Manoj_Jain's blog

GDPR for Indian Companies

This note is written after experience of more than 20 Indian Startups and small and mid sized companies.
So as we know it, GDPR is going to affect a lot of Indian companies in many ways, but the key ways in which it affects Indian companies is by restricting their growth and business potential.

The Indian culture is such that CEOs are just not ready to comply and GDPR is not a light regulation. It places enhanced obligations on all companies to consider privacy as a key risk and monitor it accordingly.

Our experience working on GDPR assignments in India

So, we started to build our practice of GDPR on the premises that India is a Hub of data processing and under GDPR, all will go out of business if there businesses are not GDPR compliant.

So, what that means for Indian companies and applicability of GDPR for India companies. Simply, it means that if GDPR applies to Europe region primarily, then next in the order is India as the single largest base of companies that need to comply with the data protection regulation.

Board Evaluation

Board Evaluation

The recent failures of corporate throughout the world have led the regulators to closely review the mechanism and guidelines that govern the functioning of the Board. The Board evaluation process is of utmost importance as it relates to the long term objectives of the company.

The following information provides in - depth information on Board Evaluation, the Methods available, and related information

Different Risk Factors - A risk 101

Contract Risk
Contract risks arise from the possibility that the legal contracts of the company will contain clauses obligating the business to terms and conditions that are unreasonably impacting the company in a negative manner. This risk type could have risk events such as performance penalties, contract termination penalties, warranty terms, non standard clauses not reviewed by legal department, unfavourable clauses inserted by counterparty without knowledge of the company etc.

Fraud Risk Management Training for Insurance Industry

Following are suggested training program for fraud risk.

Life Insurance Fraud overview
-Regulatory & Legal requirements & provisions viz a viz Fraud
-Role of various stakeholders – Sales/agency force, medical examiners, underwriting, policy issuance, policy admin/claims, risk management, SIU post facto analysis

-Fraud Detection Technique
-Detailed Fraud Scenarios based on industry - India & Globally (we will take numerous specific scenarios & red flags)
-Case Study on Insurance Fraud

Rule-making for Prepaid and Digital Wallet Accounts

Rs 20,000 without KYC.... Rs 2,000 without additional factor authentication. It is not enough. India's exponential use of digital wallets and prepaid accounts seem to leave behind The RBI, Banks and other regulators who are grappling with adequate regulatory measures to make sure that the ecosystem can withstand the volumes with least amount of frauds and losses.

Section 134(5) - Pains and gains for Indian Companies

Sec 134(5) increases focus on Corporate Governance and compliance, besides risk and internal controls. Under section 134(5)(f), director’s need to certify that they have devised proper systems to ensure compliance with the provisions of all applicable laws and that such systems were adequate and operating effectively

Cost of Non Compliance

What is the worst case scenario, purely in terms of penalties imposed by the Ministry on non compliance of the section.
A very rough estimate and no way can anyone determine the true answer.

Top 20 compliance management Software

Riskpro conducted a survey to develop a list of top 20 compliance management software. Specifically, our goal was to put together the list of top 20 compliance tools in India.

Our results were quite alarming. We were expecting large IT global firms to feature on the list. But to our surprise this was not so. The main reason is that these global IT firms do not have a full understanding of local regulations and their IT systems are not populated with local acts and regulations.
This prevents users from deriving maximum benefit of the global system.

Best compliance management software

All of us would like to know which is the best compliance management software in India. Naturally, the answer depends on the maturity of compliance management at your organisation and what is the expectation from a software.

But if we have to identify the best compliance software, then we can measure it on the following rating parameters.

Legal Metrology Audits

There are 2 possibilities. One is if the client is a manufacturer of measuring devices. Then the audit takes a different direction as they need to adhere to a lot of controls to ensure only accurate measuring devices are sent. Clients are also required to do verification and certification of such devices annually.

Pages

Subscribe to RSS - Manoj_Jain's blog

Other Services of Interest

  • GDPR Countdown

    Riskpro is working hard so that clients can GDPR deadline as the clock ticks away.
  • EU-US Privacy Shield for Data Transfers

    Come GDPR (General Data Protection Act) and EU-US PRivacy shield will assume more importance. Privacy Shield Overview The Privacy Shield program, which is administered by the International Trade...
  • Reduce your GDPR implementation Costs - Hire GDPR Experts in India

    Reduce cost for GDPR Compliance - Remote Consulting from India GDPR readiness assessment and implementation can be costly. And time is short. Instead of paying premium fees to local GDPR consultants...
  • Riskpro India on top of Emerging Risks that bother you

    Riskpro India is well positioned to offer advisory services for emerging risks such as Data Protection (GDPR), information security, assurance services such as Third party risk management, internal...
  • Risk Appetite and Risk Strategy

    COSO Enterprise Risk Management 2017 is here. And one of the most important changes in ERM is that ERM ties back to strategy and business objectives. ERM is no more an isolated practice followed...
  • Introduction to GDPR - Data Protection Training Mumbai

    You are invited to an enriching introduction to the most important regulation in data privacy – The EU General Data Protection Regulation (GDPR). The regulation is creating ripples across the Indian...
  • Digital Forensic Services

    Riskpro has partnered with a specialist Digital Forensics Services firm to offer digital forensic services. This involves analysis of digital assets for specified objectives. Whether it is a...
  • COSO ERM 2017 - Know the risks that matter

    In risk management, the end goal is to manage the risks that matter, and not to manage all the risks that can exist. For this, a welcome update to COSO ERM 2017 is the shift from process based risk...
  • Risk Management Score - Benchmarking Risk Management effectiveness

    Risk Mitigation results are often not apparent. This makes it more difficult to justify whether a company is doing it right. To overcome this issue, Riskpro has introduced a proprietary Risk...
  • Go to top