SlideShare a Scribd company logo

Best Practices for Regulatory Change Management

Nimonik, profile picture
Nimonik

This document provides an overview of Nimonik's comprehensive compliance solution. It discusses Nimonik's approach to compliance management, which involves identifying all relevant compliance obligations, tracking required actions, and conducting audits. The document outlines different levels of compliance maturity and describes Nimonik's system architecture and key elements like obligations, actions, audits, categories, custom fields, and tags. It also explains Nimonik's implementation process and different workflow types for sharing compliance information across facilities.

Law
1 of 28
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
Most read
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Comprehensive Compliance Best Practices for Regulatory Change Management
About Us Founded in 2008 with offices in Montréal, Calgary and Shanghai. Nimonik services over 500 customers around the world, with a focus on mid-size international companies.
About Us Nimonik is not an EHS management software or just a content provider or simply an audit tool. Nimonik is an integrated compliance solution for regulations, standards and internal requirements.
Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
Minimal Management Supervisor led Systems are in place and training is mandated. Most of the issues are pushed by supervisors and reports identify problematic areas. General staff do not feel a strong responsibility for compliance. Integrated Team based compliance All members of the organization believe that compliance to standards and regulations is good business. Strong comprehension by all of policies and procedures. Easy access to data and software that empower teams. Reactive Focus on putting out fires Organization reacts to EHS, Quality and Compliance issues as they arise. People and teams respond only when there is an immediate problem. Inconsistent Piecemeal approach Some processes and systems are in place. Most facilities or business units are independent and do not share best practices or systems. Compliance Maturity Proactive Forward thinking Meet with stakeholders and regulators. Conduct continuous improvement of compliance program. Why compliance matters
Most organisations do not know ALL of their obligations, leading to “surprises”... A typical Facility has 3,000 Compliance Obligations and 200 new ones per year. Why compliance matters
The Four Pillars of Compliance Prevention Risk profile Historicals Monitoring Detection Early detection Self-reporting Internal Audits Response Fast response Data analysis Action plans Correction Actions Corrective Effectiveness IMPACT Why compliance matters IMPACT IMPACT IMPACT
A Comprehensive Compliance program captures all of your Obligations across your areas of compliance: Quality, environmental, safety, HR, OHS, product... ...and Sources: Regulatory, standards, contracts, permits, stakeholders, customers,... ...and enables timely management of Actions and Audits. Why compliance matters
Actions External actions when regulations & standards change. Internal actions issued by your team to come into compliance. Audits Inspect your facilities based on your Obligations. Verify for action completion and effectiveness of those actions. Why compliance matters Obligations External obligations from regulations & standards Internal obligations from your files, permits and procedures.
Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
Traditional Compliance Approaches How to get there Shared Compliance Obligations ● Inconsistency ● Loss of institutional knowledge ● Time consuming In-house Shared Compliance Obligations ● Compliance gaps ● Variability in work ● Expensive Consultants Shared Compliance Obligations ● Compliance gaps ● Variability in work ● Expensive Consultants Shared Compliance Obligations ● Integration is complex and can take years ● Expensive to build & maintain Enterprise software
Clause Level 250,000 identified obligations Obligations in internal documents Web & Mobile Audits Convert obligations and actions into audits Inspect & collect evidence Document Level 500,000 external documents + Internal documents Nimonik Solution Architecture Action Management Actions when obligations change Actions you create Audits Obligations Actions How to get there
Continuous Comprehensive Compliance: Nimonik Implementation Select obligations & personalize the system Map to responsible teams Establish your process Monitor for changes Follow-up on compliance findings Identify Obligations with Questionnaire Audit compliance on a regular basis Continuous Improvement Plan Do Check Act How to get there
Elements for Success: Nimonik Implementation Management Understands proactive compliance is an investment Project Lead Can prioritize implementation and has the necessary support Team Recognizes the benefit of a compliance system and has time for training Comprehensive Compliance with Nimonik How to get there
Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda NimonikApp Structure 3
Identify your physical operations and outline Obligations, Actions and Audits for each location. Control access by business unit, region or facility Facilities NimonikApp Structure
Lists of documents that are associated to a Facility or to multiple Facilities Compliance Obligations NimonikApp Structure
The compliance obligations table contains the following fields (columns): ● Category ● Document ● Track ● Status ● Published Date ● Modified Date ● Obligations ● Assessment Status ● Responsible Party ● Notes ● Assessment History ● Internal Actions ● Custom Fields Compliance Obligations Table NimonikApp Structure
Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
● Help group the documents in CO registers ● Can be used to filter the information ● Are editable and can vary from one CO to another Categories Categories, Custom Fields, & Tags
● Add additional context and information ● Editable types ‘Custom Fields’ (Text, Date, User, Multiple Choice, & Risk) ● Use custom fields to link Compliance Obligations to Controls Custom Fields Categories, Custom Fields, & Tags
● Tags help tie the elements in your account together - by business unit, by product line or by anything that you wish to report by ● Tags can be created and edited by account administrators ● They can be associated to facilities, audits, internal actions and (soon) obligations ● They can be used to filter reports Tags Categories, Custom Fields, & Tags
Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
A PARENT Facility/CO receives ALL New & Updated Documents/Clauses, and then link the New Documents to the CHILD Facility/CO. Each facility receives ALL New & Updated Documents/Clauses in their Compliance Obligations (COs) separately. Unique Compliance Obligations Shared Compliance Obligations All facilities use the SAME COs, which receive ALL New & Updated Documents/Clauses. Connected Compliance Obligations Shared Compliance Obligations Facility 1 Facility 2 COs 1 COs 2 COs 1 COs 2 Facility 1 Facility 2 COs 1 COs 2 Facility 1 Parent COs 1 Facility 2 Facility 3 Child COs 1 Child COs 1 Workflow Types
Each facility receives ALL New & Updated Documents/Clauses in their Compliance Obligations (COs) separately. Unique Compliance Obligations Start ALL COs in ALL Facilities receive ‘External Actions’ published by Nimonik New & Updated Documents/Clauses Responsible Party of each CO reviews the ‘External Actions’ and closes non-relevant actions Responsible Party set the ‘Assessment Status’ to ‘Review’ Are the ‘External Actions’ relevant to the Facility’s operations? Responsible Party reviews the remaining ‘External Actions’ NO YES Change the ‘Assessment Status’ to ‘Applicable’ Change the ‘Assessment Status’ to ‘Non-Applicable’ Un-track the document if no further monitoring is required Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action Assign ‘Internal Actions’ & due date to the Responsible Party End Does the New & Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? Determine the ‘Internal Actions’ required YES NO Workflow Types
All facilities use the SAME COs, which receive ALL New & Updated Documents/Clauses. Shared Compliance Obligations Start The COs shared by ALL Facilities receive ‘External Actions’ published by Nimonik New & Updated Documents/Clauses The Responsible Party of the shared COs reviews the ‘External Actions’ and closes non-relevant actions The Responsible Party of the COs set the ‘Assessment Status’ to ‘Review’ Are the ‘External Actions’ relevant to the Facilities’ operations? The Responsible Party of EACH Facility reviews the remaining ‘External Actions’ NO YES In a ‘Custom Field’ note which Facilities these documents apply to Add a ‘Note’ (Or use a ‘Custom Field’) to indicate the Facility that has completed the review Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action End Does the New & Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? The Responsible Party of EACH Facility determines the ‘Internal Actions’ required YES IF the ‘External Actions’ are NOT relevant to any Facility, the Responsible Party of the shared COs can change the ‘Assessment Status’ to ‘Non-Applicable’ Assign ‘Internal Actions’ & due date to the Responsible Party The Responsible Party of the shared COs closes the remaining ‘External Actions’ Change the ‘Assessment Status’ to ‘Applicable’ NO Workflow Types
Connect the New Documents to the applicable CHILD COs Connected Compliance Obligations Start The PARENT register receives ALL ‘External Actions’ published by Nimonik New & Updated Documents/Clauses Responsible Party reviews the ‘External Actions’ and closes non-relevant actions Responsible Party reviews the New Documents in the PARENT CO Change the ‘Assessment Status’ to ‘Non-Applicable’ Are the New Documents applicable to the CHILD Facilities/CO? NO YES Change the ‘Assessment Status’ to ‘Applicable’ Un-track the document if no further monitoring is required Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action Assign ‘Internal Actions’ & due date to the Responsible Party End Does the Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? A PARENT Facility/CO receives ALL New & Updated Documents/Clauses, and then link the New Documents to the CHILD Facility/CO. The CHILD COs will receive the same updates to Documents/Clauses as the PARENT CO Determine the ‘Internal Actions’ required YES NO Workflow Types
Nimonik offices Solution Partners Montréal HQ Shanghai Nimonik.com - info@nimonik.com - 1-888-608-7511 - +86 021 51720468 Thank you! Calgary

More Related Content

PDF
Nimonik Brochure
Nimonik
 
PDF
Build a business case for compliance March 2022
Nimonik
 
PDF
State of Compliance 2021 at Mid-Market Firms - Nimonik
Nimonik
 
PDF
ESG and Compliance: Where do we go from here?
Nimonik
 
PPTX
Building a Compliance System for your Business
Sarah Sajedi
 
PPTX
Survey results - Centrally vs Locally managed compliance
Nimonik
 
PPTX
Continous compliance october 2019 webinar (2)
Nimonik
 
PPTX
Compliance Basics Presentation
Compliagent
 
Nimonik Brochure
Nimonik
 
Build a business case for compliance March 2022
Nimonik
 
State of Compliance 2021 at Mid-Market Firms - Nimonik
Nimonik
 
ESG and Compliance: Where do we go from here?
Nimonik
 
Building a Compliance System for your Business
Sarah Sajedi
 
Survey results - Centrally vs Locally managed compliance
Nimonik
 
Continous compliance october 2019 webinar (2)
Nimonik
 
Compliance Basics Presentation
Compliagent
 

Similar to Best Practices for Regulatory Change Management (20)

DOCX
How to quickly communicate policy changes to employees
Chelica Hiltunen
 
PPTX
19600 compliance management system guidelines
Nimonik
 
PPTX
19600 Compliance Management System Guidelines
Nimonik
 
PPTX
Total compliance | Statutory Compliance - Alphabricks Technologies
AlphaBricks Technologies
 
PPTX
Thorough Compliance Lac Megantic
ssuser1246df
 
PDF
Compliance Identification Risk Monitoring Risk Mitigation Risk Assessment Reg...
SlideTeam
 
PDF
Comprehensive Compliance for Environmental, Safety, Quality Requirements in C...
Nimonik
 
PPTX
Compliance watcher A legal compliance tool
karisma hirapara
 
PPTX
Compliance watcher a legal compliance management tool
karisma hirapara
 
PPTX
Enterprise Governance Risk and Compliance (GRC) Management Solution in India
LexComply
 
PDF
Compliance Identification Risk Monitoring Risk Mitigation Risk Assessment Reg...
SlideTeam
 
PPT
Legal Register / Compliance Obligations ISO 14001
Nimonik
 
PPTX
Chief Compliance Officer: What does it take to do the job? The Organization's...
OnlineCompliance Panel
 
PPTX
Compliance Monitoring.pptx
MohammedShahid562503
 
PPTX
Compliance Monitoring.pptx
MohammedShahid562503
 
PPTX
Lexcomply - Compliance Management System
LexComply
 
PPTX
Streamline Compliance with Corrective Actions Module and Tracking
EHA Soft Solutions
 
PPTX
Navigating Regulatory Challenges in 2025_ Your Guide to Modern Compliance Sys...
bidhanbarman2508
 
PPTX
Internal Controls and Monitoring 28 9-2015
Jose Manuel Garcelan
 
PDF
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
MetricStream Inc
 
How to quickly communicate policy changes to employees
Chelica Hiltunen
 
19600 compliance management system guidelines
Nimonik
 
19600 Compliance Management System Guidelines
Nimonik
 
Total compliance | Statutory Compliance - Alphabricks Technologies
AlphaBricks Technologies
 
Thorough Compliance Lac Megantic
ssuser1246df
 
Compliance Identification Risk Monitoring Risk Mitigation Risk Assessment Reg...
SlideTeam
 
Comprehensive Compliance for Environmental, Safety, Quality Requirements in C...
Nimonik
 
Compliance watcher A legal compliance tool
karisma hirapara
 
Compliance watcher a legal compliance management tool
karisma hirapara
 
Enterprise Governance Risk and Compliance (GRC) Management Solution in India
LexComply
 
Compliance Identification Risk Monitoring Risk Mitigation Risk Assessment Reg...
SlideTeam
 
Legal Register / Compliance Obligations ISO 14001
Nimonik
 
Chief Compliance Officer: What does it take to do the job? The Organization's...
OnlineCompliance Panel
 
Compliance Monitoring.pptx
MohammedShahid562503
 
Compliance Monitoring.pptx
MohammedShahid562503
 
Lexcomply - Compliance Management System
LexComply
 
Streamline Compliance with Corrective Actions Module and Tracking
EHA Soft Solutions
 
Navigating Regulatory Challenges in 2025_ Your Guide to Modern Compliance Sys...
bidhanbarman2508
 
Internal Controls and Monitoring 28 9-2015
Jose Manuel Garcelan
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
MetricStream Inc
 
Ad

More from Nimonik (20)

PDF
Engineering Industry Standards Buyer's Guide For Organizations
Nimonik
 
PDF
Generative AI for Regulatory Analysis
Nimonik
 
PPTX
Calgary Oil & Gas Regulatory and Standards Day January 18th 2023
Nimonik
 
PDF
ISO 19600 Section 4.5 - Know your Obligations
Nimonik
 
PDF
COVID-19 Biological Risk Assessment Webinar
Nimonik
 
PDF
Preparing for a Post Covid World
Nimonik
 
PDF
Identify Applicable EHS Regulatory Documents
Nimonik
 
PPTX
The not so hidden costs of non-compliance
Nimonik
 
PPTX
The 4 key types of regulations and how to comply (3)
Nimonik
 
PPT
Process Area Site Assessments techniques for the Management
Nimonik
 
PPTX
Air monitoring presentation
Nimonik
 
PPTX
Electronics recycling webinar final presentation
Nimonik
 
PDF
环境影响评价及政府审批服务负责 Latest enforcement of environmental protection law
Nimonik
 
PDF
2107 EHS法规回顾与立法趋势
Nimonik
 
PDF
EHS Compliance in China
Nimonik
 
PPTX
IATF 16949: 2016
Nimonik
 
PPTX
Implementing Global Quality Audits at a Tier 1 Auto Supplier
Nimonik
 
PPTX
EHS Trends 2017-Improve your Organization's Operations in China
Nimonik
 
PPTX
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Nimonik
 
PDF
Nimonik Expert EHS Series: Rack Safety and Compliance
Nimonik
 
Engineering Industry Standards Buyer's Guide For Organizations
Nimonik
 
Generative AI for Regulatory Analysis
Nimonik
 
Calgary Oil & Gas Regulatory and Standards Day January 18th 2023
Nimonik
 
ISO 19600 Section 4.5 - Know your Obligations
Nimonik
 
COVID-19 Biological Risk Assessment Webinar
Nimonik
 
Preparing for a Post Covid World
Nimonik
 
Identify Applicable EHS Regulatory Documents
Nimonik
 
The not so hidden costs of non-compliance
Nimonik
 
The 4 key types of regulations and how to comply (3)
Nimonik
 
Process Area Site Assessments techniques for the Management
Nimonik
 
Air monitoring presentation
Nimonik
 
Electronics recycling webinar final presentation
Nimonik
 
环境影响评价及政府审批服务负责 Latest enforcement of environmental protection law
Nimonik
 
2107 EHS法规回顾与立法趋势
Nimonik
 
EHS Compliance in China
Nimonik
 
IATF 16949: 2016
Nimonik
 
Implementing Global Quality Audits at a Tier 1 Auto Supplier
Nimonik
 
EHS Trends 2017-Improve your Organization's Operations in China
Nimonik
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Nimonik
 
Nimonik Expert EHS Series: Rack Safety and Compliance
Nimonik
 
Ad

Recently uploaded (20)

PDF
OBLICON (Civil Law of the Philippines) Obligations and Contracts
NicholeAnneLavides
 
PPTX
4-D...Preparation of Research Design.pptx
pacifey700
 
PPTX
Peter Maatouk Is Redefining What It Means To Be A Local Lawyer Who Truly List...
Maatouks Law Group
 
PPTX
Constitutional Law 2 Final Report.ppt bill of rights in under the constitution
JAMESJEFFERSONROSALE
 
PPTX
Financial Rehabilitation and Insolvency Act
JuliusMila
 
PPTX
What Happens to Your Business If You Become Incapacitated
Elder Law Center Of Wisconsin
 
PPTX
prenuptial agreement ppt my by a phd scholar
rajuyadav42111
 
PDF
Analysis Childrens act Kenya for the year 2022
ssuserbc32b91
 
PPT
3. INDUTRIAL RELATIONS INTRODUCTION AND CONCEPTS.ppt
muthukumark49
 
PPT
Understanding the Impact of the Cyber Act
dhanesh96
 
PPT
Gender sensitivity and fair language implementation
MICHAELVERINA1
 
PPTX
Law of Torts , unit I for BA.LLB integrated course
theworthlessone69
 
PDF
SUMMARY CASES-42-47.pdf tax -1 257++/ hsknsnd
ibrahimnorlainie
 
PDF
A SEP and FRAND Overview 13 Aug 2024.pdf
Jane Lambert
 
PPTX
Court PROCESS Notes_Law Clinic Notes.pptx
shelynchand
 
DOCX
FOE Reviewer 2022.docxhgvgvhghhghyjhghggg
ibrahimnorlainie
 
PPTX
BL 2 - Courts and Alternative Dispute Resolution.pptx
blamgaming01
 
PPTX
PoSH act in a nutshell by Lovely Kumari .pptx
siradhya
 
PPT
Understanding the Impact of the Cyber Act
dhanesh96
 
PPTX
2.....FORMULATION OF THE RESEARCH PROBLEM.pptx
pacifey700
 
OBLICON (Civil Law of the Philippines) Obligations and Contracts
NicholeAnneLavides
 
4-D...Preparation of Research Design.pptx
pacifey700
 
Peter Maatouk Is Redefining What It Means To Be A Local Lawyer Who Truly List...
Maatouks Law Group
 
Constitutional Law 2 Final Report.ppt bill of rights in under the constitution
JAMESJEFFERSONROSALE
 
Financial Rehabilitation and Insolvency Act
JuliusMila
 
What Happens to Your Business If You Become Incapacitated
Elder Law Center Of Wisconsin
 
prenuptial agreement ppt my by a phd scholar
rajuyadav42111
 
Analysis Childrens act Kenya for the year 2022
ssuserbc32b91
 
3. INDUTRIAL RELATIONS INTRODUCTION AND CONCEPTS.ppt
muthukumark49
 
Understanding the Impact of the Cyber Act
dhanesh96
 
Gender sensitivity and fair language implementation
MICHAELVERINA1
 
Law of Torts , unit I for BA.LLB integrated course
theworthlessone69
 
SUMMARY CASES-42-47.pdf tax -1 257++/ hsknsnd
ibrahimnorlainie
 
A SEP and FRAND Overview 13 Aug 2024.pdf
Jane Lambert
 
Court PROCESS Notes_Law Clinic Notes.pptx
shelynchand
 
FOE Reviewer 2022.docxhgvgvhghhghyjhghggg
ibrahimnorlainie
 
BL 2 - Courts and Alternative Dispute Resolution.pptx
blamgaming01
 
PoSH act in a nutshell by Lovely Kumari .pptx
siradhya
 
Understanding the Impact of the Cyber Act
dhanesh96
 
2.....FORMULATION OF THE RESEARCH PROBLEM.pptx
pacifey700
 

Best Practices for Regulatory Change Management

  • 1. Comprehensive Compliance Best Practices for Regulatory Change Management
  • 2. About Us Founded in 2008 with offices in Montréal, Calgary and Shanghai. Nimonik services over 500 customers around the world, with a focus on mid-size international companies.
  • 3. About Us Nimonik is not an EHS management software or just a content provider or simply an audit tool. Nimonik is an integrated compliance solution for regulations, standards and internal requirements.
  • 4. Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
  • 5. Minimal Management Supervisor led Systems are in place and training is mandated. Most of the issues are pushed by supervisors and reports identify problematic areas. General staff do not feel a strong responsibility for compliance. Integrated Team based compliance All members of the organization believe that compliance to standards and regulations is good business. Strong comprehension by all of policies and procedures. Easy access to data and software that empower teams. Reactive Focus on putting out fires Organization reacts to EHS, Quality and Compliance issues as they arise. People and teams respond only when there is an immediate problem. Inconsistent Piecemeal approach Some processes and systems are in place. Most facilities or business units are independent and do not share best practices or systems. Compliance Maturity Proactive Forward thinking Meet with stakeholders and regulators. Conduct continuous improvement of compliance program. Why compliance matters
  • 6. Most organisations do not know ALL of their obligations, leading to “surprises”... A typical Facility has 3,000 Compliance Obligations and 200 new ones per year. Why compliance matters
  • 7. The Four Pillars of Compliance Prevention Risk profile Historicals Monitoring Detection Early detection Self-reporting Internal Audits Response Fast response Data analysis Action plans Correction Actions Corrective Effectiveness IMPACT Why compliance matters IMPACT IMPACT IMPACT
  • 8. A Comprehensive Compliance program captures all of your Obligations across your areas of compliance: Quality, environmental, safety, HR, OHS, product... ...and Sources: Regulatory, standards, contracts, permits, stakeholders, customers,... ...and enables timely management of Actions and Audits. Why compliance matters
  • 9. Actions External actions when regulations & standards change. Internal actions issued by your team to come into compliance. Audits Inspect your facilities based on your Obligations. Verify for action completion and effectiveness of those actions. Why compliance matters Obligations External obligations from regulations & standards Internal obligations from your files, permits and procedures.
  • 10. Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
  • 11. Traditional Compliance Approaches How to get there Shared Compliance Obligations ● Inconsistency ● Loss of institutional knowledge ● Time consuming In-house Shared Compliance Obligations ● Compliance gaps ● Variability in work ● Expensive Consultants Shared Compliance Obligations ● Compliance gaps ● Variability in work ● Expensive Consultants Shared Compliance Obligations ● Integration is complex and can take years ● Expensive to build & maintain Enterprise software
  • 12. Clause Level 250,000 identified obligations Obligations in internal documents Web & Mobile Audits Convert obligations and actions into audits Inspect & collect evidence Document Level 500,000 external documents + Internal documents Nimonik Solution Architecture Action Management Actions when obligations change Actions you create Audits Obligations Actions How to get there
  • 13. Continuous Comprehensive Compliance: Nimonik Implementation Select obligations & personalize the system Map to responsible teams Establish your process Monitor for changes Follow-up on compliance findings Identify Obligations with Questionnaire Audit compliance on a regular basis Continuous Improvement Plan Do Check Act How to get there
  • 14. Elements for Success: Nimonik Implementation Management Understands proactive compliance is an investment Project Lead Can prioritize implementation and has the necessary support Team Recognizes the benefit of a compliance system and has time for training Comprehensive Compliance with Nimonik How to get there
  • 15. Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda NimonikApp Structure 3
  • 16. Identify your physical operations and outline Obligations, Actions and Audits for each location. Control access by business unit, region or facility Facilities NimonikApp Structure
  • 17. Lists of documents that are associated to a Facility or to multiple Facilities Compliance Obligations NimonikApp Structure
  • 18. The compliance obligations table contains the following fields (columns): ● Category ● Document ● Track ● Status ● Published Date ● Modified Date ● Obligations ● Assessment Status ● Responsible Party ● Notes ● Assessment History ● Internal Actions ● Custom Fields Compliance Obligations Table NimonikApp Structure
  • 19. Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
  • 20. ● Help group the documents in CO registers ● Can be used to filter the information ● Are editable and can vary from one CO to another Categories Categories, Custom Fields, & Tags
  • 21. ● Add additional context and information ● Editable types ‘Custom Fields’ (Text, Date, User, Multiple Choice, & Risk) ● Use custom fields to link Compliance Obligations to Controls Custom Fields Categories, Custom Fields, & Tags
  • 22. ● Tags help tie the elements in your account together - by business unit, by product line or by anything that you wish to report by ● Tags can be created and edited by account administrators ● They can be associated to facilities, audits, internal actions and (soon) obligations ● They can be used to filter reports Tags Categories, Custom Fields, & Tags
  • 23. Why compliance matters How to get there 1 2 Categories, Custom Fields & Tags 4 Workflow Types 5 Agenda Compliance Obligations Structure 3
  • 24. A PARENT Facility/CO receives ALL New & Updated Documents/Clauses, and then link the New Documents to the CHILD Facility/CO. Each facility receives ALL New & Updated Documents/Clauses in their Compliance Obligations (COs) separately. Unique Compliance Obligations Shared Compliance Obligations All facilities use the SAME COs, which receive ALL New & Updated Documents/Clauses. Connected Compliance Obligations Shared Compliance Obligations Facility 1 Facility 2 COs 1 COs 2 COs 1 COs 2 Facility 1 Facility 2 COs 1 COs 2 Facility 1 Parent COs 1 Facility 2 Facility 3 Child COs 1 Child COs 1 Workflow Types
  • 25. Each facility receives ALL New & Updated Documents/Clauses in their Compliance Obligations (COs) separately. Unique Compliance Obligations Start ALL COs in ALL Facilities receive ‘External Actions’ published by Nimonik New & Updated Documents/Clauses Responsible Party of each CO reviews the ‘External Actions’ and closes non-relevant actions Responsible Party set the ‘Assessment Status’ to ‘Review’ Are the ‘External Actions’ relevant to the Facility’s operations? Responsible Party reviews the remaining ‘External Actions’ NO YES Change the ‘Assessment Status’ to ‘Applicable’ Change the ‘Assessment Status’ to ‘Non-Applicable’ Un-track the document if no further monitoring is required Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action Assign ‘Internal Actions’ & due date to the Responsible Party End Does the New & Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? Determine the ‘Internal Actions’ required YES NO Workflow Types
  • 26. All facilities use the SAME COs, which receive ALL New & Updated Documents/Clauses. Shared Compliance Obligations Start The COs shared by ALL Facilities receive ‘External Actions’ published by Nimonik New & Updated Documents/Clauses The Responsible Party of the shared COs reviews the ‘External Actions’ and closes non-relevant actions The Responsible Party of the COs set the ‘Assessment Status’ to ‘Review’ Are the ‘External Actions’ relevant to the Facilities’ operations? The Responsible Party of EACH Facility reviews the remaining ‘External Actions’ NO YES In a ‘Custom Field’ note which Facilities these documents apply to Add a ‘Note’ (Or use a ‘Custom Field’) to indicate the Facility that has completed the review Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action End Does the New & Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? The Responsible Party of EACH Facility determines the ‘Internal Actions’ required YES IF the ‘External Actions’ are NOT relevant to any Facility, the Responsible Party of the shared COs can change the ‘Assessment Status’ to ‘Non-Applicable’ Assign ‘Internal Actions’ & due date to the Responsible Party The Responsible Party of the shared COs closes the remaining ‘External Actions’ Change the ‘Assessment Status’ to ‘Applicable’ NO Workflow Types
  • 27. Connect the New Documents to the applicable CHILD COs Connected Compliance Obligations Start The PARENT register receives ALL ‘External Actions’ published by Nimonik New & Updated Documents/Clauses Responsible Party reviews the ‘External Actions’ and closes non-relevant actions Responsible Party reviews the New Documents in the PARENT CO Change the ‘Assessment Status’ to ‘Non-Applicable’ Are the New Documents applicable to the CHILD Facilities/CO? NO YES Change the ‘Assessment Status’ to ‘Applicable’ Un-track the document if no further monitoring is required Update ‘Assessment Status’ to ‘Complying’ Once the ‘Internal Actions’ are completed, record closure notes and close the action Assign ‘Internal Actions’ & due date to the Responsible Party End Does the Updated Documents/Clauses require ‘Internal Actions’ to achieve compliance? A PARENT Facility/CO receives ALL New & Updated Documents/Clauses, and then link the New Documents to the CHILD Facility/CO. The CHILD COs will receive the same updates to Documents/Clauses as the PARENT CO Determine the ‘Internal Actions’ required YES NO Workflow Types
  • 28. Nimonik offices Solution Partners Montréal HQ Shanghai Nimonik.com - info@nimonik.com - 1-888-608-7511 - +86 021 51720468 Thank you! Calgary