The Annual Nordic Third-Party Compliance, Risk Management & Oversight Summit





Join your colleagues and us at The Annual Nordic Third-Party Compliance, Risk Management & Oversight Summit. The agenda focuses on how companies are building robust third-party compliance programs and improving decision making, efficiencies and outcomes.

The conference will provide fresh perspectives and guidance on evolving market dynamics, analyse third compliance with keynote speeches and cases.

WHEN
March 16th, 2017 8:30-16:00

WHERE
During the 10th annual Nordic GRC Summit

REGISTRATION. Fees: 4.500,00 dkk. or €590,00 + VAT
TO REGISTER Click Here

WHO SHOULD ATTEND
  • Anti-corruption team
  • Audit
  • Compliance
  • Data privacy
  • IT security
  • Legal
  • Procurement
  • Supply chain management

Improper oversight of your third-party relationships and compliance can cost your company millions of dollars and loss of reputation. Newspaper and social media headlines continue to report stories of human rights violations, corruption, unethical business practices and data breaches that lead to a business focus on enhanced third-party risk management, stronger oversight, and heightened controls.

AGENDA-AT-A-GLANCE
  • Highlights from a chief compliance officer think tank: what are the three top issues that keep them up at night?
  • Strategies to safeguard your company from it, data and cyber security breaches
  • Conducting risk assessments for diverse third-parties: agents, vendors, JV’s, suppliers
  • How to conduct an effective third-party audit
  • Government expectations for third-party compliance programs
  • How to perform an roi analysis of your third-party program
  • Data privacy restrictions that affect your investigative, forensics and due diligence process

Two workshop sessions on the 3rd party Governance, Due Diligence and Compliance
Moderated and conducted by Henrik Frøssling, ex. Risk and Compliance Manager of Volvo

Part A: Do we always know whom we do business with?

Continued media exposure on third party compliance defaults reminds us of the importance of knowing whom we choose to do business with and the dire consequences related to bad publicity, directly impact brand and reputation. At the first part of the workshop we focus on;
  • It is not only of interest to know whom we choose to do business with and who are behind the companies.
    • What are the compliance, circumstantial preventive actions, due diligence and controls?
  • What are the global ethical standards of the business partners, and their trading partners as well as potential shell companies?
    • The risk exposure of corruption, fraud, money laundry or terror financing.
  • How to address criminal offences when ignorance is not a viable defence. We review the standard rules and regulations.

We take a risk-based approach, using own resources on the biggest third party risks, various background checks and preventive actions. The financial upside of these activities should not be underrated.

Part B: How to ensure that our business partners are mature enough on requirements in the areas of GRC regarding Code of Conducts & Business Ethics?

The board, senior executives and management teams must be aware of the internal and external requirements on customers Code of Conduct for suppliers to establish a prudent tone-at-the-top. These requirements are more complex to have a dialogue on risks and responses so that the staff can proclaim; yes we are compliant with Code of Conducts & Business Ethics?
  • What are the mechanisms behind the enterprise’ capacity to understand third party issues, requirements, best practice, risks and consequences?
    • How to adopt a new or changed rationale to ensure compliance?
  • How to be compliant in processes as well as practice
    • We take a risk-based approach to focus on incorporating the integrating and embedding processes to the corporate culture and structure.
  • How do we find the right level of compliance and the right balance in culture, structure, processes, control environment and evidence of the compliance
    • Do we have an increased level of maturity, risk governance and to measure the performance?
  • We review and update the code of conduct requirements from stakeholders and regulators on burning issues.
    • How to avoid that our business partners jeopardise our business.

During both, we examine the different consequences of third party non-compliance and find sustainable solutions to the GRC business opportunities, direct and indirect cost and reputation risk so that these risks are not to be underestimated nor neglected.