Yawn. Compliance may not be a dirty word, but it’s not a pulse-raiser either. Until you get it wrong, when it suddenly becomes anything from a bit stressful through to an existential threat.
The key is a pro-active approach which integrates compliance with your other processes and procedures and doesn’t let the compliance tail wag the operational dog.
There's a lot of law and regulation out there to comply with and we don't pretend to be experts in all of it, but here are some key areas where candid has something to offer you. (If you don't see what you need, get in touch - chances are we know something about what's troubling you and, if we don't, we know someone good who can help.)
The Bribery Act 2010 affects all UK businesses. The scary part is that your organisation can be guilty of a criminal offence just for failing to prevent bribery by someone who provides services to you.
The comforting part is that candid has a whole host of pragmatic, user-friendly tools to help you to both be compliant and, crucially, demonstrate compliance with anti-bribery requirements.
The even better part? Your overall business standards will improve as well.
There's a lot of heat and noise at the moment about the General Data Protection Regulations hitting the UK law book in May 2018. It's true that no organisation which holds or processes personal data (which is pretty much every organisation) should ignore this; but neither does it need to be panic stations.
If you want deeply specialist input on the really fine points of data protection law, we're not the droids you're looking for (but we can point you to some very clever people who can advise you).
On the other hand, if you just want practical, no-nonsense help to make sure you're compliant with data protection requirements in a way that fits with your work (instead of piling loads of new process on top), candid can definitely help.
If you're already working in or aiming to break into the defence or nuclear sectors, knowing what List X or List N status actually entails is sensible and could give you a commercial edge.
In the wider public sector, having a clear view of what you can, must and must not do with classified materials (all that "OFFICIAL SENSITIVE", "SECRET" and "TOP SECRET" stuff) will obviously help you avoid hot water, but is also a great way to gain credibility with the public sector and with other organisations working in that area.
Even if you're not working in those sectors, putting in place robust, practical measures to protect your information assets is often crucial to maintaining your competitive edge.
We're not super-hackers, spies or burly bodyguards, but at candid we do know a thing or two about translating the various confusing legal and regulatory requirements into clear, practical ways of working for commercial organisations - and those same ways of working also help any organisation keep their crown jewels safe.