Design Challenges for GDPR RegTech

The Accountability Principle of the GDPR requires that an organisation can demonstrate compliance with the regulations. A survey of GDPR compliance software solutions shows significant gaps in their ability to demonstrate compliance. In contrast, RegTech has recently brought great success to financial compliance, resulting in reduced risk, cost saving and enhanced financial regulatory compliance. It is shown that many GDPR solutions lack interoperability features such as standard APIs, meta-data or reports and they are not supported by published methodologies or evidence to support their validity or even utility. A proof of concept prototype was explored using a regulator based self-assessment checklist to establish if RegTech best practice could improve the demonstration of GDPR compliance. The application of a RegTech approach provides opportunities for demonstrable and validated GDPR compliance, notwithstanding the risk reductions and cost savings that RegTech can deliver. This paper demonstrates a RegTech approach to GDPR compliance can facilitate an organisation meeting its accountability obligations

Theory of Regulatory Compliance for Requirements Engineering

Regulatory compliance is increasingly being addressed in the practice of requirements engineering as a main stream concern. This paper points out a gap in the theoretical foundations of regulatory compliance, and presents a theory that states (i) what it means for requirements to be compliant, (ii) the compliance problem, i.e., the problem that the engineer should resolve in order to verify whether requirements are compliant, and (iii) testable hypotheses (predictions) about how compliance of requirements is verified. The theory is instantiated by presenting a requirements engineering framework that implements its principles, and is exemplified on a real-world case study.Comment: 16 page

Management control in the transfer pricing tax compliant multinational enterprise

This paper studies the impact of transfer pricing tax compliance on management control system (MCS) design and use within one multinational enterprise (MNE) which employed the same transfer prices for tax compliance and internal management purposes. Our analysis shows immediate effects of tax compliance on the design of organising controls with subsequent effects on planning, evaluating and rewarding controls which reveal a more coercive use of the MCS overall. We argue that modifications to the MCS cannot be understood without an appreciation of the MNEs’ fiscal transfer pricing compliance process

The Federal Information Security Management Act of 2002: A Potemkin Village

Due to the daunting possibilities of cyberwarfare, and the ease with which cyberattacks may be conducted, the United Nations has warned that the next world war could be initiated through worldwide cyberattacks between countries. In response to the growing threat of cyberwarfare and the increasing importance of information security, Congress passed the Federal Information Security Management Act of 2002 (FISMA). FISMA recognizes the importance of information security to the national economic and security interests of the United States. However, this Note argues that FISMA has failed to significantly bolster information security, primarily because FISMA treats information security as a technological problem and not an economic problem. This Note analyzes existing proposals to incentivize heightened software quality assurance, and proposes a new solution designed to strengthen federal information security in light of the failings of FISMA and the trappings of Congress’s 2001 amendment to the Computer Fraud and Abuse Act

Global-Scale Resource Survey and Performance Monitoring of Public OGC Web Map Services

One of the most widely-implemented service standards provided by the Open Geospatial Consortium (OGC) to the user community is the Web Map Service (WMS). WMS is widely employed globally, but there is limited knowledge of the global distribution, adoption status or the service quality of these online WMS resources. To fill this void, we investigated global WMSs resources and performed distributed performance monitoring of these services. This paper explicates a distributed monitoring framework that was used to monitor 46,296 WMSs continuously for over one year and a crawling method to discover these WMSs. We analyzed server locations, provider types, themes, the spatiotemporal coverage of map layers and the service versions for 41,703 valid WMSs. Furthermore, we appraised the stability and performance of basic operations for 1210 selected WMSs (i.e., GetCapabilities and GetMap). We discuss the major reasons for request errors and performance issues, as well as the relationship between service response times and the spatiotemporal distribution of client monitoring sites. This paper will help service providers, end users and developers of standards to grasp the status of global WMS resources, as well as to understand the adoption status of OGC standards. The conclusions drawn in this paper can benefit geospatial resource discovery, service performance evaluation and guide service performance improvements.Comment: 24 pages; 15 figure

The Implementation of IAS/IFRS in Romania – Advances and Perspectives

This paper represents a study on the implementation of the international accounting standards in Romania. Through this paper we find out about the stages covered and the solutions adopted by Romania as well as the perspectives concerning the adaptability of the national accounting system to the performance of the international standards in the accounting domain, namely: the elaboration of accounting regulations harmonized with International Accounting Standards or, in other words, the internationalization of the national accounting system; ensuring the compliance of Romanian accounting regulations with the European directives and, in consequence, waiving the International Accounting Standards (at least at declarative level) for the financial reporting in relation to the state institutions; the transition to the gradual implementation of International Accounting Standards/Financial Reporting (IAS/IFRS). We made also some assessments on the perspectives of using IAS/IFRS as a unique set of norms (as accounting basis for the preparation of individual financial statements) and we are pointing a series of costs and benefits of their application. To accomplish this work it has been carried out an analysis on the normalization of accounting and particularly on the accounting norms which apply in Romania.normalization, regulations, convergence, conformity, standards, accounting