Your Risk Register may need to be reviewed.
Commencing 1 July 2019, public, large proprietary companies, as well as trustees of private companies that are registrable superannuation entities, are now required to have a whistleblower policy in place and implemented by no later than 1st January 2020.
Australia made a commitment as a member of the G20 to increase whistleblower protection and help provide safe ways for individuals to report misconduct, crime, and corruption. Even if your organisation has a current whistleblowing policy, it will need to be revised to comply with the new legislation.
The aim of the whistleblower legislation is to not only to create a stronger whistleblower protection regime covering the corporate, financial and tax sectors but also to encourage ethical whistleblowing and discourage white collar crime.
If your company has at least two of the following, your whistleblowing policy needs to be amended.
- revenue of at least $25 million
- consolidated gross assets of at least $12.5 million
- at least 50 employees within the company and entities it controls
To comply with the legislation, a whistleblower policy will need to contain:
- protections available to whistleblowers, including protections under the Corporations Act;
- who can receive disclosures qualifying for protection under the Corporations Act (protected disclosures), and how they can be made;
- how the company will support whistleblowers and protect them from detriment;
- how the company will investigate protected disclosures;
- how the company will ensure fair treatment of employees who are mentioned in protected disclosures, or to whom such disclosures relate;
- how will the policy be made available to officers and employees; and
- any other matters prescribed by regulations
All companies should have a whistleblower policy to ensure good corporate governance.
A suite of policies and procedures can be used with Tickit On Demand Software to assist with organising and updating your policies.
Tickit On Demand – Your Ticket to Compliance!
NESA announced on the 21st January 2019 that updates have been made to their Manuals.
The Registered and Accredited Individual Non-government Schools (NSW) Manual, the Registration Systems and Member Non-government Schools (NSW) Manual and the Registration Process for the NSW Government Schooling System Manual (the Manuals) have been amended.
The list of amendments that relate to the Child Protection Section of the Manual which is applicable to both Day and Boarding Schools are provided in the NESA announcement. This will guide each school to review their Incident Reports and Tasks and update those sections of their Compliance Software as required. NESA has also provided an updated version of the Manuals and has highlighted the “Track Changes”.
The updates require schools to “set clear guidelines and expectations for stakeholders regarding complaints or allegations of staff misconduct or reportable conduct and to publish the school’s complaint handling procedures regarding allegations of staff misconduct or reportable conduct.”
Call the staff at Tickit to help guide you through any Compliance requirements including the updates to the “Task” areas as detailed in the NESA Announcement.
Is your school ready if given four days notice of a random inspection?
Tickit on Demand software for schools can provide a platform to demonstrate ongoing compliance with the New South Wales Education Standards Authority (NESA).
The most important areas of Risk Management include Incident Reporting and Monitoring as well as Task Monitoring and Management. These are essential components of the software which will ensure that ongoing compliance can be demonstrated not only to Internal Management but also to the Regulator.
NESA has a risk-based approach to regulation which now includes the randomly selected program for the inspection of schools. Government and non-government schools are part of this program.
Any school in New South Wales can be selected for a random inspection.
The inspection of schools selected randomly:
- considers school compliance with a subset of the registration requirements; and
- occurs with a minimum of four days’ notice.
During an inspection, the selected school will be required to provide a sample of the materials identified in the Evidence of Compliance sections from the relevant registration manual.
Tickit on Demand software for Schools can help any school manage the ongoing demonstration of compliance with NESA regulations.
Tickit Systems will once again be attending the RMIA Annual Conference and Exhibition, to be held from October 31st to November 2nd at the Sheraton Mirage Resort on the Gold Coast.
The RMIA Annual Conference is the premier risk conference in the Asia Pacific Region, bringing together Risk professionals from all across the region. Boost your influence in the risk management industry, network with key decision makers and discover the latest and hottest topics in risk management.
If you are attending the conference, please come along to Booth 18 to say hello and have a chat. If you want, our consultants can demonstrate the Tickit On Demand GRC system including our new Accreditor module!
For more information about the conference, please check out the following link: www.rmiaconference.com.au
We look forward to seeing you there.
School Accreditation Process
Registration is a non-government school license to operate. Accreditation is a process that authorises a non-government school to nominate candidates for the award of the Record Of School Achievement and/or The Higher School Certificate.
It is achieved after the comprehensive review of Accrediting bodies such as NSW Educations Standard Authority (NESA). Schools must maintain evidence of compliance during any period of registration. The requirements and evidence of compliance include:-
- Proprietor and principle of the school
- Premises and Buildings
- Safe and Supportive Environment
Software programs to assist in the storage of Policy Documents, Procedures and Tasks to provide the evidence required for Registration and Accreditation. This system and structured framework provides an organised and transparent method of record keeping including:-
- A central repository for Policy Documents
- A Framework for procedures
- Task Management
- Risk Management Framework
The accreditation process of schools is complex. Simplify the challenge using a system that facilitates the Audit and Regulation process by providing a structured approach.
SCHOOL COMPLIANCE MADE EASY
Policies are important because they help a school establish rules and procedures in order to function effectively and ensure everyone is connected.
Schools are highly complex and create standards of quality for learning and safety, as well as expectations and accountability. Without these, schools would lack the structure and function necessary to provide for the educational needs of students.
Some policies will be common throughout all schools, whilst others will be designed specifically for each school. State and Federal based legislation and guidelines will provide the guidance to assist with the development of the content of your policies and procedures. Additional guidelines for example from the National Safe Schools Framework (NSSF) provides further information on the development of policies and procedures.
Other bodies such as the Association of Independent Schools (AIS) provide forums to assist in the drafting and refinement of governance documents in collaboration with teachers, parents, carers, and students.
The policies written by schools should include clear plain language and definition of terms in order to function effectively. Schools must have clear policies and procedures that guide day-to-day processes. These policies cover everything from attendance, to student discipline, to emergency procedures, to the curriculum.
A clear suite of policies and procedures assist in the demonstration of compliance with Corporate governance, Teaching standards, Student welfare and Education programs.
SCHOOL COMPLIANCE MADE EASY
Software and Network Security has taken a new dimension as never before!
Software and Network Security can be a demon when not tamed, giving sleepless nights, service interruption and causing severe damage to any business. At the same time, it can be a soothing musical note when harnessed with systematic implementation of 27001:2013.
What is ISO/IEC 27001:2013 and what does it mean to you
ISO/IEC 27001:2013 (ISO 27001) is the International Standard that describes best practice for an ISMS (Information Security Management System). Achieving accredited certification to ISO 27001 demonstrates that a company is following information security best practice, and delivers an independent, expert assessment of whether your data is adequately protected.
A typical vendor can claim that it follows the standard to give you a peace of mind but there is more to it.
A Vendor’s claim of compliance to best practice is only a small part of the story…
Almost any vendor can claim to have a sound and secure environment and I am not implying that their claims are not genuine. They may think so but their claim lacks one important component; verification. Certification to a well tried and tested standard such as ISO 27001:2013 offers assurance to our clients that our internal processes meet the rigorous levels required by the standard. The independent certification bodies have keen eyes and draw on a rich set of experience to identify anomalies and test the organisational practices within the context of modern security standards. This was the challenge accepted by Tickit Systems. We opened up our management processes, software development methodology, deployment disciplines, backup procedures, security measures and BCP policy to objective scrutiny by undergoing the certification process.
And the good news is that Tickit Systems is now ISO 27001:2013 certified company and ever-ready to share your success story.