Towards a comprehensive framework for business process compliance
AbstractEverything in our lives is governed by a set of laws. Law is a system of rules and guidelines which are enforced through social institutions to govern behavior, wherever possible. Law shapes business, economics, politics and society in every aspect. It plays the role of the arbitrator between people and institutions in case a disputation arises. In the business world, business processes form the foundation for all organizations, and as such are impacted by industry laws and regulations. Ensuring the compliance of business processes with applicable laws and regulations is a key concern that has been paid much interest particularly after the recent high-profile business failures and scandals, such as Enron and WorldCom. These incidents resulted in the enactment of a broad body of strict legislations, e.g. Sarbanes-Oxley act. These laws extend the long-standing requirement for public companies to maintain systems of internal controls for managing compliance, requiring management to certify and the independent auditor to attest to the effectiveness of those systems. Subsequently, organizations are left struggling and spending billions of dollars on compliance by developing and/or deploying ad-hoc compliance solutions, which have inherent problems in terms of reusability, flexibility and evolution that make it difficult to verify and ensure continuous guaranteed compliance. Therefore, a business need for a comprehensive and structured compliance management solution for absolute compliance assurance becomes a must. The main contribution of this dissertation is meeting this business need by establishing a comprehensive compliance management framework and supporting solutions that manages and ensures compliance throughout the complete business process lifecycle, primarily with a preventive focus. This involves design-time business process compliance management and analysis, which is integrated and complemented with the subsequent monitoring of the corresponding running business process instances. Hence, achieving a preventive lifetime compliance support.
Download InfoIf you experience problems downloading a file, check if you have the proper application to view it first. In case of further problems read the IDEAS help page. Note that these files are not on the IDEAS site. Please be patient as the files may be large.
Bibliographic InfoPaper provided by Tilburg University in its series Open Access publications from Tilburg University with number urn:nbn:nl:ui:12-5470311.
Date of creation: 2012
Date of revision:
Publication status: Published
Contact details of provider:
Web page: http://www.tilburguniversity.edu/
This paper has been announced in the following NEP Reports:
- NEP-ALL-2012-05-15 (All new papers)
You can help add them by filling out this form.
reading list or among the top items on IDEAS.Access and download statisticsgeneral information about how to correct material in RePEc.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: (Economists Online Support).
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
If references are entirely missing, you can add them using this form.
If the full references list an item that is present in RePEc, but the system did not link to it, you can help with this form.
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your profile, as there may be some citations waiting for confirmation.
Please note that corrections may take a couple of weeks to filter through the various RePEc services.