Ensuring compliance to regulation and corporate governance

Does ensuring compliance require an understanding of culture?


The Challenge

Ensuring compliance to regulation and corporate governance as well as International Standards have fundamentally shifted from telling people what they have to do to outlining what needs to be managed. Of course, there are still examples of what you must do that can be predetermined to manage compliance and risk to that compliance.

For example, quality controls, sign offs, business controls, health and safety.  These are controls that operate at the mechanistic level where they can be predetermined and subsequently be checked for compliance.  In short, is right or wrong.

However, where the governance or compliance requirement is more of an organisational or personal competence there is less tangible or visible evidence.  It is more behavioural and its effectiveness has degrees or levels of right or wrong

All to often compliance is seen as a necessary evil, something that has to be endured and an added business cost rather than something that adds business value. The challenge is therefore to measure this organisational competence, its culture without forgetting the mechanical elements and demonstrate business value.

Our Solution

HPO Clearview can be configured to collect data on:

  • Business & quality controls and records observed by an auditor who enters the details into the system.
  • The organisational culture where the evidence is the outcome of people’s behaviour. 

Both sets of data are merged together to create the holistic picture of risk needed to demonstrate compliance and corporate governance.  It’s a merger of the old and new techniques.

In addition, and at the same time the hard and soft evidence can be measured against business outcome and compliance simultaneously.  This has the effect that everyone can easily see that good compliance = good business management i.e. they are both sides of the same performance coin.  This drives a different internal discussion in terms of compliance and change. Auditing and assessing compliance has changed and give us a call if you wish or have a look some posts below.


Related Posts

Compliance, Corporate culture and senior management

Compliance, Corporate culture and senior management

Compliance – Senior Managers Competence Regime (SMCR), why it affects us all? SMCR outlines a set of responsibilities and conduct risks.  ...
Risk Management, System, culture & compliance

Risk Management, System, culture & compliance

An understanding of how mechanistic and organic systems influence the design and implementation of a compliance, performance & risk management ...
Cultural Analytics turning qualitative to quantitative data

Cultural Analytics turning qualitative to quantitative data

Have you ever noticed that following poor business performance, for example, Deepwater Horizon, Stafford Hospital and Supply chain failures, ...