GRC resources

Discover blogs, news, events and more from CoreStream GRC’s experts.

Women in grc
ISO27001 Blog

  • Shein data transfer inquiry: cross-border data risk is back in focus with Ireland’s Data Protection Commission

    Corey

    ·

    Shein data transfer inquiry: cross-border data risk is back in focus with Ireland’s Data Protection Commission

    Key takeaways Ireland’s Data Protection Commission has opened an inquiry into SHEIN Ireland over transfers of EU/EEA personal data to China. The DPC has said transfers to China are now an “important strategic priority,” and the inquiry will examine GDPR principles, transparency obligations, and Chapter V transfer requirements. This messaging makes this far more than…

  • Why GRC platforms need to keep pace with business change

    Richard Eddolls

    ·

    Why GRC platforms need to keep pace with business change

    A GRC platform should not only reflect how your business worked on day 1. It should reflect how your business works now and into the future. Contracts change. Ownership models shift. Reporting lines move. New teams come into scope. New obligations appear. Historic records still matter, but they should not make live work harder to…

  • EHS, ESG and GRC: why sustainability compliance now belongs at the heart of risk

    Ava Kernan

    ·

    EHS, ESG and GRC: why sustainability compliance now belongs at the heart of risk

    How Enhesa and CoreStream GRC GRC help you turn EHS and sustainability pressure into a joined up, defensible GRC program If you want to see how leading organizations are folding EHS and ESG into their core GRC framework, this is the place to start. 1. Integrating Environment, Health & Safety (EHS), Environmental, Social, and Governance…

    ,
  • Effective AI-enabled GRC: how to implement trusted, verified AI into risk and compliance

    Ava Kernan

    ·

    Effective AI-enabled GRC: how to implement trusted, verified AI into risk and compliance

    Abstract AI has moved quickly from boardroom curiosity to operational pressure. GRC teams are being asked to reduce manual work, strengthen assurance, and do more with the same headcount. The problem is that generic AI can sound right while producing outputs that are hard to evidence, hard to explain, and impossible to defend in front…

  • Governance, risk and compliance (GRC)

    Lucy Montague

    ·

    Governance, risk and compliance (GRC)

    What is Governance, Risk and Compliance (GRC)?  Governance, risk, and compliance, often shortened to GRC, is the framework organizations use to oversee decision-making, manage risk, and meet legal, regulatory, and internal requirements.    OCEG refined the term, defining it as:  At its best, GRC helps organizations move beyond siloed activity. Instead of governance, risk, compliance, audit, and…

  • CoreStream GRC partners with Horváth to bring consultancy depth and best-of-breed technology together

    Richard Eddolls

    ·

    CoreStream GRC partners with Horváth to bring consultancy depth and best-of-breed technology together

    CoreStream GRC has partnered with Horváth to bring together deep GRC strategy expertise and flexible, no-code technology. This is a welcomed solution, during a time when many organizations are still stuck between high-level advice on one side and rigid software on the other. Enterprises need confidence that GRC architectures and operating models are designed with…

Ready to chat with our experts?

Contact us today!

This form may not be visible due to adblockers, or JavaScript not being enabled.