The Compliance Management Module provides the ability to ensure and demonstrate compliance with internal and external standards, legislations, procedures and codes of conduct. It allows users to register and manage compliance requirements stemming from an obligation, either due to a regulation, an external audit or other source. Users can register an obligation (e.g. audit by an external entity – such as PCI) and then add the compliance requirements that need to be managed. Each requirement is registered and the defined actions associated to the fulfillment of the requirement are defined. The module allows for:
- Compliance obligation definition
- Compliance requirements register and analysis
- Definition of required actions and delegation of responsibility and accountability
- Reference to related risks.