Skip to content
Burger
Cross
Home / Use cases / Compliance matrix

Go beyond compliance!

We apply a forward-looking approach to make sure you will be compliant with any upcoming requirements.

cheatsheet in one line drawing style in blue and green colors

Reporting

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation 

ISO 37001 

In-house solution 
Internal reporting channels
 tick tick tick tick tick tick tick
Friendly/multichannel/different types of channels to be available (hotline, online form, personal meeting)
 tick tick tick cross cross cross cross
Transparency and accessibility of information for whistleblowers
 tick tick tick tick tick tick tick
The reporting channels should be available to third parties
 tick tick tick tick tick cross tick
Record-keeping (Whistleblowing)
 tick tick tick cross tick tick question-mark-on-a-circular-black-background
Confidentiality of channels and reporters
 tick tick tick tick tick tick tick
Anonymous reporting
 tick tick tick tick tick tick question-mark-on-a-circular-black-background
Consider the context of the organization when developing WMS
 tick tick tick tick tick tick tick
Timely feedback/trackability and follow-ups to the whistleblower / acknowledge receipt, report on progress, receive/give feedback
 tick tick tick cross tick cross question-mark-on-a-circular-black-background
Right of whistleblowers to be wrong
 tick tick tick cross cross tick question-mark-on-a-circular-black-background

 

Incident management

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 
Competent impartial person to follow up on the reports tick tick tick cross tick tick tick
Triage and prioritisation tick cross tick cross tick tick question-mark-on-a-circular-black-background
Full access of a compliance officer to reporting and investigative information tick cross tick cross tick tick question-mark-on-a-circular-black-background
Direct, unrestricted and confidential access to top management and the governing body by whistleblowing management tick cross tick cross tick tick question-mark-on-a-circular-black-background
Determine scope of the whistleblowing system tick cross tick cross tick tick question-mark-on-a-circular-black-background
Timing metrics to ensure responsiveness tick tick tick cross tick cross cross

 

Case management

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 
Transparency / validity of investigation mandate tick tick tick cross tick tick cross
Independent delivery of investigation and protection functions tick tick tick cross tick cross question-mark-on-a-circular-black-background
Appropriately conducted investigation tick tick tick tick tick tick question-mark-on-a-circular-black-background
Properly documented investigation and response tick tick tick tick tick tick tick
Decision-making process is free from conflict of interest tick tick tick tick tick tick question-mark-on-a-circular-black-background
Protection from retaliation and unfair dismissal tick tick tick tick tick tick tick
A process for monitoring the outcome of
investigations		 tick tick tick tick tick tick question-mark-on-a-circular-black-background
Reporting and investigating mechanisms
sufficiently funded		 tick cross tick tick tick tick cross
Update internal controls according to lessons learned tick tick tick tick tick tick question-mark-on-a-circular-black-background
Internal control provisions tick cross tick tick tick tick question-mark-on-a-circular-black-background

 

Reporting and analytics

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 
Remedial actions within the company tick tick tick tick tick tick question-mark-on-a-circular-black-background
Ability to collect, track, analyze, and use
information from a reporting mechanism		 tick tick tick tick tick tick question-mark-on-a-circular-black-background
Periodic tests of the effectiveness of the hotline (from start to finish) tick cross tick tick tick cross question-mark-on-a-circular-black-background

 

Other

Ethicontrol platform

EU Directive

ISO 37002

U.S. FCPA

USDoJ Evaluation

ISO 37001 

In-house solution 
Personnel training tick tick tick tick tick tick question-mark-on-a-circular-black-background
A responsible business process owner / whistleblowing management function tick tick tick tick cross tick question-mark-on-a-circular-black-background
Self reports question-mark-on-a-circular-black-background cross cross tick tick tick question-mark-on-a-circular-black-background
Cooperation with authorities tick cross cross tick tick tick question-mark-on-a-circular-black-background
Adequate compliance program question-mark-on-a-circular-black-background cross tick tick tick tick question-mark-on-a-circular-black-background
Accurate books and records (Reflect transactions and dispositions of the issuer) tick cross cross tick tick tick question-mark-on-a-circular-black-background
Effective compliance procedures tick cross tick tick tick tick question-mark-on-a-circular-black-background
Periodic reports tick cross cross tick tick tick question-mark-on-a-circular-black-background
Data safety tick tick tick cross cross tick question-mark-on-a-circular-black-background
GDPR-compliant tick tick cross cross cross cross question-mark-on-a-circular-black-background

 

Whistleblowing to be your low-hanging fruit

iso certifications: iso training courses and exam info, in the style of white and dark green, simplified structures

ISO 27001 Information security certified

a white vector symbol showing two mobile devices coming together, in the style of black-and-white graphic symbolyze Single sign on

Single sign-on, two-factor authentication etc.

iso certifications: iso training courses and exam info, in the style of white and dark green, simplified structures

ISO 27701 Privacy management certified

white icon contains a lock on a document symbolyze NDA

A non-disclosure agreement in a client’s wordings