First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

IT, Privacy and Security

Reporting on risk to the board

Those charged with reporting on risk to the board and to the executive team should understand what they are trying to achieve, what information they need to be successful and how they can help.

 

, , , , , , ,

Online advisors: Stand-alone investment managers or tools for portfolio managers?

Online advisors are digital wealth managers. They use information that an investor provides, usually through an online questionnaire, in order to create an investment recommendation.

 

, , , , , , , , , ,

Talking sense about technology risk and cyber

You have to have sponsorship from the CEO and throughout the company to really understand and diagnose IT risks, data security risks and business risks, and then prioritize them.

 

, , , ,

Don’t forget to audit controls!

It’s best to have management detect issues and for audit to assess whether those detective controls are adequate.

 

, , , , , , ,

Improve internal controls over fixed assets (Part 1)

Many organizations face challenges with recording and physically safeguarding fixed assets. Organizations must also meet disclosure and other requirements when they prepare audited or other financial statements, corporate tax returns (applicable to for-profit organizations) and T3010 Registered Charity Information Returns (applicable to charitable organizations). Accounting processes and procedures must facilitate these activities.

 

An idea to help drive effective risk management

We want all decision-makers to consider all the potential consequences of their decision (in fact, all the potential consequences for each option on the table) before making an informed and intelligent judgment. What if the quality of decision-making was a significant factor in assessing performance? Thus affecting compensation and career progression. This idea could help drive effective risk management.

 

, , , , , , , ,

Canada’s oldest stock exchange enters cryptocurrency market

TMX Group Ltd., which owns the 166 year-old Toronto Stock Exchange, announced on March 22, 2018 that it would launch a cryptocurrency platform and thereby enter the burgeoning market for virtual currencies.

 

, , , ,

Ontario budget 2018: Financial services updates

The 2018 Ontario Budget includes a number of financial services related developments, with a strong focus on innovation.

 

, , , , , , , ,

Guidance on recording of customer telephone calls updated

The Office of the Privacy Commissioner of Canada recently updated its information and guidance on recording of customer telephone calls to bring it up to date, make it web-friendly and responsive for user feedback.

 

, , , , , , , , ,

Is the goal of risk governance taking boards in the wrong direction?

The board is discharging its responsibilities to ensure stakeholders get the performance they should: value creation as well as (and not just) value protection. The board should make sure the management team is effective in running the organization, and that is not done by focusing on a list of harms. Effective governance of an organization is limited if the board focuses on risks.

 

, , , , , , , ,

Law Commission of Ontario launches consultations for its Class Actions Reform Project

The LCO’s Class Actions Project will invite significant commentary from plaintiffs, defendants, consumers and industry organizations as well as interested counsel and academics. The result of the consultation remains to be seen, but the consultation represents the first opportunity in a generation to objectively examine the impact of class proceeding legislation from an empirical perspective, and could profoundly affect the future of collective relief in Ontario.

 

, , , , ,

10 top ways to be a wildly effective compliance officer

Competition law

To be wildly effective, compliance officers should have a positive working relationship with the other functions in the business, especially Legal, Audit and Human Resources.

 

, , , ,

How to protect trade secrets following the departure of a key employee

Employers must keep in mind the fact that there is a thin line between, on the one hand, confidential information belonging to a company that remains protected by virtue of the duty of loyalty and, on the other hand, the personal knowledge and skills that an employee has acquired throughout the years and is entitled to bring to a competitor.

 

, , , , , , ,

The SEC is changing the rules for SOX s302 certifications to include cyber risks

You may know that the SEC just published new guidance on the disclosures they are required to make related to cybersecurity. But did you realize that the SOX s302 certification now has to address whether disclosure controls are adequate in ensuring that the proper disclosures are made?

 

, , ,

It’s official: Mandatory data breach notification coming on November 1, 2018

The coming into force of mandatory breach notification and record-keeping requirements on November 1, 2018 should be viewed by organizations as an effort to align Canadian legal and regulatory requirements with those in the United States and Europe (especially with the General Data Protection Regulations – or GDPR – coming into force in May 2018).

 

, , , , , ,

Previous Posts Next posts