Skip to content
Home / Ethics & Compliance platform / Compliance matrix

Go beyond compliance!

We apply a forward-looking approach to make sure you will be compliant with any upcoming requirements.

cheatsheet

Go beyond compliance!

We apply a forward-looking approach to make sure
you will be compliant with any upcoming requirements.

11_version_3-2Reporting

Ethicontrol platform

EU Directive

ISO 37002

A Resource Guide to the U.S. FCPA

USDoJ Evaluation of Corporate Compliance Programs

ISO 37001 

In-house solution 

Internal reporting channels
tick tick tick tick tick tick tick
Friendly/multichannel/different types of channels to be available (hotline, online form, personal meeting)
tick tick tick cross cross cross cross
Transparency and accessibility of information for whistleblowers
tick tick tick tick tick tick tick
The reporting channels should be available to third parties
tick tick tick tick tick cross tick
Record-keeping (Whistleblowing)
tick tick tick cross tick tick question-mark-on-a-circular-black-background
Confidentiality of channels and reporters
tick tick tick tick tick tick tick
Anonymous reporting
tick tick tick tick tick tick question-mark-on-a-circular-black-background
Consider the context of the organization when developing WMS
tick tick tick tick tick tick tick
Timely feedback/trackability and follow-ups to the whistleblower / acknowledge receipt, report on progress, receive/give feedback
tick tick tick cross tick cross question-mark-on-a-circular-black-background
Right of whistleblowers to be wrong
tick tick tick cross cross tick question-mark-on-a-circular-black-background

 

Reporting

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation 

ISO 37001 

In-house solution 

Internal reporting channels
tick tick tick tick tick tick tick
Friendly/multichannel/different types of channels to be available (hotline, online form, personal meeting)
tick tick tick cross cross cross cross
Transparency and accessibility of information for whistleblowers
tick tick tick tick tick tick tick
The reporting channels should be available to third parties
tick tick tick tick tick cross tick
Record-keeping (Whistleblowing)
tick tick tick cross tick tick question-mark-on-a-circular-black-background
Confidentiality of channels and reporters
tick tick tick tick tick tick tick
Anonymous reporting
tick tick tick tick tick tick question-mark-on-a-circular-black-background
Consider the context of the organization when developing WMS
tick tick tick tick tick tick tick
Timely feedback/trackability and follow-ups to the whistleblower / acknowledge receipt, report on progress, receive/give feedback
tick tick tick cross tick cross question-mark-on-a-circular-black-background
Right of whistleblowers to be wrong
tick tick tick cross cross tick question-mark-on-a-circular-black-background

 

monitorIncident management

Ethicontrol platform

EU Directive

ISO 37002

A Resource Guide to the U.S. FCPA

USDoJ Evaluation of Corporate Compliance Programs

ISO 37001 

In-house solution 

Competent impartial person to follow up on the reports tick tick tick cross tick tick tick
Triage and prioritisation tick cross tick cross tick tick question-mark-on-a-circular-black-background
Full access of a compliance officer to reporting and investigative information tick cross tick cross tick tick question-mark-on-a-circular-black-background
Direct, unrestricted and confidential access to top management and the governing body by whistleblowing management tick cross tick cross tick tick question-mark-on-a-circular-black-background
Determine scope of the whistleblowing system tick cross tick cross tick tick question-mark-on-a-circular-black-background
Timing metrics to ensure responsiveness tick tick tick cross tick cross cross

 

Incident management

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 

Competent impartial person to follow up on the reports tick tick tick cross tick tick tick
Triage and prioritisation tick cross tick cross tick tick question-mark-on-a-circular-black-background
Full access of a compliance officer to reporting and investigative information tick cross tick cross tick tick question-mark-on-a-circular-black-background
Direct, unrestricted and confidential access to top management and the governing body by whistleblowing management tick cross tick cross tick tick question-mark-on-a-circular-black-background
Determine scope of the whistleblowing system tick cross tick cross tick tick question-mark-on-a-circular-black-background
Timing metrics to ensure responsiveness question-mark-on-a-circular-black-background tick tick cross tick cross cross

 

32_version_1Case management

Ethicontrol platform

EU Directive

ISO 37002

A Resource Guide to the U.S. FCPA

USDoJ Evaluation of Corporate Compliance Programs

ISO 37001 

In-house solution 

Transparency / validity of investigation mandate tick tick tick cross tick tick cross
Independent delivery of investigation and protection functions tick tick tick cross tick cross question-mark-on-a-circular-black-background
Appropriately conducted investigation tick tick tick tick tick tick question-mark-on-a-circular-black-background
Properly documented investigation and response tick tick tick tick tick tick tick
Decision-making process is free from conflict of interest tick tick tick tick tick tick question-mark-on-a-circular-black-background
Protection from retaliation and unfair dismissal tick tick tick tick tick tick tick
A process for monitoring the outcome of
investigations
tick tick tick tick tick tick question-mark-on-a-circular-black-background
Reporting and investigating mechanisms
sufficiently funded
tick cross tick tick tick tick cross
Update internal controls according to lessons learned tick tick tick tick tick tick question-mark-on-a-circular-black-background
Internal control provisions tick cross tick tick tick tick question-mark-on-a-circular-black-background

 

Case management

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 

Transparency / validity of investigation mandate question-mark-on-a-circular-black-background tick tick cross tick tick cross
Independent delivery of investigation and protection functions tick tick tick cross tick cross question-mark-on-a-circular-black-background
Appropriately conducted investigation tick tick tick tick tick tick question-mark-on-a-circular-black-background
Properly documented investigation and response tick tick tick tick tick tick tick
Decision-making process is free from conflict of interest tick tick tick tick tick tick question-mark-on-a-circular-black-background
Protection from retaliation and unfair dismissal tick tick tick tick tick tick tick
A process for monitoring the outcome of
investigations
question-mark-on-a-circular-black-background tick tick tick tick tick question-mark-on-a-circular-black-background
Reporting and investigating mechanisms
sufficiently funded
tick cross tick tick tick tick cross
Update internal controls according to lessons learned question-mark-on-a-circular-black-background tick tick tick tick tick question-mark-on-a-circular-black-background
Internal control provisions tick cross tick tick tick tick question-mark-on-a-circular-black-background

 

Configurable_reportsReporting and analytics

Ethicontrol platform

EU Directive

ISO 37002

A Resource Guide to the U.S. FCPA

USDoJ Evaluation of Corporate Compliance Programs

ISO 37001 

In-house solution 

Remedial actions within the company tick tick tick tick tick tick question-mark-on-a-circular-black-background
Ability to collect, track, analyze, and use
information from a reporting mechanism
tick tick tick tick tick tick question-mark-on-a-circular-black-background
Periodic tests of the effectiveness of the hotline (from start to finish) tick cross tick tick tick cross question-mark-on-a-circular-black-background

 

Reporting and analytics

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 

Remedial actions within the company tick tick tick tick tick tick question-mark-on-a-circular-black-background
Ability to collect, track, analyze, and use
information from a reporting mechanism
question-mark-on-a-circular-black-background
tick tick tick tick tick question-mark-on-a-circular-black-background
Periodic tests of the effectiveness of the hotline (from start to finish) question-mark-on-a-circular-black-background cross tick tick tick cross question-mark-on-a-circular-black-background

 

11_version_3-2Other

Ethicontrol platform

EU Directive

ISO 37002

A Resource Guide to the U.S. FCPA

USDoJ Evaluation of Corporate Compliance Programs

ISO 37001 

In-house solution 

Personnel training tick tick tick tick tick tick question-mark-on-a-circular-black-background
A responsible business process owner / whistleblowing management function tick tick tick tick cross tick question-mark-on-a-circular-black-background
Self reports question-mark-on-a-circular-black-background cross cross tick tick tick question-mark-on-a-circular-black-background
Cooperation with authorities tick cross cross tick tick tick question-mark-on-a-circular-black-background
Adequate compliance program question-mark-on-a-circular-black-background cross tick tick tick tick question-mark-on-a-circular-black-background
Accurate books and records (Reflect transactions and dispositions of the issuer) tick cross cross tick tick tick question-mark-on-a-circular-black-background
Effective compliance procedures tick cross tick tick tick tick question-mark-on-a-circular-black-background
Periodic reports tick cross cross tick tick tick question-mark-on-a-circular-black-background
Data safety tick tick tick cross cross tick question-mark-on-a-circular-black-background
GDPR-compliant tick tick cross cross cross cross question-mark-on-a-circular-black-background

 

Other

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 

Personnel training tick tick tick tick tick tick question-mark-on-a-circular-black-background
A responsible business process owner / whistleblowing management function tick tick tick tick cross tick question-mark-on-a-circular-black-background
Self reports question-mark-on-a-circular-black-background cross cross tick tick tick question-mark-on-a-circular-black-background
Cooperation with authorities tick cross cross tick tick tick question-mark-on-a-circular-black-background
Adequate compliance program question-mark-on-a-circular-black-background cross tick tick tick tick question-mark-on-a-circular-black-background
Accurate books and records (Reflect transactions and dispositions of the issuer) question-mark-on-a-circular-black-background cross cross tick tick tick question-mark-on-a-circular-black-background
Effective compliance procedures question-mark-on-a-circular-black-background cross tick tick tick tick question-mark-on-a-circular-black-background
Periodic reports tick cross cross tick tick tick question-mark-on-a-circular-black-background
Data safety tick tick tick cross cross tick question-mark-on-a-circular-black-background
GDPR-compliant tick tick cross cross cross cross question-mark-on-a-circular-black-background

 

Training and support

STR

ADV

PRO

Advice on implementation
tick tick tick
Graphic and text materials for a communication campaign (a standard set of posters, stickers, letters, web-page template)
tick tick tick
Model code of business ethics
tick tick tick
Model hotline regulations
tick tick tick
Model regulations for internal investigations
tick tick tick
Free support 24/7
tick tick tick
Live user training (2hr)
tick tick tick
Support widget in the app
tick tick tick
Video explainer for whistleblowers branded for the client
cross tick tick
Custom NDA
cross tick
tick
Service level agreement (SLA)
cross tick tick
Custom SLA
cross cross tick

 

Whistleblowing to be your low-hanging fruit

ISO_white_-3

ISO 27001 Information security certified.

Single_sign-on

Single sign-on, two-factor authentication etc.

ISO_white_-3

ISO 27701 Privacy management certified

A_NDA

A non-disclosure agreement in a client’s wordings