Compliance isn't just about policies, procedures, and pieces of paper. It's about getting buy-in at every level of your organization. Click for articles about integrating Compliance into the fabric of your organization's culture.
Bribery & Corruption
The 'Cost of Doing Business' is a slippery slope, especially when navigating different norms among different teams, companies, and countries. Learn more about ways to spot signs of bribery and corruption and how to prevent them.
Program Best Practices
There's no need to reinvent the wheel at your organization. Your organization isn't alone in the challenges it faces, but thankfully there are precedents, case studies, and best practices you can apply to keep your organization running smoothly.
Benchmarking & Analytics
What does success look like? Measurement and evaluation are critical in understanding your program, staying agile, and implementing improvements. Learn more about creating effective benchmarks and measurement tools for your organization.
Harassment & Discrimination
In the last few years, no other risk and compliance issue has seen as much media coverage as sexual harassment. And this can be just the tip of the iceberg. Creating a workplace culture where employees feel safe and respected means designing and implementing a workplace harassment prevention program that adapts to emerging issues.
Cyber & Data Privacy
Data protection legislation has evolved and increased over the past few years, but the vast amounts of personal data and the ease of accessing it has kept pace. Data privacy and data security are particularly important considerations for those working in risk and compliance. Given the nature of data provided through a whistleblower hotline or an investigation, organizations must handle this information with the utmost sensitivity.
Working with third parties is a reality of doing business in the 21st century. Organizations are working with a larger number of vendors, and those vendors are performing more business-critical functions. No matter the size or scope of your vendor risk management program, your third party’s risk will always be your risk.
Regulatory compliance management is getting even more difficult. Industry-specific regulations, like Sarbanes-Oxley, FDA, OSHA, as well as multiple laws and standards are meant to ensure that organizations are operating lawfully and ethically. But keeping pace with the changing regulatory compliance landscape is a massive challenge and a major source of compliance risk.
Integrated Risk Management
Operational disruptions, risks from third parties, and cyber threats are just a few areas that are becoming more complex, expensive, and disruptive to organizations. Articles tagged as Integrated Risk Management explore how organizations can better manage risk holistically, from IT to third-party risk and more.
ESG is increasingly prominent in the news – from upcoming regulatory requirements to public and investor interest. Environmental, social and governance matters are vital components of most businesses, but the landscape for disclosure and best practices is far from solidified. Articles tagged as ESG will explore what organizations need to know and how to prepare for a future of ESG disclosure and accountability.
Top 10 Trends
Each year, NAVEX publishes the Top 10 Trends in Risk and Compliance. This publication is dedicated to exploring trends and predictions regarding compliance, risk, ESG, privacy and data protection, and more.
EU Whistleblowing Directive
The European Whistleblower Protection Directive provides and promotes a safe and secure way for employees to speak up about misconduct in their work environment. All public and private companies with more than 50 employees had until December 2021 to be compliant with the Directive. Articles tagged as EU Whistleblowing Directive will discuss what you need to know about EU member transposition and how to stay compliant.