Tag: Value based GRC
-
The value-based guide to GDPR: EU and UK privacy compliance optimization
Read more: The value-based guide to GDPR: EU and UK privacy compliance optimizationAt its best, General Data Protection Regulation (GDPR) was never meant to be a paperwork regime. It was meant to change behavior. GDPR is a framework for making better decisions about data, proving accountability, reducing operational confusion, building trust, and protecting the business as it grows. That is the part too many organizations still miss…
-
How to identify quick wins in your GRC processes using value‑based analysis – workshop deep dive
Read more: How to identify quick wins in your GRC processes using value‑based analysis – workshop deep diveGovernance, risk, and compliance teams are under pressure to do more with less. Activity is often fragmented across spreadsheets, inboxes, slide decks, and siloed tools. Many teams already know their programs could be improved, but they struggle to define a realistic path forward or work out how to optimize what they already have in a way that…
-
Provision 29 compliance, explained: how boards can turn internal controls into a business advantage
Read more: Provision 29 compliance, explained: how boards can turn internal controls into a business advantageProvision 29 has changed the conversation for UK boards. This is no longer about showing you have policies, frameworks and good intentions on paper. It is about whether the board can stand up and say, publicly and with confidence, that the company’s material controls were effective at the balance sheet date, and explain how that conclusion was…
-
Beyond the checkbox: A value‑based guide to enterprise conflict of interest management
Read more: Beyond the checkbox: A value‑based guide to enterprise conflict of interest managementThe conflict-of-interest wake-up call Most organizations do have a conflict of interest (COI) policy. What they actually have, in practice, is this: Legacy GRC will tell you that’s “good coverage.” It isn’t. It’s paperwork. Conflicts of interest rarely blow up because they were hidden. They blow up because they were normalized, misunderstood, or never escalated until after a decision was made and challenged. If you’re trying to run effective value-based…
-
Stop playing defense: The comprehensive guide to enterprise risk management for value-based GRC leaders
Read more: Stop playing defense: The comprehensive guide to enterprise risk management for value-based GRC leadersThe enterprise risk management wake-up call Enterprise risk management (ERM) has been talked about for years. Yet, in practice, many programs still amount to little more than documentation and reporting. While, they may look reassuring on paper, they are rarely tested when it matters. In our conversation with our expert community, we have seen that…
-
What the team has learnt in 2025: 6 quick fixes for GRC
Read more: What the team has learnt in 2025: 6 quick fixes for GRC2025 has been a revealing year for Governance, Risk and Compliance teams. Across CoreStream GRC’s community events in London and New York, industry events like #RISK Europe, our design workshops and hundreds of conversations with clients and experts, one interesting theme kept surfacing. Many of the most common GRC challenges are not structural failures. They…
-
What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRC
Read more: What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRCCoreStream GRC hosted community events, with industry risk and compliance leaders, in London and New York across a variety of sectors including retail, banking, technology and defense, to ask the key questions: “The best ideas come from the community. When we get everyone in a room, you see the value immediately, and we take that…
-
What value-based GRC really looks like: takeaways from Paul Cadwallader’s UK customer forum presentation
Read more: What value-based GRC really looks like: takeaways from Paul Cadwallader’s UK customer forum presentationCoreStream GRC’s Paul Cadwallader explains how to drive value and why it starts with connecting your GRC program to what your business cares about. When the GRC Strategy Director at CoreStream GRC, spoke at this year’s UK customer community forum, his focus wasn’t on tools or checklists, it was on value. He challenged the room…
-
A real life example: embedding value-based GRC in your business
Read more: A real life example: embedding value-based GRC in your businessWhat every organization can learn from embedding values into their GRC In a recent case study, Desiree Ramirez, Chief Integrity and Privacy Officer, at UNT Health, explains how her company’s values are woven directly into the outcomes of their conflict of interest program, which was underpinned by CoreStream GRC’s technology. Integrity as more than just…
-
Paul Cadwallader joins Michael Rasmussen’s new podcast to discuss the state and future of GRC
Read more: Paul Cadwallader joins Michael Rasmussen’s new podcast to discuss the state and future of GRCWe recently had the privilege of welcoming Michael Rasmussen, GRC 2020 analyst, author, and founder of The GRC Report, to our London offices to record a very special premier episode for his new podcast series: “Hitchhiker’s guide to the GRC galaxy.“ Paul Cadwallader, GRC Strategy Director at CoreStream GRC, sat down with Michael for a…