Regulatory Compliance

The art of management – the impact of technology

Documentation Leads to Compliance In Canada:

Securities regulators in Canada released three new rules to address investor confidence and uphold the reputation of Canada’s capital markets. In Canada the National Instrument 52-108 has been adopted in all Canadian jurisdictions. 52-109 Certification of Issuers' Annual and Interim Filings and 52-110 Audit Committees have been adopted in every Canadian jurisdiction except British Columbia. These new Canadian rules took effect March 30, 2004.

Documentation Leads to Compliance In the U.S.A:

The Sarbanes-Oxley Act (SOX) is just the latest legislation mandating corporate compliance to new laws and regulation. Other regulatory statutes, notably OSHA (Occupational Safety and Health Act), EPA (Environmental Protection Act), EEOC (Equal Employment Opportunity Commission), C.F.R. (Code of Federal Regulations) and HIPAA (Health Insurance Portability and Accountability Act), require proactive compliance.

Failure to comply is a very serious omission of corporate governance. The result can be both fines for the corporation and possible criminal liability for senior executives.

Senior executives face two major problems when attempting to achieve compliance. First, compliance is never clear - there are multiple interpretations of each regulation and regulatory agencies continuously announce new guidelines. Second, for senior executives to achieve compliance both the letter and spirit of adherence must become part of the entire corporation's operations and management culture.

The Act-which applies in general to publicly held companies and their audit firms-dramatically affects also the accounting profession and impacts not just the largest accounting firms, but any CPA actively working as an auditor of, or for, a publicly traded company.

According to a July 2, 2003 Price Waterhouse Coopers' survey:

A majority of executives listed several aspects of compliance as being at least "somewhat costly," including: documentation (mentioned by 74 percent); legal requirements (72 percent); detailed policy development (65 percent); self-assessment (62 percent); attest requirements and certifications (59 percent); and staff training (56 percent).

Price Waterhouse Coopers' 2004 CEO's survey in pdf format (1,1kb)

As the requirements for achieving SOX compliance continue to unfold, senior executive recognize that there are three major, continuing challenges that they must effectively manage.

First, they must assure that subsidiary, divisional (including overseas divisions), departmental and other data feeding into their corporate financial accounting system is accurate (Section 302).

Second, they must accurately report on the effectiveness of their internal control systems (Section 404).

Third, they must report "on a rapid and current basis" events that might result in material changes to the financial condition of the corporation. The time between when an event occurs (such as the loss of electrical power at the firm's major manufacturing and distribution facilities) and when a company is required to report the projected financial impact may be 48 hours - or it may be 15 days, the requirement is not yet clear (Section 409).

And because a company's CEO and CFO must prepare a statement certifying financial statements and disclosures, it is imperative that they both can show that they have personally led, directed, and thoroughly reviewed the work efforts required to achieve SOX compliance.

According to a July 2, 2003 Price Waterhouse Coopers' survey:

How VIGIE™ Can Help

VIGIE™ can significantly assist senior executives in achieving Corporate Governance in five key areas.

Provides Comprehensive, Cost-Effective Documentation of Processes, People, and Policies.

Documentation is both the most important and most costly aspect of achieving Corporate Governance compliance.VIGIE™ is built on an enterprise-level document management system that stores all documents, discussions, team directories, individual work efforts and decision-making workflows in one centralized repository.VIGIE™'s centralized enterprise solution to Corporate Governance documentation is both more effective and less costly than alternative departmental approaches.

Allows the CEO and CFO to Personally Lead and Direct Policy Issues.

BecauseVIGIE™ provides role-based collaboration, CEOs and CFOs can choose how they want to participate in issues. They can be Executive Sponsors on issues they want to closely supervise; Project Leaders on those they want to pro actively lead; Reviewers when they want to provide guidance on specific policies; and Observers when they want to monitor an issue and occasionally provide a comment to keep it on track.

Functions as the Workspace for Rapid Response and Disclosure Teams.

After an unexpected event that could have a material impact the company's business operations has occurred,VIGIE™ allows organizations to quickly build teams; formally request information who can provide the best projections of the financial consequences; gather in one place all the background information and analysis necessary for making a disclosure; formally identify issues and create associated discussion areas; and establish a time-based decision-making workflow for issue resolution.VIGIE™ stores this entire rapid-response process so that the company can demonstrate during an audit that it took all reasonable efforts to comply with governance rules. This rapid response process is stored so executives can retrieve the established process flow and duplicate it when the next event occurs.

Quickly and Effectively Retrieve Audit Documents.

VIGIE™ has an integrated Full Text Retrieval search capability. It can search on every word in every text, PDF, IMAGE, VIDEO and HTML document in the system and retrieve it on demand. This makes compliance audits both comprehensive and cost- and time-effective.

Reduces Cost and Time to Train New Financial Staff.

Staff training is a major cost for Corporate Governance compliance today and will continue to be in the future as new financial executives join the company. By storing all policy statements and procedures withinVIGIE™ for review by those authorized to access them, learning costs will be reduced as individuals can review both the policy and annotations regarding the policy when they need them.

For Legal and Compliance Departments

With the issuance of a new business regulation or passage of a new commercial law, it is the responsibility of a corporation's legal staff, often assisted by outside experts, to analyze the potential impact on how the enterprise conducts business. This often results in the requirement to issue new guidelines and policies for conducting business. Most importantly, the legal department must take all reasonable steps to ensure that these new corporate responsibilities are communicated to and reviewed by the appropriate executives throughout the organization.

VIGIE™ has a formal process for allowing the legal department to initiate the review process and track time-mandated executive responses to ensure that the enterprise can attest to the fact that it has effectively communicated compliance requirements throughout the organization.

VIGIE™ Provides Secure Collaboration

Anybody who can surf the Internet and use e-mail can masterVIGIE™.VIGIE™ encourages and allows senior executive involvement to a greater degree than any other enterprise-level management tool available today.

VIGIE™ provides a comprehensive set of security features. Each authorized user must have a password to enter the system and all his or her actions are recorded in an activity log. To ensure that each user only sees that part of the initiative, which is appropriate, the initiative leader may limit a user's access rights to specific issues.

You can download this Regulatory Compliance document in a PDF format.