Online Modern Slavery course for procurement teams

New modern slavery course for procurement teams

VinciWorks has just released a new advanced course on Modern Slavery. A companion to the introductory Modern Slavery: Preventing Exploitation, this 45 minute course is tailored to procurement teams. It gives further insight into modern slavery in supply chains and will help carry out risk assessments. The course can be fully customised to suit internal procedures.

The course includes:

  • Common problems to look out for in the supply chain
  • High risk countries and products
  • Real-life scenarios from different parts of the supply chain to test your ability to spot red flags
  • Practical steps for projects
  • Questions to ask potential suppliers
  • Guidance on addressing risks of modern slavery in your supply chain

Industry-specific red flags

Mobile devices created by modern slaves
Our course highlights industries where modern slavery is most likely to occur

Click below to demo the course for free.

Demo the course

A group of people from all around the world

What your company needs to know about the new EU court ruling on headscarves at work

What happened?

The Court of Justice of the European Union (CJEU) recently ruled that companies can have a general policy banning all religious and political symbols if it is ‘objectively justified’, as the Court says. The problem is that in 2013, the European Court of Human Rights (ECHR), an entirely separate institution from the Court of Justice, held that employees have the right to manifest their freedom of religion at work.

The ECHR decided that a British Airways check-in worker was prevented from expressing her religious belief when she was banned from wearing a crucifix at work. Even though BA went on to amend their uniform policy to allow her to wear a crucifix, the ruling was thought to have established a precedent which has now been thrown into confusion.
Continue reading

UK 20 pound notes

On 17th March, HM Treasury released a draft of Money Laundering Regulations 2017, which transposes the Fourth Money Laundering Directive into UK Law. At the same time, the government published a new consultation requesting the public’s view on the draft. Below are the key takeaways.

No automatic exemption from enhanced due diligence for pooled accounts

The Law Society has lost its battle for an explicit assurance that financial institutions can apply simplified customer due diligence to pooled client accounts. SDD will only be permitted when the firms providing pooled accounts are considered low risk.

HM treasury said that “Pooled client accounts could potentially be exploited for money laundering”, citing examples and findings from the Government’s National Risk Assessment on money laundering.

VinciWorks will be updating all of its anti-money laundering courses accordingly and launching a new AML refresher course later in the year.

Continue reading

Uber offices

The gig economy has a compliance problem

The gig economy is creating a multitude of unpaid tax liabilities, and HMRC may be ready to use new tax dodging laws to crackdown on start-ups and their “self-employed” workers.

In 2017 the Criminal Finances Bill and Finance Bill comes into force, making it easier to prosecute the professional services that seek to help tax evaders, as well as the lawyers and accountants devising or selling schemes, to help people avoid tax. So how will a crackdown on tax evaders and tax avoiders impact the gig economy?

HMRC launched a consultation document in 2016 called “Tackling the hidden economy: extension of data-gathering powers to money service businesses.” This promises new powers for HMRC to gather and acquire data from online intermediaries and electronic payment providers to uncover those who are operating in the “hidden economy.”
Continue reading

Data protection

The General Data Protection Regulation (GDPR) is now in force. It presents the most significant change to EU data protection in 20 years, meaning organisations have had to update their policies to ensure they are compliant. Further, all staff who are involved in the processing and storing of data must be familiar with their organisation’s data protection policy. We have therefore provided a data protection policy template to help your staff understand and follow your organisation’s data protection procedures.

Download GDPR policy template

Learn more: The GDPR resource page

GDPR policies and procedures

The General Data Protection Regulation (GDPR) is an EU regulation on data protection and privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of EU privacy law and of human rights law. Its reach also extends to the transfer of personal data outside the EU and EEA areas. The GDPR’s primary aim is to widen individuals’ control and rights over their personal data and to simplify the regulatory environment for international business.

The General Data Protection Regulation (GDPR) was a major shakeup in data protection laws. GDPR’s reach is global. Any company that offers goods or services to anyone in the EU or UK may be required to comply.

The GDPR was adopted on 14 April 2016 and became enforceable beginning 25 May 2018. As the GDPR is a regulation, not a directive, it is directly binding and applicable, and leaves room for certain aspects of the regulation to be amended by individual member states.

Many other countries around the world used the EU’s GDPR as a model to make similar regulations. These countries include Turkey, Mauritius, Chile, Japan, Brazil, South Korea, South Africa, Argentina and Kenya. 

In the post-Brexit UK, GDPR is known as UK GDPR. UK-based organisations processing data of EU residents must comply with EU GDPR, just as EU organisations processing the data of British residents must comply with UK GDPR.

UK GDPR and EU GDPR are essentially the same; except UK GDPR refers to British institutions such as the Information Commissioners Office, as opposed to EU institutions.

The California Consumer Privacy Act (CCPA), adopted on 28 June 2018, has many similarities with the GDPR.

What should a data protection policy include?

Who is responsible for the data protection policy?

Staff should know who to approach if they have any questions regarding the data protection policy or anything related to the processing of personal data. Under GDPR, certain organisations are required to appoint a Data Protection Officer (DPO). It will be their role to advise the company on the rules needed to ensure compliance with data protection laws.
Continue reading