There is a constant stream of information coming out about GDPR – the General Data Protection Regulation – most of it with a sense of urgency, if not doom, about it. A recent article by Efficio, one of the valued organizations in the DetermineAlliance Partner Program, laid out a very clear and rational explanation for how to approach GDPR compliance. In essence, you need to see where your risks are so you can plan for them.
Procurement teams facing the constant challenge of measuring and enforcing contract compliance may shudder at the thought that December 15th was National Herding Cats Day. We put a contract in place, and they buy from someone else. We establish a process, and they do whatever they like. It can be infuriating. But, if we approach our internal “cats” with the right attitude, they also present us with unique opportunities to improve procurement’s performance, impact, and influence.
Here is some advice for those days when you find yourself herding cats:
Governance and compliance are terms that are often used interchangeably to describe the “law and order” part of procurement’s responsibilities. That being said, they are not quite the same thing. Governance captures the rules in place regarding purchasing and spend management, while compliance is the adherence to (and/or enforcement of) those rules. In a perfect world, governance is what you do and compliance is what you get in return.
“Risk” Is in the Eye of the Beholder
I am still amazed at how the conversation about a broad topic such as risk is dependent on the individual I am speaking with, and more often will just be focused on contract management.
CFO’s Bread and Butter: Compliance & Risk
Thanks for joining our series of posts comparing how factors such as timing and cost are seen differently by finance, procurement and legal.
Compliance and risk are no different. While procurement may see compliance and risk management as being a few rungs up their strategic maturity ladder, for finance — and legal, I might add — they are the bedrock of our existence in the organization. If a CFO isn’t focused on ensuring compliance and risk management, he or she isn’t going to be in that job for very long.