
The Evolution of Compliance


Patrick Henz, Head Governance & Compliance US, Regional Compliance Officer Americas, Primetals Technologies
Intelligent algorithms disrupt all industries and, of course, the compliance function is not excluded. Based on the international accounting network BDO and its survey “Inside E-Discovery and Beyond,” approximately 40 percent of in-house counsels currently use an technology assisted review (TAR). Such software reads and understands contracts to highlight important parts and propose changes (for example to include adequate compliance and audit provisions), based on local law and company policies. Similar to today’s automated customer service, the software is the first level of review and control. Only if it identifies special risk factors, it sends the document to the second level, which is the human contract manager.
Furthermore, artificial intelligence (AI) powers the continuous monitoring of vendors and other business partners. Connecting the internal vendor master database with external sources, AI can detect red flags and minimize potential legal or reputational risks, especially if it also connects to the payment-process and detects suspicious patterns, which are automatically sent to compliance for approval.
An open corporate culture, where employees feel free to discuss their different opinions, is an efficient protection against potential future shocks
The U.S. Securities and Exchange Commission (SEC) expects that a company takes adequate measures to minimize compliance risks. Depending on the particular organization, this may include the use of AI. On the other hand, the SEC also decided that a “check-the-box” compliance system is not sufficient to protect a company against corruption. The compliance core function not only informs employees about guidelines and executes efficient controls. Moreover, this function implements an adequate positive and sustainable corporate culture. After all, compliance is about humans.
As long as organizations hire human employees, they require a human ethics & compliance officer. The value of this function is not the performance of standard processes, but to systematically create situations of disruption, like workshops to discuss cognitive biases. In this example, only a human can facilitate such discussions with insight gained from personal observation and experience.
Furthermore, the human ethics and compliance officer has to include AI inside his or her responsibilities. Software and humans both have to act based on laws and guidelines. To support with the second task, the university-and business-workgroup “fairness, accountability, and transparency in machine learning” (FATML) identified five areas of responsible decision-making by AI software: responsibility, explainability, accuracy, auditability, and fairness. An open corporate culture, where employees feel free to discuss their different opinions, is an efficient protection against potential future shocks. The ethics and compliance function can evolve into something new, first to GRC; a holistic approach to handle governance, risk, and compliance together. This philosophy is based on W. Edwards Deming’s “system of profound knowledge” and the four pillars: Appreciation for a system, Knowledge about variation, Theory of knowledge, and Psychology.
Here, Deming concluded that “a bad system will beat a good person every time”. In Industry 4.0 the IT-environment adapts to the employee. As the human being is the key element of the organizational structure, the same must apply for processes, independent if they are manual or automated.
Evolving to GRC, the compliance officer has to adapt. Besides having expertise in anti-corruption and psychology, now understanding of systems is also relevant. This is especially true as processes and humans influence each other. Processes have to mitigate an identified business risk, and that risk is often balanced against how strict and bureaucratic the process is. If a process is overly bureaucratic and the risk is minimal, the process will trigger defense- and avoidance-mechanisms. If they are not strict enough, the process may not be sufficient to address the risk.
GRC will not be the final step of this evolution. Much more, it prepares organizations for the implementation of AI, which can include automating its own processes. Resources can then focus on additional tasks, which require human empathy, like being the corporate futurist and storyteller, who anticipates new developments. This prepares the organization for the things to come, as new technologies are not only business challenges, but also may raise new legal questions and ethical dilemmas—data protection, cognitive hacking, drones, machine learning (ML), chat-bots, neuroprotection, cobots and autonomous vehicles, for example. Such a new job function not only needs technical understanding, but also a creative and philosophical mind.
Check out:
Featured Vendors
EDITOR'S PICK
Essential Technology Elements Necessary To Enable...
By Leni Kaufman, VP & CIO, Newport News Shipbuilding
Comparative Data Among Physician Peers
By George Evans, CIO, Singing River Health System
Monitoring Technologies Without Human Intervention
By John Kamin, EVP and CIO, Old National Bancorp
Unlocking the Value of Connected Cars
By Elliot Garbus, VP-IoT Solutions Group & GM-Automotive...
Digital Innovation Giving Rise to New Capabilities
By Gregory Morrison, SVP & CIO, Cox Enterprises
Staying Connected to Organizational Priorities is Vital...
By Alberto Ruocco, CIO, American Electric Power
Comprehensible Distribution of Training and Information...
By Sam Lamonica, CIO & VP Information Systems, Rosendin...
The Current Focus is On Comprehensive Solutions
By Sergey Cherkasov, CIO, PhosAgro
Big Data Analytics and Its Impact on the Supply Chain
By Pascal Becotte, MD-Global Supply Chain Practice for the...
Technology's Impact on Field Services
By Stephen Caulfield, Executive Director, Global Field...
Carmax, the Automobile Business with IT at the Core
By Shamim Mohammad, SVP & CIO, CarMax
The CIO's role in rethinking the scope of EPM for...
By Ronald Seymore, Managing Director, Enterprise Performance...
Driving Insurance Agent Productivity with Mobile and Big...
By Brad Bodell, SVP and CIO, CNO Financial Group, Inc.
Transformative Impact On The IT Landscape
By Jim Whitehurst, CEO, Red Hat
Get Ready for an IT Renaissance: Brought to You by Big...
By Clark Golestani, EVP and CIO, Merck
Four Initiatives Driving ECM Innovation
By Scott Craig, Vice President of Product Marketing, Lexmark...
Technology to Leverage and Enable
By Dave Kipe, SVP, Global Operations, Scholastic Inc.
By Meerah Rajavel, CIO, Forcepoint
AI is the New UI-AI + UX + DesignOps
By Amit Bahree, Executive, Global Technology and Innovation,...
Evolving Role of the CIO - Enabling Business Execution...
By Greg Tacchetti, CIO, State Auto Insurance
Read Also
For Richer Insights
Delivering Unique Customer Experience via Technology
Advancing Customer Experience in an Ever- Evolving Hospitality Sector
A Modern Policy Admin Platform with Cost and Customer Experience in Mind
Laying the Foundation of a Satisfying Commuter Experience
The Ever-Evolving Landscape Of Customer Experience Management
