Compliance Management Research Articles

A comprehensive model for ensuring data compliance in cloud computing environment

As organizations increasingly adopt cloud computing, ensuring data compliance has become a critical priority. Cloud environments pose unique challenges in meeting regulatory requirements due to their distributed and often multi-tenant nature. This review presents a comprehensive model for achieving data compliance in cloud computing, addressing essential aspects such as data privacy, security, sovereignty, and governance. The model emphasizes a structured, layered approach to compliance, integrating risk assessment, data governance, continuous monitoring, and incident management to ensure compliance throughout the data lifecycle. Key components of the proposed model include robust data privacy and protection mechanisms aligned with global regulations such as GDPR and CCPA, data security protocols for safeguarding confidentiality and access control, and data sovereignty policies to handle jurisdictional requirements and cross-border data flows. Additionally, continuous monitoring and automated auditing tools enhance real-time compliance management, while incident management procedures prepare organizations to respond promptly to breaches or policy violations. The framework also incorporates advanced technological solutions, including compliance automation, data loss prevention, and blockchain for traceability, to streamline compliance tasks and improve transparency. By addressing both the technical and governance aspects of data compliance, this model supports organizations in navigating complex regulatory landscapes across multi-cloud and hybrid environments. The review highlights best practices for ensuring compliance, such as regular policy updates, employee training, and third-party compliance management, to sustain long-term adherence. As the regulatory landscape evolves and new privacy-preserving technologies emerge, this model offers a scalable and adaptive approach, positioning organizations to manage data compliance effectively within dynamic cloud infrastructures. This comprehensive approach ensures secure, compliant data operations, fostering trust and accountability in cloud computing environments.

Understanding Multi-Cloud and Hybrid Cloud Architectures in Data Management

This comprehensive article explores the growing adoption of multi-cloud and hybrid cloud architectures in modern data management practices. It delves into the benefits, challenges, and best practices associated with these complex cloud strategies. The article presents key statistics and projections from industry leaders, highlighting the rapid growth and increasing importance of multi-cloud and hybrid cloud solutions. It discusses how these architectures enhance data redundancy, vendor flexibility, cost optimization, and performance while addressing critical issues such as data sovereignty, scalability, and legacy system integration. The piece also examines the challenges organizations face in implementing these strategies, including data integration, security, skill gaps, compliance, and cost management. Finally, it outlines best practices for effective implementation, emphasizing the need for comprehensive data governance, robust integration tools, cloud-agnostic technologies, and continuous optimization.

The Integration of Artificial Intelligence in Secure Access Service Edge: Enhancing Network Security and Performance

Integrating Artificial Intelligence (AI) with Secure Access Service Edge (SASE) architecture represents a significant advancement in enterprise network security and management. This article examines the transformative impact of AI technologies on SASE implementations, focusing on enhanced threat detection capabilities, dynamic network optimization, and automated compliance management. The article comprehensively analyzes AI-driven security features, including real-time threat detection, zero-trust implementation, and privacy-preserving security measures. Through extensive evaluation of deployment scenarios and performance metrics, our research demonstrates significant improvements in security effectiveness and operational efficiency, including a 90% reduction in threat detection time, a 45% decrease in network latency, and a 65% reduction in manual configuration tasks. The article highlights the system's capability to maintain robust security while preserving data privacy through advanced encrypted traffic analysis techniques. The article addresses current integration challenges and provides insights into successful implementation strategies. This article contributes to the growing body of knowledge on AI-enhanced network security architectures and provides valuable insights for organizations seeking to modernize their security infrastructure while maintaining operational efficiency and compliance with evolving regulatory requirements.

The role of automated controls and streamlined compliance in managing risks in digital finance

This study investigates the role of automated controls and streamlined compliance in managing risk in digital finance institutions. Through a mixed-methods approach, combining quantitative analysis and qualitative insights from leading Indian digital finance companies (CRED, ZEST MONEY and PHONE PAY), the research examines the effectiveness of advanced technologies in enhancing risk management practices. The study found strong positive correlations between the adoption of automated controls and key performance metrics, including the fraud detection rate (0.68), regulatory reporting accuracy (0.72), and overall risk management effectiveness (0.75). Regression analysis revealed that automated control implementation was the strongest predictor of risk management effectiveness. A comparative analysis of different digital finance models highlights the varying challenges and benefits of implementing these technologies. This study proposes a holistic, future-proof framework that integrates AI, machine learning and blockchain for real-time risk monitoring, automated regulatory reporting and dynamic compliance management. This framework addresses the limitations of the current fragmented approaches and offers a scalable solution that is adaptable to evolving regulatory landscapes. The findings of this study have significant implications for practitioners and policymakers, emphasizing the need for investment in strong automated systems and adaptive regulatory frameworks. While acknowledging the limitations in sample size and longitudinal scope, this research provides a foundation for future studies and offers practical insights for enhancing risk management in the rapidly evolving digital finance sector. The study concludes that effective integration of automated controls and streamlined compliance is crucial for ensuring the resilience, integrity and sustainable growth of the digital finance ecosystem.

The Overview of the Compliance Management

The Overview of the Compliance Management

Technologies in Urban Planning: Systematic Review on Unauthorized Building Modifications Monitoring

This systematic literature review (SLR) explores the application of geospatial technologies, particularly Geographic Information Systems (GIS), in unauthorized building modifications in urban areas. Unauthorized building modifications pose significant challenges to urban planning, including unregulated growth, safety hazards, and non-compliance with zoning laws. This review aims to synthesize current research, identify effective GIS strategies, and highlight challenges and opportunities in integrating geospatial technologies for regulatory compliance and urban management. Findings suggest that while GIS offers advanced tools for precise monitoring and data analysis, there are notable hurdles concerning technological readiness, organizational adoption, and legislative frameworks

The Effect of Mobile Application Follow-Up on Treatment Compliance and Self-Care Management in Patients With Hypertension: Randomized Controlled Trial.

Hypertension (HT) is a global health problem. Although there are effective treatment protocols, patients have difficulty in adapting to regular use of drugs, diet, and lifestyle changes. Mobile apps can be a potential alternative for managing HT and improving self-care behavior. This study aimed to determine the effect of mobile application follow-up on treatment compliance and self-care management in patients with HT. This randomized controlled trial was conducted in November 2021 and March 2022 with 40 experimental and 40 control group patients with HT. Research data were collected using a patient information form, "Hill-Bone Hypertension Treatment Compliance Scale (HBHTTCS)," "Hypertension Self-Care Profile-Motivation Scale (HTSPMS)," a mobile application program (daily blood pressure, pulse, medication, diet, exercise tracking) uploaded to the mobile phones of the patients, and individual motivational messages. The mean total score of the HBHTTCS at Week 6 was 14.57±1.89 and the mean total score of the HTSPMS was 78.15±2.05.There was a statistically significant difference in mean total HTSPMS (p = 0.000) and HBHTTCS (p = 0.000) scores and mean scores on medical (p = 0.002) and nutrition (p = 0.002) subscales of HBHTTCS between the first interview (1st-week follow-up) and the last interview (6th-week follow-up) of patients in the intervention group. This study showed that mobile application follow-up increased motivation levels and treatment compliance in patients with HT and resulted in better self-care. These positive findings indicate importance of integrating mobile applications in the disease management of HT patients. ClinicalTrials.gov ID: NCT05334446, https://clinicaltrials.gov/ct2/show/NCT05334446.

Synergizing Ai and ERP for Predictive Supply Chain Management and Quality Assurance in Healthcare

This article explores the transformative potential of integrating Artificial Intelligence (AI) with Enterprise Resource Planning (ERP) systems in healthcare, focusing on applications in predictive supply chain management and quality assurance. The healthcare industry faces increasing pressure to improve efficiency while maintaining high-quality care, and AI-ERP integration offers a compelling solution. By combining ERP's comprehensive data management capabilities with AI's predictive and analytical power, healthcare organizations can enhance operational efficiency, improve decision-making, and ultimately deliver better patient outcomes. The article examines current implementations, case studies, and future projections to provide a comprehensive overview of how this technological synergy can help healthcare providers navigate the complex challenges of modern healthcare delivery, from optimizing inventory levels to ensuring regulatory compliance and proactive risk management.

Security compliance and its implication for cybersecurity

Security compliance plays a critical role in shaping and enhancing the cybersecurity posture of organizations. It involves adhering to legal, regulatory, and industry standards that govern data protection, privacy, and security measures. Key regulations, such as GDPR, HIPAA, and PCI DSS, along with international standards like ISO/IEC 27001 and NIST, require organizations to implement security frameworks aimed at managing risks, protecting sensitive data, and ensuring the confidentiality, integrity, and availability of information. The impact of security compliance extends beyond regulatory adherence. By implementing compliance frameworks, organizations enhance their ability to mitigate threats, respond to incidents, and recover from security breaches more effectively. These frameworks help ensure that security measures are consistent, well-documented, and aligned with industry best practices. Additionally, compliance fosters organizational accountability by requiring management oversight and promoting a security-first culture across all levels. However, compliance also presents challenges. Organizations must balance the often resource-intensive process of maintaining compliance with the need for a proactive security strategy that addresses emerging cyber threats. Compliance is sometimes viewed as a "check-the-box" activity, which may lead to a gap between regulatory adherence and actual security needs. Furthermore, the constantly evolving threat landscape requires continuous updates to compliance frameworks, which can be costly and complex, especially for multinational organizations operating under different regulatory regimes. Non-compliance can lead to severe consequences, including legal penalties, financial losses, reputational damage, and operational disruptions. As technology and cyber threats evolve, the relationship between security compliance and cybersecurity will continue to grow in importance, with a greater focus on integrating risk-based approaches and automation into compliance management.

Audit Committee’s Roles & Effectiveness: Evidence from Indonesia

Financial statement manipulation that still occurring nowadays in Indonesia leads the following issue of how audit committee’s functioning within a corporation. This study questions whether audit committee has certain significant role as stated by OJK or just a formality to obey the regulation set by the government. Therefore, this research analyzes the audit committees’ effectiveness in Indonesia by using POJK No. 55/POJK.04/2015 as the basis of measurement. To examine the audit committee’s effectiveness, this research gathers primary data by distributing a questionnaire to audit committee’s in listed companies in Indonesia and to Ikatan Komite Audit Indonesia (IKAI). Based on the responses, the data is then analyzed by using the SEM-PLS approach. It is found that audit committee diligence in audit and decision-making areas significantly increases the audit committee activity. Moreover, audit committee activity and responsibility in internal audit, regulatory compliance, and risk management significantly influence the audit committee’s effectiveness.

Assessing HRIS Effectiveness in Compliance Management among IT Employees within Trichy District

Assessing HRIS Effectiveness in Compliance Management among IT Employees within Trichy District

A systematic review of computer vision-based personal protective equipment compliance in industry practice: advancements, challenges and future directions

Computerized compliance of Personal Protective Equipment (PPE) is an emerging topic in academic literature that aims to enhance workplace safety through the automation of compliance and prevention of PPE misuse (which currently relies on manual employee supervision and reporting). Although trends in the scientific literature indicate a high potential for solving the compliance problem by employing computer vision (CV) techniques, the practice has revealed a series of barriers that limit their wider applications. This article aims to contribute to the advancement of CV-based PPE compliance by providing a comparative review of high-level approaches, algorithms, datasets, and technologies used in the literature. The systematic review highlights industry-specific challenges, environmental variations, and computational costs related to the real-time management of PPE compliance. The issues of employee identification and identity management are also discussed, along with ethical and cybersecurity concerns. Through the concept of CV-based PPE Compliance 4.0, which encapsulates PPE, human, and company spatio-temporal variabilities, this study provides guidelines for future research directions for addressing the identified barriers. The further advancements and adoption of CV-based solutions for PPE compliance will require simultaneously addressing human identification, pose estimation, object recognition and tracking, necessitating the development of corresponding public datasets.

An improved cloud-based business process compliance management system using a user-centered approach

An improved cloud-based business process compliance management system using a user-centered approach

The impact of regulatory workplace safety inspections on workers' compensation claim rates.

Studies on the impact of workplace safety inspections on work injuries have found mixed effectiveness. Most studies are from the United States, examining Occupational Health and Safety Administration (OSHA) regulatory inspections in manufacturing firms with more than 10 employees. This study examines whether regulatory inspections in Alberta, Canada, result in reductions in workers' compensation claims rates for inspected firms relative to comparable non-inspected firms. Firm and claim-level data from the Workers' Compensation Board of Alberta were linked with regulatory enforcement data from the Government of Alberta for construction, manufacturing, and transportation firms with at least one full-time employee for 37 consecutive months. A matched difference-in-differences study design was used to estimate changes in lost-time claim rates for work-related injuries and musculoskeletal diseases of inspected and comparable non-inspected firms between the year pre-inspection and 2 years, post-inspection, controlling for firm-level characteristics. Inspections were not effective in reducing firm-level claim rates, with the exception of transportation firms with more than one inspection experiencing a 28% decrease in their claim rate in the second year post-inspection, relative to the change in non-inspected firms. In construction, inspected firms experienced a 12% increase in their claim rate in the first year post-inspection. No effect was observed in the manufacturing sector. Regulatory workplace safety inspections in Alberta generally do not result in greater reductions in firm-level claim rates in the construction, manufacturing, and transportation sectors. Inspections alone may not be sufficient to induce compliance or hazard management changes that lead to reductions in firm-level injuries.

패션기업 ESG 평판 척도 개발 및 타당화

The purpose of this study was to develop and validate an ESG reputation scale for fashion companies. Factors and items were derived through a literature review and a Delphi survey with 35 experts, and a preliminary survey of 386 consumers was conducted to verify the construct validity of the scale. To validate the final version of the scale, a main survey was conducted with 340 consumers, and confirmatory factor analysis, validity verification, and reliability testing were conducted using the collected data. The finalized ESG reputation scale for fashion companies is a five-point Likert scale comprising three factors (social management, environmental management, and compliance management) and 21 items. This study is significant in that it developed a scale allowing consumers to measure the ESG reputation of fashion companies, thereby extending the ESG evaluation system, which has traditionally focused on investor and corporate perspectives, to incorporate the consumer perspective. It is hoped that this scale will be used as a reference by fashion companies to consider the perspectives of consumers as key stakeholders in the future.

Evaluation and application of population pharmacokinetic models for optimising linezolid treatment in non-adherence multidrug-resistant tuberculosis patients

BackgroundPopulation pharmacokinetic (popPK) models can optimise linezolid dosage regimens in patients with multidrug-resistant tuberculosis (MDR-TB); however, unknown cross-centre precision and poor adherence remain problematic. This study aimed to assess the predictive ability of published models and use the most suitable model to optimise dosage regimens and manage compliance. MethodsOne hundred fifty-eight linezolid plasma concentrations from 27 patients with MDR-TB were used to assess the predictive performance of published models. Prediction-based metrics and simulation-based visual predictive checks were conducted to evaluate predictive ability. Individualised remedial dosing regimens for various delayed scenarios were optimised using the most suitable model and Monte Carlo simulations. The influence of covariates, scheduled dosing intervals, and patient compliance were assessed. ResultsSeven popPK models were identified. Body weight and creatinine clearance were the most frequently identified covariates influencing linezolid clearance. The model with the best performance had a median prediction error (PE%) of -1.62 %, median absolute PE of 29.50 %, and percentages of PE within 20 % (F20, 36.97 %) and 30 % (F30, 51.26 %). Monte Carlo simulations indicated that a twice-daily 300 mg linezolid dose may be more efficient than 600 mg once daily. For the ‘typical’ patient treated with 300 mg twice daily, half the dosage should be taken after a delay of ≥ 3 h. ConclusionsMonte Carlo simulations based on popPK models can propose remedial regimens for delayed doses of linezolid in patients with MDR-TB. Model-based compliance management patterns are useful for balancing efficacy, adverse reactions, and resistance suppression.

Impact of the COVID-19 Pandemic on Pennsylvania School Nurse Management of Student Immunization Requirements.

School nurses play a significant role in the coordination of school-entry immunization requirements across the United States. The COVID-19 pandemic changed the school landscape and introduced additional responsibilities to a school nurse's workload. We conducted a cross-sectional survey with n = 110 Pennsylvania school nurses to explore the impact of the COVID-19 pandemic on school-entry immunization compliance management. Qualitative and quantitative data indicated increased difficulty obtaining school-entry immunization data (n = 52) and reduced school-level enforcement of immunization compliance (n = 30). We also observed increases in the percentage of students enrolled with an immunization exemption in Kindergarten, 7th, and 12th grades between the 2019-2020 and 2020-2021 school years. However, few respondents (15%) offered school-located immunization clinics (SLIC) for school-entry-required immunizations. While the benefits of SLICs are documented, the capacity required to execute recommended actions may be limited among school nurses-particularly post-COVID-19 pandemic. School nurses may need additional support to address these gaps.

Modifying supply chain strategies to address regulatory compliance challenges: Lessons from South Eastern Nigeria

Regulatory compliance was an essential component of contemporary corporate operations, guaranteeing conformity to laws, rules, and standards controlling different aspects of organisational activity. Businesses operating in South Eastern Nigeria encounter complex obstacles to regulatory compliance, such as currency depreciation, the dynamic nature of data protection legislation, and the increasing global integration of supply chains. This report offers valuable insights into the intricate process of adjusting supply chain strategies to address regulatory compliance difficulties in South Eastern Nigeria. The paper examined regulatory compliance difficulties and their effects on supply chain dynamics by conducting a thorough literature review and analysing current research. Devaluing currency led to changes in import/export levies, tariffs, and customs procedures, which need quick and adaptable actions to ensure compliance and competitiveness. In addition, the digitalization of corporate operations intensified the issues of ensuring data security and privacy compliance. This necessitated investing in technological solutions and adopting proactive risk management strategies. Despite these difficulties, firms in South Eastern Nigeria adopted a range of tactics, such as implementing compliance management systems, diversifying suppliers and markets, and engaging with regulatory agencies, to successfully modify their supply chain strategies. The results emphasised the significance of taking proactive actions, engaging in strategic planning, and fostering cooperation among relevant parties to effectively address regulatory compliance obstacles and maintain competitiveness in the global market. Keywords: Adherence to regulations, Techniques for managing supply chains, Depreciation of currency, Safeguarding data, Region of South Eastern Nigeria.

AI-driven corporate governance: a regulatory perspective

ABSTRACT The use of AI-driven or AI-assisted systems in corporate compliance is a novel topic in the business and management literature, only marginally considered by legal academia. While some scholarly pieces have explored the use of artificial intelligence (AI) systems to support compliance in the financial sector (eg, for anti-money laundering purposes), the legal implications of deploying AI systems to fulfil corporate compliance tasks has not yet received the attention it deserves. This article approaches the use of AI in corporate compliance and governance through the eyes of a regulator. Its aim is to present how the use of AI compliance systems within corporations can be leveraged by the entities tasked with ensuring the good governance of firms. Concretely, it explores a not-too-distant future, where some of the regulation of corporations can be driven by a mandate to systematically deploy Automated Compliance Management Systems (ACMS) within corporations as a way to enforce and monitor good governance. The article suggests that several of the limitations that regulators are currently facing to ensure the prevention of fraud, corruption or other forms of corporate non-compliance, could be addressed if regulators offered firms the possibility of being continuously monitored by an automated AI-driven system which systematically tracks the corporation’s data footprint. We then explore what is required for such a regulatory approach to be feasible and effective. In our view, regulators must first establish the standards of reliability for those systems (ie, the legal meaning of ‘red flags’ issued by the system of potential violations) and, second, actively supervise how companies react to the outputs of those systems (ie, what companies do when a red flag is raised by the system). In the final part of the article, we offer a more concrete example to the reader. We suggest it could be possible to test such an approach in Australia through regulatory sandboxes for the mining sector, concretely, to monitor compliance with antibribery obligations overseas.

Enhancing Regulatory Compliance to Prevent Errors: Insights from Federal Housing Program Implementation

Purpose: Regulatory compliance is a vital part of governance, ensuring that programs across various sectors are implemented effectively and without errors. This study focuses on the Virginia Beach Housing & Neighborhood Preservation department, examining how it managed the CARES Act and HUD ARPA legislation, two significant federal regulations introduced during challenging times. The integration of these laws into existing local policies presented a range of difficulties, including conflicts, misinterpretations, and delays. This research analyzes those challenges and offers strategies to streamline compliance in future situations. Methodology: To better understand the regulatory hurdles, this study employed a thorough document analysis and compared housing sector compliance issues with those faced in healthcare. Both sectors deal with strict regulations, and non-compliance can have serious consequences. In healthcare, for instance, lapses in compliance can endanger patient safety, while in housing, they can lead to administrative inefficiencies and misuse of resources. By drawing this comparison, the study highlights the broader implications of effective compliance systems across different sectors. Findings: The findings show that regulatory compliance not only helps reduce errors but also enhances overall program performance. The challenges faced by the Virginia Beach Housing & Neighborhood Preservation department serve as an example of the obstacles organizations encounter when implementing new regulations. The solutions proposed in this study offer a clear path for improving compliance systems and reducing operational disruptions. Unique Contribution to Theory, Policy and Practice: Ultimately, this study emphasizes the importance of robust compliance frameworks in ensuring efficient program execution. It argues that proper management of compliance not only mitigates risks but also contributes to better outcomes across various sectors. By offering practical strategies for overcoming compliance challenges, this research adds valuable insights to the field and supports the ongoing development of effective regulatory practices that benefit both organizations and the communities they serve.