Professional Documents
Culture Documents
ISO 37301 - 2021 Compliance Management Systems
ISO 37301 - 2021 Compliance Management Systems
T
evaluating, maintaining and improving an effective compliance management system within an organization
Clear, practical and easy-to-follow documented operating
policies, processes, procedures and work instructions
n effective, organization-wide compliance management system enables an organization
A
to demonstrate its commitment to comply with relevant laws, regulatory requirements,
Systems and exception reports industry codes and organizational standards, as well as standards of good governance,
generally accepted best practices, ethics and community expectations.
Approvals
eed or expectation that is stated, generally
n
The segregation of incompatible roles and responsibilities Requirement
implied or obligatory
The organization's compliance policy and procedures Taking into account expectations of interested parties
The objectives, targets, structure and content of the compliance management system emonstrating an organization’s commitment to
D
managing its compliance risks effectively and efficiently
The allocation of roles and responsibilities for compliance Benefits
I ncreasing the confidence of third parties in the
A register of relevant compliance obligations organization’s capacity to achieve sustained success
be visible and accessible throughout the organization greements with community groups or
a
aising
R Requirements non-governmental organizations
concerns
treat reports confidentially
agreements with public authorities and customers
accept anonymous reports This process shall:
organizational requirements, such as policies and procedures
protect those making reports from retaliation oluntarily
V
chooses to voluntary principles or codes of practice
comply with
enable personnel to receive advice
voluntary labelling or environmental commitments
Establishing a compliance reporting and documenting system 5.3.1 Governing body and top management
Ensuring the compliance management system is reviewed at planned intervals 5.3.2 Compliance function
.3 Roles, responsibilities
5
and authorities
Establishing a system for raising concerns and ensuring that concerns are addressed 5.3.3 Management
5.3.4 Personnel
Integrity
Culture
6.1 Actions to address risks and opportunities
Conformity
Objectives 6 Planning 6.2 Compliance objectives and planning to achieve them
Reputation
6.3 Planning of changes
Value
7.4 Communication
Proportionality
Principles
7.5 Documented information
Transparency
Accountability
8.1 Operational planning and control
Sustainability
8.2 Establishing controls and procedures
Commitment at all levels 8 Operation
8.3 Raising concerns
Determining the scope
8.4 Investigation processes
Compliance policy Plan
Internal audit
Management review
Raising concerns
Investigation process
Managing noncompliance
Act
Continual improvement