Compliance & Risk
Specific preventive programs
Review, update and implementation of crime prevention and detection models (MPD):
- Legal report and map of criminal risks
- Ex novo writing and review of existing protocols and controls. Specifically, the necessary internal regulations for the prevention of crimes will be designed in accordance with article 31 bis 5 of Spanish Criminal Code:
- Ethical code
- Organic protocols (procedures that regulate structural and organizational issues that affect the company)
- Procedural protocols (protocols focused to the detection and reaction of criminal risks)
- Substantive protocols (Criminal protocols associated with the specific activity of the company)
- Review and audit of systems already implemented
- Advice, support and training to the company’s Compliance Body (compliance officer or good practices committee)
- Training for the prevention of criminal risks at all levels (management, legal advice, internal audit, departments, etc.)
- UNE ISO 19601 and ISO 37001 certifications
MONEY LAUNDERING AND CORPORATE SECRETS
- Implementation of manuals, protocols and complaint channels in accordance with Law
- Implementation of organizational, technical-computer and legal measures to comply with confidentiality protection measures
Prevention of security incidents:
- Analysis and technical risk report to know the level of maturity and robustness of security, detect its weaknesses and propose improvement actions (external and internal pentest)
- Implementation of technical security measures and preparation of situation reports