Thamer James Blog

Governance, Risk & Compliance

ISO37301 – Compliance management system

For an effective compliance management system, the framework should integrate all the required policies, processes, procedures and work instructions into an easy to use and understandable framework. A key feature in the author’s view is...

ISO37301 – Context of Organisation

ISO 37301 uses the broad headings of the now familiar Annex SL framework. This specification is designed to be used in accordance with other management standards such as ISO9001: 2015 etc. The subtle difference is that ISO37301 provides a framework for an organisation...

ISO37301 – Compliance Obligations

ISO37301 under the section of compliance obligations requires that an organisation focuses upon compliance requirements as a key feature of the compliance model. This should include reference to the applicable laws and regulations that are in force, in relation to the...

ISO 22458 – Responsibilities

The new ISO 22458 Standard defines responsibilities in section 4.3.2. The Standard requires that clear responsibilities are defined to ensure the effective oversight and direction of the consumer vulnerability programme. Clear policies to identify and handle consumer...

ISO 22458 – Organisational commitment, principles & strategy

Control area: Principles The Standard requires that senior management within the organisation shall demonstrate their commitment to the key concepts and principles listed: Accountability: a culture that underpins good consumer outcomes and identifies vulnerable...

ISO 22458 – Consumer Vulnerability

The new ISO 22458 Standard defines consumer vulnerability as: State in which an individual can be placed at risk of harm during their interactions with a service provider due to the presence of personal, situational and market environment factors. Many organisations...