ÿþ<html>

<head>

<!-- #BeginEditable "doctitle" --> 

<title>SSAMM Management Consulting - The 2006 Compliance Standard - AS 3806-2006</title>

<!-- #EndEditable --> 

<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">



<script type="text/javascript">



//###### GOOGLE ANALYTICS #############



  var _gaq = _gaq || [];

  _gaq.push(['_setAccount', 'UA-23891606-1']);

  _gaq.push(['_setDomainName', '.ssamm.com.au']);

  _gaq.push(['_trackPageview']);



  (function() {

    var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;

    ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

    var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);

  })();



</script> 

<script language="JavaScript">

<!--

function MM_preloadImages() { //v3.0

  var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();

    var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)

    if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}}

}



function MM_swapImgRestore() { //v3.0

  var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc;

}



function MM_swapImage() { //v3.0

  var i,j=0,x,a=MM_swapImage.arguments; document.MM_sr=new Array; for(i=0;i<(a.length-2);i+=3)

   if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}

}



function MM_findObj(n, d) { //v4.01

  var p,i,x;  if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {

    d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}

  if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];

  for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);

  if(!x && d.getElementById) x=d.getElementById(n); return x;

}

//-->

</script>

<meta name="keywords" content="Compliance Standard,AS 3806,AS3806, AS 3806-2006,SSAMM, SSAMM Management Consulting, Management, Consulting, Risk, Risk Management, BCM, Business Continuity Management,  Risk, Legal, Compliance, FSR, FSRA, Financial compliance, ASIC, APRA, Software Licensing, SAM, Software Asset Management, Better Practice,Asset,Microsoft, Adobe, ACER, Audit, Review, Simon Franklin, Jon Phillips, Ulysses Chioatto, Sam Brown, Joe Smith, Clive Blair, Joseph Smith, Professional services, business process, disaster recovery, DRP, DR, Sydney, NSW, 2000, business controls, control self assesment, insurance, insurable risk, ISACA, Privacy, AS3806, AS4360, Consultants, Software, Strategic, Corporate, 3806, 4360, ">

<style type="text/css">

<!--

.style1 {

	font-family: Arial, Helvetica, sans-serif;

	font-size: 12px;

}

.style3 {font-family: Arial, Helvetica, sans-serif; font-size: 14px; color: #003399; font-weight: bold; }

.style6 {

	font-size: 9px;

	color: #FF0000;

}

.style7 {

	font-family: Arial, Helvetica, sans-serif;

	font-size: 12px;

}

body,td,th {

	font-family: Arial, Helvetica, sans-serif;

	font-size: 12px;

}

-->

</style>

</head>



<body bgcolor="#ffffff" onLoad="MM_preloadImages('images/About_us_button_On.jpg','images/Services_button_on.jpg','images/Contact_Us_button_On.jpg','images/Privacy_Stat_button_On.jpg','images/Peolple_button_On.jpg','images/Home_button_on.jpg','images/Legal_Disc_button_On.jpg')">

<div id="Layer1" style="position:absolute; width:963px; height:46px; z-index:1; background-color: #00009C; layer-background-color: #00009C; border: 1px none #000000; top: 3px; left: 25px"> 

  <div align="left"><img src="images/banner2.gif" width="800" height="54"></div>

</div>

<div id="Layer2" style="position:absolute; left:25px; top:102px; width:236px; height:428px; z-index:2"> 

  <div align="center">

    <table width="75%" height="275" border="0">

      <tr>

        <td style="width: 300px"><div align="center"><img src="standards/Images/standards.gif" style="width: 200px"></div></td>

      </tr>

    </table>

  </div>

</div>

<div id="Layer3" style="position:absolute; left:275px; top:102px; width:617px; height:428px; z-index:3; overflow: auto;"> 

  <table width="100%" border="0">

    <tr>

      <td width="97%" align="left"><p align="left" class="style3">

      <a name="Top"></a>

      <font color="#003399" face="Arial, Helvetica, Verdana">The 2006 Compliance Standard - AS 3806-2006 <a name="Top"></a></font></p>

        

      <p align="justify" class="style1"> 

        Compliance is the act of adhering to, and demonstrating adherence to, relevant laws, standards and regulations. If compliance is well organised and aligned with business strategy it can provide significant value to the overall business.

<br /><br />

Standards Australia issued the new standard for compliance programs in March 2006. It is a significant reworking of the previous standard AS 3806-1998. The 2006 Standard moves away from the rather aspirational and largely immeasurable, 1998 Standard to one which is both helpful to an organisation in outlining what a compliance program should look like, and encourages benchmarking against the Standard. 



</p>

        

        <p align="left" class="style3">

      <font color="#003399" face="Arial, Helvetica, Verdana">How Corporate Regulators View the Standard </font></p>

      

      Corporate regulators have strong corporate compliance and consumer protection requirements. These requirements are placed upon any organisation which falls under their respective regulatory regime. The regulators are: ASIC, APRA, ACCC, ATO, and the Privacy Commissioner. Each regulator will have regard to the 2006 Standard when investigating whether or not an organisation regulated by it has a robust and effective compliance system.

<br /><br />

As an example, for organisations which are regulated by ASIC: all holders of Australian Financial Services Licences are required to conduct regular reviews of their compliance systems against industry standards, namely, AS3806-2006. Failure to carry out regular compliance reviews will result in the licence holder being in breach of its licence obligations and the Sect 912A of the Corporations Act 2001. 

<br /><br />

ASIC explicitly states in Policy Statement 164 (Licensing: Organisational capacities) that "in deciding whether a specific licensee s compliance measures, process and procedures are adequate, the licensee may whish to refer to Australian Standard on Compliance Programs. the Standard is a useful benchmark that we expect licensees to use as a guide in planning and implementing compliance measures, processes and procedures." [PS164.54]

<br /><br />

In relation to reviewing compliance arrangements ASIC "anticipates that a licensee will ensure that its measures, processes and procedures are reviewed when its obligations, business, or the environment in which it operates changes" [PS164.49] and "in some cases, it may be sensible for licensees to consider external review of the compliance measures." [PS164.50]

<br /><br />

The 2006 Standard will also prove useful for both Courts and Regulators undertaking investigations into organisation s compliance activities. 





        <p align="justify" class="style3"><font color="#003399" face="Arial, Helvetica, Verdana"> 

       Our Compliance Standard Services</font></p>



SSAMM has extensive experience in advising clients on AS 3806-1998 and more recently AS3806-2006. 



        <p align="justify" class="style3"><font color="#003399" face="Arial, Helvetica, Verdana"> 

        Advice on Compliance Standard AS 3806-2006 </font></p>

         Our consultants have a unique blend of legal and consulting skills to help clients understand the Standard, and where it lies both within the client organisation and the legal and regulatory framework.



        <br /><br />

        SSAMM will facilitate workshops which will identify the key money laundering risk criteria: country risk; customer risk; service risk and apply them to the organisation or business unit. Situations which need enhanced controls will be identified and those controls designed. SSAMM will also deliver training programs.

        

        <p align="justify" class="style3"><font color="#003399" face="Arial, Helvetica, Verdana"> 

        AML/CTF Audits</font></p>

       Every AML/CTF program should be reviewed periodically, and at least annually, to ensure that it is working effectively and that it is focussing on the current money laundering risks. Remember that money launders will target organisations with real or perceived weaknesses in their AML/CTF programs. Organisations will also be required to report to AUSTRAC on its compliance with the legislation.

        <br /><br />

       SSAMM will undertake an audit of your AML/CTF program to test for weaknesses and currency.

        

        <p align="justify" class="style3"><font color="#003399" face="Arial, Helvetica, Verdana"> 

        Compliance Standard Review   Gap Analysis</font></p>

SSAMM will be able to carry out a Compliance Standard Review. This will consist of a Compliance Standard Gap Analysis encompassing:

<ol style="margin-top:5px;">

    <LI>A review of the organisation s existing compliance framework</LI>

    <li>A systems & process review</li>

    <li>Interviews with key management and compliance personnel</li>

    <li>An assessment of where the organisation sits in relation to AS3806-2006</li>	

</ol>

A Compliance Standard Review will enable your organisation to:

<ol style="margin-top:5px;">

<LI>Fulfil its licence obligation and comply with the law</LI>

<LI>Measure its compliance system for effectiveness</LI>

<LI>Align the organisation's business objectives with compliance</LI>

<LI>Benchmark the compliance system against the industry standard.</LI>

</ol>

SSAMM carried out one of the first AFSL licensee compliance reviews against the new AS3806-2206. 

<br /><br />

Conduct your own desktop assessment with our free <a href="./Standards/">Online Compliance Standard Review</a>



      

        

        <p align="justify" class="style3"><font color="#003399" face="Arial, Helvetica, Verdana"> 

       What does the Standard look like?</font></p>

     

The Standard is broken down into four high level tenets of compliance and twelve principles of compliance. These are outlined in the table below. The high level tenets are the basis on which all compliance programs should be based. The principles outline what an organisation should be achieving in order to have an efficient and effective compliance system.



       

        

        <br /> <br />

        <table width="580" border="0" cellpadding="6" cellspacing="1" bgcolor="#99ccff">

              <tr bgcolor="#99ccff">

            <td height="28"  style="font-size:14px;font-weight:bold;color:#003E77;font-family: Arial, Helvetica, sans-serif;">High Level Compliance</td>

            <td height="28"  style="font-size:14px;font-weight:bold;color:#003E77;font-family: Arial, Helvetica, sans-serif;">Description</td>

            </tr>

            <tr><td bgcolor="FFFFFF">1.	Commitment</td><td bgcolor="FFFFFF">

                <LI>Commitment to effective compliance</LI>

                <LI>Compliance aligned to business strategy</LI>

                <LI>Appropriate resources allocated</LI>

                <LI>Compliance objectives endorsed by senior management</LI>

                <LI>Obligations identified and assessed</LI>

            </td></tr>

            <tr><td bgcolor="FFFFFF">2.	Implementation</td><td bgcolor="FFFFFF">

                <LI>Responsibility for outcomes assigned</LI>

                <LI>Employees appropriately trained</LI>

                <LI>Compliance behaviours advanced</LI>

                <LI>Controls</LI>

            </td></tr>

            <tr><td bgcolor="FFFFFF">3.	Monitoring & Measuring</td><td bgcolor="FFFFFF">

            <LI>Compliance program monitored</LI>

            <LI>Compliance with the program can be evidenced</LI>

            </td></tr>

            <tr><td bgcolor="FFFFFF">4.	Continual Improvement</td><td bgcolor="FFFFFF"><LI>Compliance program is reviewed and improved</LI> </td></tr>

        </table>

        <br />

        <BR />

        SSAMM will work with your organisation to provide detailed planning and realistic timelines for achieving compliance with the obligations. 

       <br />

        <BR />

       <!-- Contact Paddy Oliver <a href="mailto:poliver@ssamm.com.au">poliver@ssamm.com.au</a> 

         or Ulysses Chioatto <a href="mailto:uchioatto@ssamm.com.au">uchioatto@ssamm.com.au</a> to discuss your needs.

        -->

        <p>&nbsp; </p></td>

      <td width="3%">&nbsp;</td>

    </tr>

  </table>

  

</div>

<div id="Layer4" style="position:absolute; left:27px; top:534px; width:961px; height:13px; z-index:4; background-color: #00009C; layer-background-color: #00009C; border: 1px none #000000"> 

  <div align="center"><a href="Legal_Disclaimer.htm" onMouseOver="MM_swapImage('legal_disc_button_off','','images/Legal_Disc_button_On.jpg',1)" onMouseOut="MM_swapImgRestore()"><img src="images/Legal_Disc_button_Off.jpg" name="legal_disc_button_off" width="90" height="15" border="0" id="legal_disc_button_off"></a><img src="images/Divider.jpg" width="10" height="15"><a href="Privacy.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Privacy_stat_button_off','','images/Privacy_Stat_button_On.jpg',1)"><img src="images/Privacy_Stat_button_Off.jpg" width="95" height="15" name="Privacy_stat_button_off" border="0" alt="View our Privacy statement"></a></div>

</div>

<div id="Layer5" style="position:absolute; left:25px; top:58px; width:963px; height:10px; z-index:5; background-color: #00009C; layer-background-color: #00009C; border: 1px none #000000"> 

  <table width="959" border="0" bgcolor="#000099" height="10">

    <tr> 

      <td width="70"><a href="Default.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('home_button_off','','images/Home_button_on.jpg',1)"><img src="images/Home_button_off.jpg" width="70" height="17" name="home_button_off" border="0" alt="Back to our home page"></a></td>

      <td width="70"><a href="About_us.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('about_us_button_off','','images/About_us_button_On.jpg',1)"><img src="images/About_us_button_off.jpg" width="70" height="15" alt="Find out more about us" name="about_us_button_off" border="0"></a></td>

      <td width="70"><a href="Services.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Services_button_off','','images/Services_button_on.jpg',1)"><img src="images/Services_button_off.jpg" width="70" height="15" name="Services_button_off" border="0" alt="See what services we provide"></a></td>

      <td width="70"><a href="People.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Peolple_button_off','','images/Peolple_button_On.jpg',1)"><img src="images/Peolple_button_off.jpg" width="70" height="15" name="Peolple_button_off" border="0" alt="Meet our team"></a></td>

      <td width="70"><a href="Media.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Media_button_off','','images/Home_button_on.jpg',1)"><img src="images/Media_button_Off.jpg" width="70" height="15" name="Media_button_off" border="0" alt="Media articles SSAMM has contributed to"></a></td>

      <td width="89"><a href="Contact_Us.htm" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('contact_us_button_off','','images/Contact_Us_button_On.jpg',1)"><img src="images/Contact_Us_button_Off.jpg" width="70" height="15" name="contact_us_button_off" border="0" alt="Contact us for more information"></a></td>

      <td width="415">&nbsp;</td>

      <td width="71">&nbsp;</td>

    </tr>

  </table>

</div>

<div id="Layer7" style="position:absolute; left:266px; top:553px; width:628px; height:11px; z-index:7"> 

  <p><font face="Arial, Helvetica, sans-serif" size="1">Copyright © 2006 SSAMM 

    Management Business Consultants Pty Ltd. All Rights Reserved. ACN 085 294 

    257 </font></p>

</div>

</body>

</html>