We develop technology that understands the way compliance officers work.

Technology solutions for compliance can be as simple as a spreadsheet or as complex as a fully-integrated gifts and entertainment register linked in real time to your finance and travel expense system.

Our solutions have been built from the ground up with one sole purpose in mind: to meet the needs of compliance managers. Our technology offerings scale from those enterprises with minimal requirements to global Fortune 500 companies dealing regularly with hundreds of thousands of third parties across every continent. Many of the solutions have been designed in conjunction with, and at the request of, our clients and partners. Internally the systems have been specified and built by specialist legal and compliance practitioners who remain stakeholders in their ownership and ongoing development. We also make use of our Client Executive Network to receive feedback on our products from noted experts in the field of compliance.

Put simply, we understand and offer solutions that suit the way compliance professionals work, and by ensuring we deliver on our promise of ongoing additional functionality our customers are able to justify an increasing rate of return of any immediate investment

banner_blank.jpg
 

Advantage

 

PRICING

The pricing for the ComplianceDesktop® | Compliance Technology Platform is a free version (just paying for a mandatory one time setup) and a paid version.


We have two versions of the ComplianceDesktop® | Compliance Technology Platform

Free version: allows all users to:

  • request IntegraCheck® | Integrity Due Diligence reports from The Red Flag Group, receive reports back in PDF format.

 

All free version users must accept a one-time setup fee which is charged upon setup of your environment.

Enhanced screening and IntegraCheck® | Integrity Due Diligence  incurs extra charges.


 


Paid version: further allows all users to:

  • conduct as many searches of the watchlist and sanctions part of the IntegraWatch® | Integrity & Compliance Screening Database as they like

Access to all parts of the system is available with two simple add-ons at additional annual fees:

  • the GTE® features 
  • the full IntegraWatch® | Integrity & Compliance Screening database 

Higher-end hosting is available on request and will incur an additional charge.

Costs to connect to our systems through APIs are available on request.

Enhanced Screening and IntegraCheck® | Integrity Due Diligence incurs extra charges.

*Prices are available from info@redflaggroup.com 


SECURITY

In order to ensure that the platform was built and maintained with security in mind, we chose to follow and be certified in the global standard for information security: ISO 27001 and ISO 27018. While most clients understand the rigour needed to meet this standard, we are always willing to provide the documented policies and procedures which underpin our security programme.

 

We also made an early decision to outsource the management of the physical servers to a partner who specialises in high quality and availability. We selected Amazon Web Services (AWS) because they offered:

  • a Tier 1 hosting facility which has completed an examination in conformity with the SSAE 16 Type II Service Organization Controls
  • physical security, including access control and environmental security
  • data centres in the locations which best suit our clients, specifically in the United States, Europe (Ireland) and Singapore
  • basic server management, such as anti-virus and backup support
  • 100 percent guaranteed reliable network access.

On top of the basic services that AWS offer, we add:

  • firewall protection, which reduces the available network access to the minimum necessary to run the applications
  • hardened servers, where all unnecessary software is removed or configured securely
  • intrusion detection as a service, where dedicated personnel review all threats in real time and provide alerts and guidance when issues arise
  • full disk encryption to ensure that if the servers are compromised the data on them is not found in a usable format
  • encrypted remote site backup to ensure that the service can be built in an alternate site and that no more than 24 hours’ worth of data is lost in a complete site disaster-recovery situation.

Our application development team then further enhance security by including:

  • secure web transport (https) by default
  • password encryption in the database and in flight
  • daily code security analysis using the Checkmarx software package
  • daily site scanning using the McAfee Secure service to protect against recent threats
  • quarterly application penetration testing using third party providers to assess weaknesses in the system.

LANGUAGES

All client-created content, like questionnaires and registers, can be translated and entered into the platform or elsewhere in 17 languages using our translation resources. Additionally, we provide Unicode character sets which permit translation into further languages as required.

Our standard languages are:

  • English
  • Chinese (simplified and traditional)
  • French
  • German
  • Greek
  • Italian
  • Japanese
  • Korean
  • Malaysian
  • Polish
  • Portuguese
  • Russian
  • Spanish
  • Thai
  • Turkish
  • Vietnamese.

CONNECTORS

ComplianceDesktop® Connect uses an Enterprise Service Bus (ESB) architecture methodology that securely sends defined messages between the various systems and allows the integration of data in your IT systems with the ComplianceDesktop® | Anti-Corruption Compliance Platform, regardless of which system you are using. This solution works with everything from global ERP and HR systems and other commercial software applications to systems our customers have developed themselves. The ComplianceDesktop® Connect service uses a best practice to being connected.

 

Key features and benefits:

  • More cost-effective for customers, because we don’t need to build a custom solution for each desired integration point
  • More secure, because the systems use various message passing mechanisms rather than direct network connections, external systems can interact with the ComplianceDesktop® | Anti-Corruption Compliance Platform via web services using Public Key Infrastructure, and automatic authentication and data encryption throughout each transaction via the public network is provided according to the WS-Security standard
  • More available, by adding high fault tolerance and flexibility into the design and architecture
  • More scalable, by allowing complex message exchanges.

 

Examples of ComplianceDesktop® Technology Platform integration:

  • Connection between the ComplianceDesktop® | Anti-Corruption Compliance Platform and customers’ various HR systems in order to keep data about users accurate and up to date – this may involve those joining, leaving and changing positions and include information about their position in the company and the management structure
  • Connection between the gifts, travel and entertainment register and customers’ travel and expense systems for notifications and review of expense declarations
  • Connection between Partner Manager on the ComplianceDesktop® | Anti-Corruption Compliance Platform and customers’ ERP and channel-management systems.

Our clients

Many of the world's leading companies trust ComplianceDesktop®
to effectively
manage their compliance programmes.

Here are just a few of them.

 

Clients logos.png