Corporate
Compliance

Establish and ensure corporate policies

In many companies, corporate culture, guidelines and legal compliance for business processes are regulated on a division- or department-specific basis.

The challenge, however, lies in the overarching networking of processes through lived compliance processes and higher-level documentation.

In addition, there is often a lack of personnel resources to support a centrally responsible compliance officer with these tasks.

“Compliance” – conformity to rules in everyday business?

In simple terms, (corporate) compliance means observing laws, guidelines and voluntary “codes of conduct”.

Modern (corporate) compliance is much more than “just” complying with laws. It is a statement and commitment at top management level.

A comprehensive compliance culture is a key prerequisite for sustainable success and enables a considerable competitive advantage.

Increasing transparency in corporate processes enables effective process improvement, which has a direct impact on the effectiveness and efficiency of control mechanisms.

As a component of risk management, the overriding purpose of compliance is to protect the company, management and employees from legal and regulatory violations and their consequences.

In this context, compliance is not limited to mere adherence to specifications, but also includes organizational and technical measures.

Compliance does not come
“off the peg”

A compliance setup is always created specifically and individually for a company and is subject to a continuous process of change and improvement, which takes particular account of organizational and technical measures.

Tailored compliance is the key to a sustainable compliance management system (CMS).

How do I achieve compliance?

As a rule, existing management systems can be used for the development of a CMS.

In quality management in particular, there are often processes and regulations based on ISO 9001 that can be used very well as a basis for a CMS, e.g., according to ISO 19600.

A successful implementation requires the full support and backing of the management (“tone from the top”).

The prerequisite for a CMS is a company-specific risk analysis of all relevant business processes and markets.

What do I have to consider?

If possible, a compliance manager should not be responsible for operational business processes. Such a dual role could otherwise lead to a conflict of interest between his monitoring function as compliance manager and his operational duties.

Note that policies and regulations should be concise, clear, and easy to understand for employees to read and understand.

Lively and compelling compliance training is key to success.

Compliance is lived communication and includes the readiness for permanent changes and adjustments.

Compliance management and risk management

Compliance management and risk management (RM) belong together.

The processes and structures of both systems overlap/complement each other.

The starting point of risk management is primarily to identify compliance risks of your company and to analyze and evaluate them.

Compliance management deals with the prevention of rule violations in advance and combines the perspective of risk management into an inseparable WHOLE.

Coordinated compliance and risk management systems avoid redundancies and promote a unified understanding of the company’s overall risk.

.

FTC works with a risk-based approach, typical compliance risk areas are:

Anti-Corruption, Fraud Prevention, Anti-Money Laundering, Antitrust, Customs/Foreign Trade, Data Protection, Tax, Accounting, Contracting, Environmental or Occupational Health and Safety, IT Organization, Human Resources.

Our experts will support you in planning, creating and setting up a CMS that is appropriate for your organization.

Contact us!

The FTC Compliance method

Our modular support for compliance is based on methods that have proven themselves in practice.

We follow international standards such as IDW-PS-980, ISO 19600 or ISO 37001.

We offer modules that build on each other.

From high-level quick tests (quick fixes) to complete solutions and interim management.

1.

Risk and status analysis

2.

Creation of the compliance program

3.

Implementation in the company

4.

Compliance sustainability processes

5.

Processes to improve compliance

Our services:

  • Gateway to EU

  • Project management

  • Corporate Compliance

  • Interim management

  • Consulting

  • Trainings

  • Unique accounting

Contact FTC GmbH

You accept the transmission of your data to contact you