The Regulatory Compliance Matrix: Regulation of Financial Services, Information and Communication Technology, and Generally Related Matters

This exceptional guidebook is ideal for industry professionals, regulators and scholars in the domain of regulatory governance. The Regulatory Compliance Matrix with more than 2500 entries brings clarity to a domain which is widely considered to be complex, unstructured, and in constant flux. It is a compendious guide to the laws, regulations, standards, and recommendations applicable to compliance programmes. What practitioners find in this book will empower them to save money, man-hours, and consultancy interventions. Inside, the reader will find the following key resources: Regulatory Compliance Matrix: a synopsis of the principal domains of applicable regulation, setting forth legal norms, ancillary standards and guidelines. This Matrix covers the laws and regulations specific to financial services (Part I) and information and communications technology (Part II) at the global and European as well at the UK national and sub-national level. Part III of the Matrix covers generally applicable regulatory domains like corporate governance, consumer protection and employment law, information security, data protection and electronic commerce. Regulatory authorities: a comprehensive listing with descriptions of authorities who define the regulatory agenda. Weblinks are provided for each authority, which enables the reader to access the latest regulatory developments and updates. Overview of the conduct of effective compliance programmes: a pragmatic approach to the entire process, from scoping and prioritisation, conducting risk assessments, defining control activities and reporting requirements; to undertaking effectiveness reviews, documenting findings and making recommendations; to assessing compliance maturity and creating action plans. Non-compliance costs checklist: a detailed list of financial, operational, personal, and regulatory risks. This will assist readers with risk assessment and prioritisation of compliance domains.