First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

Leadership and Management

20 questions to ask when prioritizing your policy development efforts

Having too many policies can burden your organization, but having too few exposes it to unnecessary risk. That means we need to prioritize which policies we will develop (or revise) first.

 

, , , , , , , ,

Reminder: Reporting compliance with AODA accessibility standards

Most accessibility standards requirements under the Accessibility for Ontarians with Disabilities Act (AODA) are now in effect for large and small organizations in the public, private and not-for-profit sectors across Ontario.

 

, , , ,

What does your risk management activity seek to achieve?

It is essential to understand what an organization needs and how critical the management of risk is before settling on a design, let alone trying to implement or upgrade risk management.

 

, , , , , , ,

Effective investigations and interviewing in the workplace

Employers must investigate incidents or allegations of workplace harassment and violence. Here are some best practices to improve your workplace investigations and interviews:

 

, , , , , , , , , , ,

Trusted advisors and world-class internal auditors

I was recently privileged to receive a signed copy of Richard Chambers’ latest book, Trusted Advisors: Key Attributes of Outstanding Internal Auditors. Richard is the President and CEO of The Institute of Internal Auditors, a veteran of internal audit at the highest level, a friend, and an individual with whom I love to debate the practices of internal auditing and risk management. (I hope I am influencing his views on the imminent update of the COSO ERM Framework.)

 

, , , , ,

Supreme Court clarifies test for personal liability of directors for oppressive conduct

The general principles articulated by the Supreme Court may help guide directors and counsel in considering whether corporate conduct could lead to personal liability in future cases.

 

, , , , , , , ,

Always-on risk and strategy management

Always-on strategy complements the annual [strategy] process by giving senior leadership a regular forum in which to monitor and discuss issues that warrant continual attention, including those identified during the annual process and during the course of the year.

 

, , , , ,

PwC does better on risk management

If you don’t focus on the achievement of objectives, but instead manage individual risks, how do you know whether you are likely to achieve them – or the possibility of exceeding them?

 

, , , , , ,

Defending a lawsuit is not a “commercial activity” under privacy legislation

In a case dating back to 2016 but just recently published, the Office of the Privacy Commissioner of Canada has ruled that the collection and use of a plaintiff’s personal information for the purpose of defending against a civil lawsuit is not a “commercial activity” and, as such, the Personal Information Protection and Electronic Documents Act does not apply.

 

, , , ,

Canada’s proposed new trademarks regulations

The Canadian Intellectual Property Office has released a first draft of the Regulations that will support our new Trademarks Act now scheduled to come into force in early 2019. The consultation period for these new Regulations will expire July 21, 2017 and will be followed by a further consultation term in late 2017 or early 2018.

 

, , , , , , ,

Corporate Human Rights 2017 Benchmark shows companies at relatively early stage in implementing UN Guiding Principles on Human Rights

The Benchmark calls on businesses to implement corporate responsibility to respect human rights under the UN Guiding Principles, and to study the 2017 Benchmark report to see where improvements can be made.

 

, , , ,

Former employee steals personal information to purchase smart phones

The Office of the Information and Privacy Commissioner of Alberta has required a payment processing organization to notify individuals pursuant to section 37.1 of the province’s Personal Information Protection Act because there was a real risk of significant harm to those individuals affected by an incident that involved unauthorized access and theft of information of 60 Alberta residents.

 

, , , ,

SEC awards whistleblower reduced amount citing whistleblower culpability

The February 28, 2017 order emphasized that the reduced award was a result of the whistleblower’s culpability in connection with the securities law violations and the whistleblower’s delay in reporting the violation to the SEC.

 

, , , , , , , ,

How to go beyond the words to craft smarter policies

All of these tips seek to offer ways to make policies and procedures better, but the most important tip is that policies and procedures should not be managed in a vacuum. They are an important element of an effective compliance program without regard to what compliance guidance your organization follows. Ignoring policies can negatively impact compliance conduct, training, monitoring and auditing, investigations – and most importantly and ultimately – the reputation of an organization.

 

, , , , , , ,

Neighbourhood annoyances and Section 976 C.C.Q.

This case reminds us that a consequence of Section 976 C.C.Q. is to prohibit neighbourhood annoyances that are deemed to be abnormal, but it does not prohibit all of the annoyances associated with societal life.

 

, , , , , ,

Previous Posts Next posts