Solutions: Compliance Management

Contract, Policy, Legal, and Regulatory Compliance

 

Services

Compliance Audits and Assessments

Compliance Project Management

Compliance Program Development and Management

Audit, Examination, and Certification Readiness

Compliance Remediation Support

Data Classification and Records Management

 

Experience

 

Solutio Consulting team members have experience performing contract, policy, legal, regulatory, and standards compliance assessments, program development, and consulting, including:

 

  • Legal and Operational Compliance

    • Third Party Contract Compliance

    • Inter-Company Agreement Compliance

    • Personnel Agreement Compliance

    • Policy and Standards Compliance

    • Service Level Agreement Compliance

       

  • Information Security

    • Payment Card Industry Data Security Standard (PCI DSS)

    • HIPAA Security Rule

    • European Union Data Protection

    • Federal Information Security Management Act (FISMA)

    • Federal Risk and Authorization Management Program (FedRAMP)

    • National Institute of Standards and Technology (NIST)

    • International Organization for Standardization (ISO) 27001/27002

       

      Our experience includes standards for authentication, digital signatures, encryption and cryptographic key material management, security event logging and correlation, PCI compliance for merchants and services providers, and other information security programs

       

  • Privacy and Consumer Protection

    • International, Federal, State, and Local Privacy

    • Health Insurance Portability and Protection Act (HIPAA)

    • Health Information Technology for Economic and Clinical Health (HITECH) Act

    • Red Flags Rule

    • Fair and Accurate Credit Transactions Act (FACTA)

    • Controlling the Assault of Non-Solicited Pornography And Marketing (CAN-SPAM) Act

    • Children's Online Privacy Protection Act (COPAA)

    • Rehabilitation Act §508

       

      Our experience also includes identity theft, real and suspected breach reporting, covered entity and business associate operations, health IT, adverse event reporting, protection of children and minors, system interface accessibility, consumer disclosures, simplified communications, other areas of consumer protection and compliance.

       

  • Financial Transactions and Operations

    • Gramm-Leach-Bliley Act (GLBA)

    • Bank Secrecy Act (BSA)

    • Anti-Money Laundering (AML)

    • Know Your Customer (KYC)

    • Foreign Corrupt Practices Act (FCPA)

    • National Automated Clearing House Association (NACHA) Rules

    • Truth in Lending Act (TILA)

    • Credit Card Accountability Responsibility and Disclosure (CARD) Act

    • Fair and Accurate Credit Transactions Act (FACTA)

    • Fair Credit Reporting Act (FCRA)

    • Electronic Fund Transfer Act (EFTA)

    • Reg E - Electronic Fund Transfers

    • Reg II - Debit Card Interchange Fees and Routing

       

      Our experience also includes gift cards, gift certificates, alternate payment types, breakage, payment card brand rules, anti-fraud and anti-money laundering, issuance, chargebacks, interchange, settlement, cross-border transactions, Suspicious Activity Reporting (SAR), Currency Transaction Reporting (CTR),  marketing and document control, underwriting, merchant and services provider operations, anti-corruption, and other financial transactions and payments related industry rules and regulations.

       

  • Governance, Reporting, and Disclosure

    • Sarbanes-Oxley Act (SOX)

    • Generally Accepted Auditing Standards (GAAS)

    • Quality Assurance and Improvement Program (QAIP)

      Our experience includes corporate governance, code of conduct, whistleblower, and other areas of compliance such as those published by FASB, AICPA, SEC, PCAOB, IIA, and others.

 

Would you like to know more about our experience with similar rules, regulations, and arrangements in other countries and jurisdictions? Ask us now!