client login    languages

Delivering a Five-Star Compliance Policy Management System

Request A Demo of Our Ethics And Compliance Solution

Delivering a Five-Star Compliance Policy Management System

Corporate compliance policies – in form and function – can be a source of consistent, correct employee behavior, and help set the guidelines that your organization must follow to be successful. While that’s a given, it isn’t always an easy task. Yesterday I had the privilege of hosting an event and moderating a panel of compliance executives on that very topic. Leading the discussion was Lisa Hill, the former business leader in charge of corporate policies at Visa, who presented some insights on the essentials of a five-star compliance policy management system.

According to Lisa (who is now the principle of her own firm, Policyscape Consulting), meta-policy (that is, a policy that defines all your compliance policies in purpose and principle) remains one of the highest priorities for organizations wishing to implement an enterprise-wide policy program. When it comes to meta-policies and policy lifecycle, one thing often overlooked is the need to “inspect what you expect” and maintain a diligent attitude to changes in your business environment that should be reflected in your policies.

The discussion among these leaders carried a number of common themes. They face challenges in making their policies readily accessible and making sure the right people can get to the right policy when they need to, especially hourly employees who aren’t always afforded the time needed to be trained on policies. And it’s often difficult to deliver policies and training in the places (especially in global organizations) that need it most. On the positive side, a good dose of tone at the top has lead to a greater emphasis on training and the view that training is an important part of the business.

There are other pain points as well, like the time-consuming and expensive exercise involved with regulatory change management and how multiculturalism impacts the distribution of policies and training. A social media policy presents its own set of challenges and pushes hard on existing boundaries. Constantly changing technology mandates that social media policies should be reviewed every six months.

Everyone agreed that a strong and relevant Code of Conduct is an essential part of an effective compliance policy management system. Also, middle management (the “message-from-the-middle”) must deliver clear, concise, consistent communication to the troops to simplify the way compliance policies are implemented.

Across the board, communication and training are what set the wheels in motion to a better ethical culture and an organization that stays in compliance, and these compliance leaders are beginning to see tremendous benefits from applying technology to help with integration, visibility, global reach and availability of their policies.

About the Author

Clark Bosley, EVP, Global Account Management. Clark is responsible for The Network’s strategic planning and direction of domestic and global sales and business development. With more than 20 years of senior-level experience in corporate sales and sales management, Clark manages the account management team to ensure the highest level of success, satisfaction and alignment with client needs.

1 Comment

  1. January 21, 2014 at 5:16 pm

    […] managing your compliance policies, don’t you want to approve the policy, assign it to the right audience, and not have to think […]

    Reply »

Leave a Comment

We would be glad to get your feedback. Take a moment to comment and tell us what you think.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Awards & Certifications 2013 GRC 20/20 Technology Innovation Award 2013 TAG Top 40 Innovative Company 2012 IABC Gold Quill Award 2012 MarCom Award We self-certify compliance Safe Harbor Safe Harbor Certification SOC 2 Certification