Compliance Study_complet - pwc
Compliance Study_complet - pwc
Compliance Study_complet - pwc
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
© PricewaterhouseCoopers - Protecting the brand, May 2005 27<br />
<strong>Compliance</strong>:<br />
• decided whether a breach should be reported to the regulator,<br />
• informed senior management if the breach had to be reported to the regulator and/or was considered material from an<br />
internal perspective,<br />
• advised business on rectification,<br />
• monitored progress on rectification (in conjunction with internal audit) and<br />
• reported to senior management/the board on rectification progress.<br />
If not reported to the regulator, breaches were nonetheless escalated to senior management or the board depending on the<br />
materiality of the breach or deficiency (according to pre-established parameters). One respondent had an incident grading<br />
system, which predetermined who was responsible for rectification (see also p. 42). Over 90% of respondents said they<br />
ensured root cause analysis was undertaken to identify cases of potential systemic weakness, ensuring appropriate actions<br />
are taken, including penalising personnel where appropriate. Notably, however, no established breach rectification process<br />
was in place in some organisations where i) the compliance function was new, and ii) there had been no significant incidents<br />
in that country.<br />
How often does the compliance function report<br />
to the board of directors ?<br />
3<br />
3<br />
11<br />
9<br />
3 3<br />
40<br />
14<br />
14<br />
Reporting to the board/senior management<br />
84% of respondents reported directly to the board or appropriate board committee; the remaining 16% reporting to senior<br />
management. In over 95% of organisations, either a member of senior management was directly responsible for compliance,<br />
or the compliance officer reported directly to a member of senior management. 40% of respondents indicated that formal<br />
reporting to the board took place quarterly: an additional 17% said that reporting was actually more frequent (either five<br />
times per year, or monthly). 3% did not prepare formal reports for the board.<br />
annually<br />
semi-annually<br />
quarterly<br />
5 times annually<br />
bi-monthly<br />
monthly<br />
regularly<br />
on request<br />
do not report