Frequently Asked Questions

General FAQs

What is Governance, Risk and Compliance (GRC&P)?

Governance – Is how an organisation is controlled by the people who run the organisation. It includes establishing and following policies and procedures.

Risk – the likelihood of something happening that will have an effect (usually an adverse effect) on achieving an objective.

Compliance – how an organisation meets obligations required for it to be in business.  

GRC is a discipline for how an organisation runs. It includes internal and external components.

P stands for Policy Management, which is a critical component of how an organisation runs. It includes content such as:

  • Accuracy – Are policies and procedures correct and up to date?
  • Version control – Do you know which document is the most recent and correct?
  • Accessibility – Can anyone who needs to access a document access it?
  • Training – Are staff trained on it? Can you prove it?
GRC is seems like such a bit undertaking. Where do we start?

There is no one-size-fits-all approach. The CompliSpace team are committed to understanding your needs and designing a solution that’s right for you.

Before a client signs on the dotted line, we work through a unique evaluation process designed to:

  • Identify your current Governance, Risk and Compliance (GRC) programs – it’s important to know what’s working well and what isn’t!
  • Understand highest priorities and GRC goals
  • Identify key stakeholder priorities, roles and responsibilities
  • Quantify timeframes and available resources
  • Address specific requirements
  • Document a proposal with detailed recommendations

We want to make sure that CompliSpace is the right fit for you and will work with you to scope a project in line with your needs, budget and timeframes.

Compliance, Compliance, Compliance – our staff are sick of it! How can we make it simple?

Our clients tell us all the time that their staff experience “compliance fatigue”. Our view is that compliance doesn’t have to be a dirty word. Taking a simple, risk-based approach to compliance, rather than a compliance-for-compliance-sake approach will help you streamline compliance and ease the burden placed on your staff.

CompliSpace can help you to make compliance work for your organisation and not the other way around. Our Compliance Program is built in line with the International Standard for Compliance Management Systems AS/ISO 19600:2015 and mapped to incorporate relevant key legal and regulatory compliance issues.

We then help you to introduce appropriate risk-based controls and compliance tasks to ensure that you are meeting your legal and regulatory, organisational policy, and contractual obligations.

As with all our solutions, we will continuously monitor for changes to key legal and regulatory compliance issues to assist you to keep up-to-date with your compliance requirements.

Can I customise policies and procedures to be specific to our organisation’s unique needs?

Yes. Our Editorial Team combines legal and industry experience to draft a comprehensive range of policies, procedures, risk assessment and control templates.

Our team will assist you with customising documents to meet your needs. This includes adding and integrating your own content, policies and procedures so that you have ‘one source of knowledge’ within your organisation.

Given the pace of change, how will CompliSpace help us to manage legislation updates and policy maintenance?

Keeping policies and procedures up to date and alerting you to changes are unique parts of the CompliSpace service. We are on top of key legislative, accreditation, regulatory and best practice changes. We then update the relevant documents and alert you to the changes.

You have control over publishing new content in your CompliSpace account. Documents are version controlled so you always know which version is the most up to date.

How will CompliSpace help us to produce meaningful management reports, including any areas of non-compliance, risk management and incident trend analysis?

CompliSpace provides tools that will enable you to quickly introduce multi-level reporting with the ability to drill down to specific risk, compliance, incident and operational areas. Other reporting features include:

  • Real-time and dashboard reporting on risk, compliance and incident management
  • Easy to use report functionality, including filters and drag and drop
  • Export functionality
How will CompliSpace support us?

Our team is focused on developing long-lasting partnerships with our clients. From evaluating your needs and designing a bespoke solution, to working with you to set up and embed at the coal face, to providing you with ongoing support, we are committed to ensuring that we make it work for your organisation.  

Our solutions uniquely combine content, technology and people to provide:

  • Detailed gap analysis of client material and integration as appropriate into new system.
  • A dedicated project team that will identify and work towards clear milestones for flexible and efficient project management.
  • Upskilling of staff on systems.
  • Ongoing client relationship management and range of support tools.