EnglishItalianoMILANOMILANOROMAANCONAPESCARABRESCIACAGLIARIBOLOGNAVARESEBOLZANO Lun-Ven 9 -19 +39.02.87070700 Lun-Ven 9-18 +39.06.5921143 Lun-Ven 9-18 +39.071.2416400 Lun-Ven 9-18 +39.085.4211702 Lun-Ven 9-18 +39.030.293189 Lun-Ven 9-18 +39.070.7967933 Lun-Ven 9-18 +39.051. 0827947 Lun-Ven 9-18 +39.0332.281484 Lun-Ven 9-18 +39.0287070700

Services / Compliance

Audirevi Compliance Services

Audirevi Compliance supports its clients in managing the risk of non-compliance in terms of the correctness of the procedures and compliance with the rules applicable to the specific sector of activity of the customer. Transversal risk management that is made up of organisational and procedural controls and that also includes the activities of Internal Audit, IT Services and Risk Management.

The Audirevi Compliance team has many years of experience, gained in international environments with complex dynamics, and specializes in governance, risk and compliance.

The Compliance division supports customers in defining processes and organisational structures that are functional to the prevention of violations of rules, regulations or standards, from which sanctions, operational losses and/or reputational damage may derive. A structured system is proposed that includes:

COMPLIANCE

Privacy GDPR

  • Assistance for compliance with GDPR requirements regarding the processing of personal data (IT profile and organizational – documental profile).

Organizational models pursuant to Leg. Decree 231/2001

  • Preparation and updating of organizational models for the prevention of corporate liability in the event of criminal crimes (pursuant to Legislative Decree 231/2001).
  • Assistance to the Supervisory Body pursuant to Leg. Decree 231/2001 in carrying out periodic audits.
  • Direct assumption of the role of the Supervisory Body.

Governance Structure

  • Analysis of the powers of attorney and proxies and proposals for effective management and design of the governance structure.

Legal and Corporate Affairs

  • Support for the drafting of the report on corporate governance and the report on remuneration and support in relation to related parties, internal dealing and management of privileged information.

INTERNAL AUDIT

The Function of Internal Audit

  • Direct assumption of the responsibility or execution of audits on behalf of the Internal Auditor.
  • Release of risk-based audit plans or support for their definition.

Support to CFO (Chief Financial Officer)

  • Implementation and management of a system of procedures and a work schedule in compliance with SOX 404 and art. 154-bis of the TUF (Italian Code of Finance).
  • Definition of an audit plan based on a preliminary risk assessment of the individual balance sheet items and identification of Key Controls
  • Periodic audits

Support to control bodies

  • Support for the correct and efficient relations with the various control bodies, also through participation in the meetings of both CCR, the Supervisory Body and the Board of Directors.
  • Execution of specific audit activities required by the control bodies.

IT SERVICES

Data Governance

  • Support for the definition of IT measures, GDPR compliant
  • Mapping of processes and controls to improve the effectiveness and efficiency of existing measures
  • Support in the definition of an Organizational Model for the management of data

IT Compliance

  • Support for Internal Audit in IT audit activities
  • Definition and implementation of procedural and operational frameworks
  • Support in defining an IT system compliant to 262/2005
  • Support for the drafting and revision of reports in accordance with ISAE3402 standard

IT Risk

  • Definition of the business and the IT tasks segregation matrix in order to limit the risk of fraud
  • Identification of IT risk areas and definition of remediation plans
  • Support in implementing data recovery plans

RISK MANAGEMENT

Risk Management System:

  • Analysis of the objectives (strategic, operational, compliance and reporting)
  • Definition of a customized risk catalog
  • Definition of risk assessment sheets
  • Database construction, to guide risk analysis according to priority, process and / or context criteria
  • Implementation of the system

Support for the RM

  • Implementation of specific features of Risk Management
  • Release of formats, checklists and questionnaires
  • Suggestion of solutions and tutoring to improve the effectiveness of the process