for your business. That is, if it's done with an appropriate, well-thought-out approach. Deloitte's Tim Cercelle, an Advisory director in the firm's Regulatory & Compliance group, offers key strategies to ensure your GRC tool works for you, and not the other way around.

One of the greatest challenges corporate compliance practitioners face is securing buy-in from staff on compliance objectives, as well as their participation in meeting these goals. To do that, the compliance function can't be viewed as "The Land of No," but as a valued partner in the success and profitability of the business. So where do we begin?

Despite the DOJ's best efforts -- in the form of prosecutions and prison sentences -- some individuals continue to engage in corporate misconduct. The DOJ's recent memo on individual accountability warns against protecting those culpable in the wrongdoing, whatever their position. If the organization wants credit for cooperation, the DOJ expects full disclosure.

As the corporate purse strings tighten, it's not uncommon to start hearing whispers about "compliance fatigue." But the reality is that the compliance function requires relatively little in the way of funding, and the financial savings achieved by remaining compliant are huge. It must be easy to lose sight of these facts. Let's retire this term, shall we?