Category Archives: Risk

Free Guide to Compliance with the General Data Protection Regulation (GDPR)

GDPR is the most significant change to EU data protection law in 20 years. The law will apply to all businesses with customers in the EU, no matter where in the world they are based, and mandates much stricter data protection rules than ever before.

To avoid breaches, including fines of up to 4% of global revenue, companies must start preparing now.

As a companion to our new GDPR and data protection course, we have written a free, practical guide to compliance with GDPR.

Fill out your details below to gain access to the GDPR compliance guide:

Fill out my online form.

New guide to the gig economy warns businesses of compliance risks

The Gig Economy Banner

VinciWorks has published an e-book warning businesses about the dangers of the gig economy.

Compliance Risks and the Gig Economy takes businesses through the potential legal minefield of using gig economy apps for business purposes. From renting a room through Airbnb, buying a service on UpWork or hailing a ride on Uber, when a business interacts with the gig economy, it can have a knock-on effect across compliance areas from employment law to equality to modern slavery. Most recently, already-under-fire Uber has recently been exposed for concealing a massive global breach of the personal information of 57 million customers and drivers in October 2016.

Prime Minister vows to crack down on those taking advantage of workers

Theresa May recently promised to overhaul the rights of millions of workers in the UK. The crackdown, regarded by one business group as “the biggest shake-up of employment law in generations”, includes the PM’s pledge to clamp down on firms using unpaid interns, quadruple fines for non-compliant organisations and launch a “naming and shaming” list of the worst perpetrators.

Millions of brits working independently

With around 14 million Brits taking part in some form of independent work, whether traditional freelance or through a new gig economy app, the potential compliance risks range from equality and discrimination to tax evasion, modern slavery, and even data protection.
Continue reading

Ten steps to preventing sexual harassment in your workplace

Sexual harassment at work

The month of October saw an alarming number of allegations of sexual harassment. This includes the demise of Hollywood film producer Harvey Weinstein, Netflix cutting ties with actor Kevin Spacey and the spread of allegations to Westminster.

With a recent BBC survey finding half of women in the UK and a fifth of men have been sexually harassed at work or at a place of study, it is clear managers must promote a culture whereby staff can bring up any concerns of sexual harassment in the knowledge that they will be heard and dealt with.

Continue reading

Attracting top talent in the age of Tinder

Handshake with city background

How to get millennials to marry your company

Is your firm feeling a bit male, pale and stale? Have millennial hires turned your office into a revolving door, with new faces never staying long enough for you to remember their names? Is the talent pool shrinking, or is the traditional bait just no longer working?

Whatever the causes, failing to attract top talent is one of the top risks consistently identified by firms through VinciWorks Risk Management System. Like an apocalyptic horror novel where the human race ceases to reproduce, the risk of not attracting and retaining top talent is like a ticking clock counting down to demographic disaster. With every retirement party attended and every leaving card signed, another void opens up. It’s hard to know if it can ever be properly filled.
Continue reading

Your essential four step guide to risk management

Sign for a High Risk Area Construction Site

The Importance of having an integrated risk and business strategy

Does your risk strategy and business strategy sit in two separate folders? When drafting your risk strategy, was it aligned to the business strategy and written with your organisational goals at the forefront? Or, as most companies do, is your risk strategy little more than a casually updated excel sheet?

Without an integrated risk and business strategy, the business will struggle to properly identify the long-term challenges that will affect your business, and thus will miss out on crucial indicators and controls and fail to see risk as a strategic priority.
Continue reading

What to expect after the election – post-election analysis

Polling station sign

The result of the 2017 general election has resulted in a hung parliament

What business needs to prepare for in a hung parliament

As the clock struck ten on election night, it was all over. Theresa May’s gamble had failed to pay out. The majority was lost. An unexpected swing to Labour across key and unexpected constituencies took place, offset by a strong swing against the SNP. A surge in young voters turning out and a complete collapse of the UKIP vote meant that the 42% won by the Conservatives and the 40% won by Labour no longer resulted in a landslide, but a hung parliament.

Before the election, VinciWorks published an outline of what to expect after the election from a Conservative or Labour government. Neither of those results has come to pass, so here’s what business could expect, and should prepare for, in this new reality.

A hard Brexit won’t happen

There simply isn’t a majority in Parliament for the hard Brexit that Mrs May was proposing. Cutting off British access to the customs union and single market as the Conservative party wanted looks likely to be set adrift. The Tory’s partners in Parliament, the Northern Irish Democratic Unionist Party, while themselves cheerleaders of Brexit, want a softer version and a frictionless border with the Republic of Ireland, and thus the EU.  
Continue reading

New Corporate Offence in 2017 for Failing to Prevent Facilitation of Tax Evasion

Tax Evasion

The Criminal Finances Act, which received royal assent on 27th April, created a new corporate criminal offence for failing to prevent the facilitation of tax evasion.

The Act places responsibility on businesses to make sure none of their employees are involved in helping someone evade their taxes. If they do, and if the business failed to have “reasonable measures” to prevent or expose it, then the business itself could be found guilty and liable for some pretty steep fines.

This offence is broad reaching. It can be committed whether or not the company is UK-based or established under the law of another country, or whether the associated person who performs the criminal act of facilitation is in the UK or overseas.

Timeline for Implementation of The New Corporate Criminal Offence

The Act provides for commencement of the provisions from a date to be appointed by the Treasury. It is expected that this will be from September 2017, to coincide with the start of the first exchange of information under the Common Reporting Standard.

Before implementation, organisations of any size and type need to ensure that they have reasonable procedures in place.

The Six Guiding Principles of The “Reasonable Procedures” Defence

Under this new legislation, businesses can be held responsible for the actions of their employees, whether or not the business was aware of an employee’s criminal activities. A business’ only defence is to take “reasonable measures” to ensure that its employees do not facilitate tax evasion. Government guidance recommends the following six “reasonable measure” principles:

  1. Risk assessment
  2. Proportionality of risk-based prevention procedures
  3. Top level commitment
  4. Due diligence
  5. Communication (including training)
  6. Monitoring and review

Continue reading

RMS Update: Dashboard is now filterable

The dashboard of the Risk Management System is the nerve center of the risk management process. It provides an overview of an organisation’s risk profile, important alerts, top risks and the latest risk news.

This risk epicenter is now even more powerful with the addition of filters for categories and org units.

This granular view of your risks and controls enables you to drill down into any category or org unit and identify potential risks and opportunities. When using the filter, all elements of the dashboard, including reports, charts, control procedures etc. are updated with the filter.

Oxfam scandal – seven vital steps to manage reputational risk

Reputation in mud

The Oxfam story must be a warning sign to risk managers

As Oxfam finds itself engulfed in crisis due to the actions of its employees, we take a closer look at the consequences of reputational damage. Following sexual misconduct claims against the charity’s staff dating back to 2011 in Haiti, Oxfam is scrambling to contain the crisis, with the UK government threatening to cut its funding of over £30m. The charity must now demonstrate to the government that they have “moral leadership” to stand any chance of retaining any of the funding.

Continue reading