Posted on

Company Directors’ Responsibilities

Directors in today’s global market are increasingly being held personally liable for their actions that harm their companies, as well as facing civil and criminal liabilities for failing to comply with the procedures and requirements of various laws. Further, there are several Acts, for which the violation thereof can result in criminal sanctions, including fines and even imprisonment. Directors can find themselves subject to criminal sanctions for such minor infractions as late filing or inadvertently filling out a form incorrectly.

By accepting the assignment as a director, the director establishes a contractual relationship with the company based on two distinguishable obligations:

  1. obligations relating to the functioning of the company; and

  2. management obligations.

Both categories are in the exclusive competence of the director. The obligations relating the functioning of the company pertain to all acts aimed at ensuring the operations of all corporate bodies, to which the director is responsible by law or by the Articles of Association of the company. In this context, the following can be included: the obligation to call the shareholder meeting; the responsibility to prepare and approve the draft budget and to convene the meeting for approval. Furthermore, the obligation to keep accounting records; to announce, register and fulfil the duties of the Business Register. The director is prohibited from acting in conflict of interest with the company or in competition with the latter.

The management obligations indicate all acts aimed to achieve the corporate purpose. For example, the obligation to provide the company with an adequate organisational and accounting structure, to guarantee safety in the workplace and to ensure that the company is acting in accordance with the law. From this point of view, the most important obligation is to act with diligence, i.e. to identify and implement all the necessary measures to take care of the interests of the company.

The scope of this obligation is measured on the basis of two criteria:

  1. nature of the assignment, where all characteristics of the company administered – such as size, activity performed, organisational structure and the position held by the director within the administrative body must be considered;

  2. specific skills, according to the particular knowledge of the director, his technical and managerial skills and his actual experiences need to be kept in mind.

In the event of a court judgment, the Judge will evaluate the director’s behaviour based on the aforementioned criteria. The level of diligence required from a long-experienced managing director of a multinational company may be different from that of a director of a private company with small turnover volumes.

If the following conditions are fulfilled, a Director is liable of non-fulfilment or incorrect fulfilment of his obligations:

  • the director has, in the performance of his duties, adopted a behaviour in violation of the duties and obligations provided law or by the Articles of Association;

  • this behaviour caused damage;

  • a causal link between the behaviour of the director and the damage exists (i.e. the damage is an “immediate and direct consequence” of the behaviour).

Actions to enforce the liability of a director of a limited liability company can be raised:

  • by the company itself,

  • by company’s creditors,

  • by individual shareholders and third parties, if the behaviour of the directors caused damage to them;

Directors can minimise their risks by being aware of their duties and responsibilities and ensuring that they are performed prudently and diligently. Among the steps that a director can take to minimise his liability are the following:

  • attend directors’ meetings regularly;

  • ensure that delegated authority is exercised properly;

  • ensure that directors’ decisions are implemented properly;

  • document measures taken to prevent mismanagement

It is notable that the director holds the position of the company’s legal representative according to the Companies House, based on which a lawsuit is in practice often filed together with a lawsuit against the company. For example, in an employee dismissal case, the director may be sued as the second defendant and claiming for compensation due to his authority to make a decision for the aforementioned act on behalf of the company. However, the law sees the director as a legal representative which is granted protection in terms of personal liability to third parties for any act that has been done prudently and diligently within the scope of his authority. By virtue of his legal representation, such action shall be attributed to the company.

If you need any assistance or require further information regarding company directors responsible please contact us on 0870 228 1999 or email us on info@stanleycarter.co.uk

Posted on

Positioning Compliance as the Distinction

As the threat landscape has become more perilous and complex, regulators have imposed a wide array of mandates designed to protect sensitive personal information. For most organisations, compliance is seen as the cost of doing business. However, if executed strategically it can not only improve a company’s overall security posture but shortens sales cycles and open the business to new markets.

In order to turn compliance from a check-the-box line item into a valued business initiative, businesses need to identify all global, local and industry regulations that apply to their business and, also, strategically implement the processes and technologies that keep them compliant. Whether you’re targeting specific industry or going after international customers, entering new markets requires continuous education about the latest in compliance and regulatory standards as they relate to data privacy and security.

A good way to get started is to put together a roadmap for how you will get, and stay, compliant with the regulations relevant to your business. What follows is an outline of such roadmap.

Start with the Basics

When you are building a house, a foundation is the key to a safe structure. This holds true for building a compliance roadmap.

Once the foundation has been set, it’s then time for the compliance, IT and security teams to determine which regulations apply to their business. This is the backbone of the compliance roadmap. The good news is that many of these regulations overlap so businesses can complete requirements for multiple regulations at the same time

The Roadmap Focal Point: GDPR

The General Data Protection Regulation (GDPR) brought compliance into the mainstream. When GDPR passed, it established strict regulations for how organisations must handle customer data. The regulation is so broad, stringent and complicated that it has motivated many companies to create new job titles to ensure compliance.

However, while there have been strict compliance regulations before, it’s the high financial stakes attached to GDPR that set it apart. A business can be fined up to 4% of its global revenue if it’s found to be non-compliant. Very few organisations can afford to take that kind of hit which is why so many make it the centre piece to their compliance strategy.

The privacy implications of GDPR are extensive but one of the most important and challenging requirements is the data breach notification. Organisations must notify authorities or specific data subjects within 72 hours of a breach. Most organisations are unable to locate sensitive consumer information within their environment, making this requirement near impossible. However, if the organisation puts data controls into its systems and enacts continuous monitoring and real time intrusion detection, it not only becomes achievable but improves internal processes. 

Compliance can be a powerful differentiator and business driver that inspire trust and confidence amongst prospects, customers and external partners. Although the above standards and regulations require extensive resources, non-compliance can result in fines and other punishment that can cripple a company. It’s important to remember that these compliance standards and regulations may have to be revisited, but once put into place and assigned to a dedicated compliance team; the once daunting task pays for itself.

For more information on how to meet your business compliance obligation get in touch with us on 08702281999 or contact us via info@stanleycarter.co.uk or further details on our website www.stanleycarter.co.uk.

Posted on

What to Expect for Your Company’s Data Compliance Requirements

We have been thinking back to simpler times when data was carried on paper and it required physical access to break into somebody’s files. Outside the hospital and maybe the bank there were few obligations for caring for this information hoard and nobody’s business spent much money to do anything about it.

Now, after digitisation, networking, monetisation and democratisation of hacking tools, everybody worries about data and our businesses are spending billions to manage and protect it; and it’s about to get worse.

We prefer to help companies exploit their data to make money, rather than spend money treating data as a liability, and I would advise any company keeping such data and paying to manage it that your company should be looking for ways to make that data an asset, so it is worth holding. But these days we are paid to help companies comply with the exploding universe of rules for information management.

It took the bold and the restrict enforcement regimes of the GDPR to make UK law makers sit up and take notice, and now we are all spending lots of money to meet these new rules.

So what is next?  We think that in a few years time slight or significantly different versions of data management requirements will be in place.

So watch this space for further and more specific discussion of where the data laws will likely take us in coming years.

For more information on how to meet your business compliance obligations get in touch with us on 08702281999 contact us via info@stanleycarter.co.uk or further details on our website www.stanleycarter.co.uk

Posted on

Every CEO cares about compliance

But not every CEO makes compliance a top priority. That means compliance wouldn’t be just a company issue, but also a personal one.

Pressure to strictly follow the rules comes from other directions as well. Various regulatory bodies have long signalled their intentions to hold executives individually responsible. Unlike before, executives accept the responsibility for compliance. Even more significantly, they now will accept the risk of noncompliance. Meeting that standard will require a lot of adaptation, and it needs to begin now.

Building Beneficial Partnerships

It’s unrealistic to expect CEOs to bear the entire compliance burden. The CEO should get help from the Chief Compliance Officer (CCO) in achieving compliance.

No matter the company’s regulatory requirements, it’s vitally important that the CEO works to supply the necessary tools and resources to enable the CCO perform his core duties, as well as serve as a primary point of communication and guide for ensuring a culture of compliance within its business.

Again, comprehensive support is key; consider the breadth of responsibility a CCO assumes, including serving as in-house expert to stay up to date about the latest regulatory revisions; acting as program director to build the company’s specific compliance policies; communicating the importance of compliance across the entire organisation; and evaluating and continuously monitoring compliance performance.

Each of these roles is important, and together they lead to consistent compliance. Increasing the compliance department’s budget is one way the CEO can help to strengthen compliance efforts. Additional funds could be used to hire staff, bring in consultants and managed service providers, or pay for professional development. These investments are necessary to stay compliant, and therefore necessary to keep executives out of trouble.

When the company does well by its customers in areas of compliance, after all, it receives a committed customer base in exchange.

Staying Away From Trouble

To be sure, the reason regulators are getting tough is not to penalise executives; it’s to underline the importance of compliance even in the midst of today’s fast paced, ever disruptive economy. In that context, staying compliant is an urgent obligation, but it’s also an opportunity for executives and their companies who embrace it. Here are a few strategic steps to ensure compliance is a consistent priority:

  1. Build a compliance dashboard: Compliance is a systematic process. A number of third-party organisations sell compliance checklists tailored to specific industries and even individual companies. Following one of these governance checklists (under the supervision of the CCO) is an effective way to check all the boxes of compliance. As the CEO, emphasise that your company’s compliance policy must align completely with the checklist guide. Finally, make time to review your checklist and dashboard with the CCO periodically to stay on the right side of ever-changing regulations.
  2. Make compliance part of the culture: One reason companies have neglected compliance is that the penalties have been relatively small. Now, in addition to executive penalties, compliance breaches lead to bad publicity and lost consumer confidence. The simple fact is that compliance breaches hurt companies in deep and lasting ways, so they must be avoided at all costs. Talent, technology, and policies can serve that effort. In the end, however, compliance is consistent only when the company culture mandates it. As the steward of the organization, the CEO can do a lot to cultivate that culture: Regularly talk about the importance of compliance, participate in compliance planning and training, and provide a personal example for your company
  3. Fully support the CCO: The CEO should be eager to support the CCO at every turn. That becomes especially important if and when a compliance investigation starts. The CEO should oversee the investigation process, ensuring that it’s conducted fairly and transparently. Satisfying the requirements of investigators is a lot easier if CEO is also willing to invest in effective technologies, such as information archiving. That way, any documents requested by regulators are easily retrievable from a searchable database. The right tools make compliance easier on everyone.

A new era of accountability is coming, and CEO must adapt. It’s time to stop thinking of compliance as an obscure subject or noncompliance as a minor setback. It affects the entire organisation, and it starts at the top. CEO who get in front of this issue place both themselves and their companies in greater positions to succeed. For those who don’t, compliance is about to get a lot more contentious.

For all your business and corporate needs give us a call on 0870 228 1999

or send us an email info@stanleycarter.co.uk or check our website for further details www.stanleycarter.co.uk

Posted on

How to Empower Small Businesses with Compliance

Compliance can significantly save SMEs time and money and make achieving compliance more than a goal they never achieve.

Compliance is a top priority for organisations of all sizes and industries. However, ensuring compliance with industry regulations can prove particularly challenging for SMEs, which commonly lack the resources leveraged by larger enterprises.

To effectively help small and medium-sized businesses achieve compliance, you must first understand the difficulties they face in doing so. SMEs bound by regulations must devote time and effort to fulfilling their compliance related duties on a regular basis. Unlike larger companies, they often can’t afford to employ in-house compliance officers, so the responsibility of ensuring the business obeys regulations ends up on the plate of an already busy CEO, director, business manager, or office administrator.

Maintaining compliance is far from easy.

There’s auditing, daily enforcement of proper processes, and keeping up with current events to make sure the business continues to meet regulatory requirements. Due to the high importance of adhering to regulations and the amount of labour needed to properly do so, many small businesses turn to a third party to take over compliance, since outsourcing is more affordable than hiring an in-house staff member to oversee the process.

Subsequently, Stanley Carter presents a significant area of opportunity for SMEs seeking assistance.

For all your business and corporate needs give us a call on 0870 228 1999

or send us an email info@stanleycarter.co.uk or check our website for further details www.stanleycarter.co.uk