Remaining compliant when the rules keep changing

By John Keen, managing director, Rosewood Keen Management Services

With more than 300 pieces of new or amended legislation issued every year, gone are the days when a business simply had to keep on top of its healthy and safety.

Today we must consider cybercrime, ED&I, radicalisation, GDPR, our online reputation, no win no fee lawyers and more - and we now have to provide evidence of compliance!

To stay ahead, the first stage is to identify which legislation is applicable and what’s required of your organisation. Build this into an integrated risk management plan. which is essential to identifying actual and potential threats to eliminate or mitigate.

There is an ever-growing number of standards being developed to address certain risks such as ISO9001 Quality Management, ISO14001 Environmental Management, ISO45001 Occupational H&S Management, ISO27001 Information Security, ISO32001 Business Continuity and more recently BS76000 (Valuing People) widely seen as a replacement to the Investors in People.

While they are numerous, they all share a common framework with risk and controls embedded within, making it easier to integrate into a true Business Management System.

Experts can actually confuse the process. Approach too many and you’ll get fragmented advice, rather than than a cohesive and coordinated approach to business risk.

Our cloud-hosted risk management platform streamlines and integrates these processes, allowing users to access information, undertake risk assessments, and schedule actions from their keyboard. In addition, we deliver ESFA funded management courses that have saved 450 businesses an average of £100,000 over the 15 years we’ve been running them. Get in touch to learn more about our business improvement techniques qualifications.