In the light of the new data privacy regulation coming into force, organizations have to initiate compliance measures for adding in new provisions and understand overlapping controls.

Securities and Exchange Board of India (SEBI) has amended the SEBI (Listing Obligations and Disclosure Requirements) Regulations, 2015 through notification no. No. SEBI/LAD-NRO/GN/2021/22 on 5th May 2021, effective from 6th May 2021 for all applicable companies.

Data Privacy Day is around the corner and Riskpro is excited to bring Data Privacy Day celebrations right to your doorstep.

Company Secretaries spend a lot of their time on activities such as drafting documents, filling forms, updating registers, and managing documentation. A lot of these activities are highly repetitive and low value-adding. It requires data entry, copies and paste of data types such as Company Details, Directors’ particulars, and past records among others.

Risk refers to a company's or organization's exposure to factors that could reduce profitability or cause it to fail. A risk is anything that directly threatens a company's ability to meet its financial objectives.

Healthcare settings are in digital transformation through data digitalization, interconnections, and automation. Cyber security challenges are of priority not only for healthcare providers but also for their business associates. Organizations are facing increased risks of cyber security threats while meeting the regulatory requirements of patient safety, care delivery, privacy, and security.

ESG (Environmental, Social, and Governance) disclosures in India are mandated for the top 1000 listed companies (by market capitalization) effective FY 2022-23. Comparative quantitative data will need to be captured and reported  (with comparative nos. to be reported for FY 2021-22).

The frameworks borrows key controls from various industry level cybersecurity standards such as NIST, ISF, ISO, Basel and PCI DSS. The purpose of the CSF is to ) to enable Financial Institutions regulated by SAMA (“the Member Organizations”) to effectively identify and address risks related to cyber security.

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.

A project risk is an unforeseen occurrence that may or may not occur throughout the course of the project.

Risk HAWC is a Fully Integrated, Flexible and Dynamic Risk & Compliance Management System. Risk HAWC enables you to actively manage risk exposures with insightful configurable dashboards and it has a strong Compliance Management Capability. The tool aligns risk management actions with business objectives for more informed strategic enterprise-wide decisions.

Irrespective of which line of defense you belong to, GRC has gained increasing importance. Rather than looking at it in silos, enterprise-wide GRC is what our current dynamic environment requires. GRC now needs to be consistent, continuous and constantly evolving to face new risks. Technology has played a major factor in transforming GRC from what it was to what it is and can be.