As part of our ongoing quarterly CPE event for policyIQ, we are putting together something a bit different – and bigger – than normal!
Join us on Thursday, November 30, 2017 at 12pm Eastern Time for the one hour CPE event presented via the web, showcasing policyIQ’s abilities, features and processes for all of your Policy Management needs. Hosting this session will be Chris Burd, policyIQ Managing Director, and Travis Whalen, policyIQ Product Manager. Learn more about policyIQ’s solution possibilities here.
In this Introduction to policyIQ CPE session, participants will be able to (among other milestones):
- See how to utilize the import utility to centralize previously disparate content
- Secure documentation with read, write and edit access – and approval processes
- Apply search and reporting features to quickly gather information that is critical to decision-making
Sign up for this training here, and learn more about how policyIQ can be an effective solution for your organization’s Policy Management needs.
Policy Management, SOX Compliance, Revenue Recognition, Enterprise Risk Management. What do all of these things have in common? policyIQ. That’s right; policyIQ users have implemented policyIQ for many different content management, process streamlining, automation, and oversight or approval management purposes. The list doesn’t end there; click on and bookmark this link to check out the list of policyIQ solutions. Plan to revisit as we will continue to update this page with Solutions as we hear of our clients’ creative applications of policyIQ.
As you may know, we’ve also been conducting solution-focused training sessions over the last couple of years. We encourage you to visit our training page to see the list of our solution-session recordings and to launch those that may benefit your organization. There is also a link at the top of our training page to access and register for our upcoming live solution sessions.
If you are interested in implementing policyIQ for any of these solutions, contact us and let us show you how to get started saving time and money by using policyIQ for multiple solutions.
If this blog post sounds familiar, it is because you have likely heard us say this before. However, we think it bears repeating.
We want to help you make the most of policyIQ.
As with any product that is continuously evolving, it can be difficult to keep up with all of the new possibilities that are available within the policyIQ application. Maybe you didn’t even know that every upgrade and every new feature developed is rolled out to all of our clients automatically at no additional cost.
If you implemented policyIQ last year, there are already new features that might save time or allow you to create a solution for your team that you haven’t thought about yet.
If you implemented policyIQ more than five years ago and have not revisited the way that the application is configured, we need to talk.
What does that expert review and guidance cost you? An hour of your time. That’s it. For real. We know your time is valuable, but an hour of your time with one of our policyIQ implementation specialists can save you far more time in the long run.
Contact us today – and ask to set up a meeting with a policyIQ implementation specialist to talk about the way that you are using policyIQ!
By now, you likely are aware that policyIQ is a flexible GRC platform that can be easily configured and customized into various GRC and other solutions. One of policyIQ’s strengths is the ability to tailor security at a broad and granular level allowing organizations to implement policyIQ in many areas without stepping on each other’s toes, so to speak. Because of this security capability, with our user-based pricing (rather than the common software model of pushing multiple products or add-on modules), our clients have long been able to leverage policyIQ throughout the organization for multiple initiatives at a reasonable cost.
The latest release of policyIQ includes features that support robust enterprise-wide applications of policyIQ for a range of initiatives. In the past, users in different areas of the organization would create a folder, manual, dropdown or multi-select list to track different critical pieces of information pertinent for their documentation. And while this setup could have been perfect for the audit team’s testing documentation, the same location list, for example, would have to be recreated by the technical accountants performing ASC 606 contract reviews. That was then. Clients leveraging policyIQ’s version 7.8 are able to create and manage Global Lists that can be shared across the organization. If your list of Field Offices is leveraged in various types of content throughout the organization, it can now be centrally maintained and updated rather than having to be updated in several department-specific templates.
Similarly, clients historically had to create independent dropdown fields to track people or responsibilities in their content (i.e. Control Owners, testers, contract reviewers). Now, the lists of users created under Groups and Users and established as a part of user profiles can be leveraged as fields within templates. Once and done.
Here are more examples of where this might be pertinent to you. If you have fields or folders tracking these things and would like to save time and sanity managing them, we recommend looking into the new shared fields (Global Lists, Users Lists):
- Revenue Stream
- Process Area
- Business Unit
- Control Owners
- Significant Accounts
- System Applications
- Relevant Compliance Area
- Prepared By
Of course, reach out to us if you have questions on how to make the adjustments to your policyIQ site.
Regulatory environments are constantly changing, influenced by economic, political and environmental factors beyond your company’s control. It might seem like a daily battle to deal with the push and pull of complying with changing regulations. So how do you stay focused, prepared and sane in the world of regulatory compliance?
One critical step is to ensure that you have well documented, well communicated and well understood corporate policies.
Policies provide the foundation, governing the way in which your employees will work and how they will meet new regulatory requirements. When the foundation is strong, with clear policies that are followed and enforced consistently, additional external expectations and requirements are much easier to incorporate.
Here are just a few best practices to consider:
- Ensure that policies are written clearly. Avoid company jargon or acronyms that may be unclear to new employees or external regulators.
- Make policies easily accessible to all employees. If you are already using policyIQ, ensure that a policyIQ link is posted or communicated regularly.
- Clarify whether any exceptions might be approved to the policy, and communicate the process for approval for exceptions. If it is not clear, employees may be more likely to decide it will be easier to ask for forgiveness than permission.
- Document how policy violations will be addressed or how policies will be enforced.
- Revisit, review and revised policies regularly. Do not allow policies to become outdated or appear to be outdated. Even if no changes are made, regularly note that content has been reviewed, so that employees
- Map policies to your regulatory requirements or other compliance programs. As regulations change, you can more easily identify any changes that must be made in your policies to address those changes.
What other best practices would you highlight for a clear corporate policy platform? Add yours in the comments and share ideas! Learn more about how to utilize policyIQ’s various read-only options by checking out a recent blog post by policyIQ Product Manager, Travis Whalen.
Many organizations have used policyIQ for their Policy Management needs, and each client of ours has their own unique needs and for providing transparent and accessible policies to their users, public website, auditors, or other audience type. However, the process is largely the same, regardless of the unique needs.
In nearly all cases, the policy content is created in policyIQ, reviewed, approved, and then published. Making that content available is where the differences come in to play. There are a few options for doing so:
A shared, Read-only account:
Create a Read-only user account in your policyIQ site (which is free, by the way), and apply the Read-only account as a viewer only on all applicable pages in your site. Be sure to make sure that this account also has view access to the necessary folders, as well.
Then, share the Read-only account credentials with your user base. Once logged in, the policyIQ view this user will have is a scaled down look – just folders and policy content, in this case. Because the very nature of the account is Read-only, there is minimal risk in sharing the credentials with a large group of people.
A shared, Read-only account accessed via policyIQ Reader:
A similar process to the one above, but with a different look to the program and no login needs.
After creating the Read-only user profile and applying the user to security where necessary, edit the user profile. Under the “required” tab of the Edit User window, scroll to the bottom to find a unique link called “policyIQ Reader“. This hyperlink can be placed anywhere you like: bookmarked in your browser, stored on your desktop, placed in a shared network drive, or even on your intranet. Once a location is selected, anyone that clicks the link will gain instant, read-only access to your policyIQ site. No login required, and the “reader” look – a straightforward, no nonsense look at content, which is displayed in the table area to the right instead of a separate window, as seen below.
Individual Read-only accounts:
Create an individual Read-only account per-user, which allows for greater flexibility in terms of seeing policies that are applicable to certain divisions, but not others. Perhaps your finance and accounting folks have policies and procedures that apply to them, but not to the vast majority of other employees. Creating separate accounts for everyone ensures the user experience in the product is directly related to their role.
Individual policies accessed from an outside source:
Some of our clients choose to have their policies accessed from their primary company website. In this case, the policyIQ pass-through link is ideal: eliminate login needs, access individual policies, and don’t display the main policyIQ site from which the policies were created. Instead, display only the pages themselves.
Create a primary Read-only user account, and again add it to the view security on all applicable pages. Now, view a page of your choice that is published. A the very bottom, the page ID sits, and contains a link. Click the link to open a small window that contains the policyIQ Passthrough link . Copy and paste this link to the destination of your choice. Selecting this link from an outside source will open the policy page only, and not require a login to the system.
Did you know policyIQ also handles Policy Sign-offs, as well? It’s a simple process at a minimal cost. Add Standard Users to your site in bulk (50 to over 10,000+) to completely revamp the way your organization automates creating, approving and storing certifications and sign-offs.
Does something here sound like it might be right for you? If so, let’s talk about it! Scheduling a half hour with a policyIQ expert on our team is not only free of charge, but will pay dividends moving forward as the management of your processes becomes easier by the day. Many adjustments to existing sites take minutes to change, and new sites are even simpler! Contact us at Support@policyIQ.com or 412-263-3330 to begin.