+

WO2007068121A1 - Procede et appareil pour surveiller la conformite de la gouvernance d'entreprise - Google Patents

Procede et appareil pour surveiller la conformite de la gouvernance d'entreprise Download PDF

Info

Publication number
WO2007068121A1
WO2007068121A1 PCT/CA2006/002049 CA2006002049W WO2007068121A1 WO 2007068121 A1 WO2007068121 A1 WO 2007068121A1 CA 2006002049 W CA2006002049 W CA 2006002049W WO 2007068121 A1 WO2007068121 A1 WO 2007068121A1
Authority
WO
WIPO (PCT)
Prior art keywords
compliance
entity
subject
database
rules
Prior art date
Application number
PCT/CA2006/002049
Other languages
English (en)
Inventor
Oscar A. Jofre
Warren Cabral
Sean Griffin
Randy Thompson
Ora Zabloski
David Cronin
Adrian Banica
Kenneth Parker
Valerian Pappes
Doug Kirillo
Andrew Chamberlain
Marshall Rosichuk
Original Assignee
Governanceglobal Corp.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from CA002534154A external-priority patent/CA2534154A1/fr
Application filed by Governanceglobal Corp. filed Critical Governanceglobal Corp.
Publication of WO2007068121A1 publication Critical patent/WO2007068121A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/10Office automation; Time management

Definitions

  • This invention is in the field of business information systems, and more particularly deals with systems and methods for the monitoring and enforcement of corporate governance rules and guidelines.
  • one of the present primary environmental objectives is to be able to economically or efficiently monitor the affairs of a company or other entity to ensure that that entity along with any related parties to that entity are in compliance with any various governance controls which are applicable to their activities. It is essential for a company or other organization to be able to ensure that the organization on an ongoing basis complies with all of the necessary governance controls or requirements imposed upon them either externally by legislative frameworks or other regulatory authorities, or even internally by virtue of certain restrictions or controls placed upon the operations or business of the organization.
  • Some of these controls may be pre-imposed by legislation, but some of the controls which a financial institution, stock exchange or other financial partner or related party might be interested in ensuring were complied with could be items which were peculiar to their own circumstances and which were not imposed by any particular legislation ⁇ and as such they might constitute a separate layer of controls or requirements in addition to the legislative requirements to which the organization might already be subject.
  • financial institutions are lenders may make lending arrangements which provide credit facilities to an organization on the basis of certain requirements being met either in terms of the makeup of the board of directors of a company for example, the number of directors or makeup of the audit committee of the organization, or even more specific capitalization requirements and the like.
  • medium-sized enterprises would benefit the shareholders and other stakeholders associated with those entities.
  • External advisors such as auditors and lawyers can also benefit from an additional level of comfort regarding the observance of governance controls or conditions by various entities.
  • the system was available which would allow those external advisors to streamline the process of monitoring for the sake of their own satisfaction the compliance of their clients with various controls, the obvious attraction to this type of system can be seen.
  • increasing risk exposure have led to the desired by individuals acting as directors either in a profit or nonprofit context, to be fully aware of the past records, history and activities of an entity before becoming involved, and that an ongoing basis to be able to have some level of comfort that the requirements imposed upon the entity which they are associated with are being followed our complied with.
  • Tt would obviously be a benefit to the funding agencies in question to the extent that they are largely involved with the funding of these entities on an ongoing basis, to monitor the compliance of these organizations with various governance controls or requirements, or even to be able to impose additional types of governance controls or conditions upon an entity in exchange for providing funding for certain projects or objectives.
  • Tt is the further object of the present invention to provide an ASP website system for the monitoring of compliance of various entities are related parties with internal or external governance controls which could, based upon the contents of the information in the system with respect to a particular entity or related party, trigger various procedural steps on behalf of or with respect to the entity or the individuals in question.
  • the invention a method of enforcing corporate governance compliance by entities who are subject to various governance controls accomplishes its objectives using a computer system containing an entity database in which entity data pertaining to at least one subject entity can be stored, and a rules database within which are stored a plurality of preset compliance rules.
  • the compliance rules are effectively the template governance controls which will be applied to the entity data in respect to particular subject entities to determine compliance.
  • Each compliance rule saved in the rules database will include a number of parameters or items, including at least one selection parameter which is used to determine, based on interaction with our application to entity data from the entity database in respect of the subject entity, whether or not the particular governance control and compliance rule in question applies to that particular subject entity.
  • each compliance rule within the rules database will also include at least one compliance parameter which is another formula or function which can be applied to entity data within the entity database to determine whether or not a particular subject entity to which it has been determined that the compliance rule in question should be applied is compliant with the governance control being tested by that particular compliance rule.
  • each compliance rule will have saved in association therewith at least one predefined workflow step — basically the compliance rule will have saved with it in the rules database the action to be implemented by the system of the present invention dependent upon the compliance result which is determined from time to time of the particular subject entity with the compliance rule and governance control in question.
  • the actual method of the present invention comprises two steps to be periodically and potentially independently executed.
  • the first step in the method of the present invention is a rules selection step, whereby with respect to a particular subject entity it is determined which of the compliance F&K 2210-05-01
  • the rules stored within the rules database apply to the subject entity in question.
  • the rules selection step upon initiation, will compare the entity data with respect to the subject entity in question to the selection parameters for each compliance rule in the rules database and determine on that basis which compliance rules are applicable to the subject entity in question.
  • the compliance rules which are identified to apply are the selected compliance rules.
  • the second step in the method and the most important step in terms of enforcing compliance an ongoing basis is the compliance assessments step.
  • the entity data with respect to the subject entity in question is compared to the compliance parameters for at least one of the select the compliance rules which have been previously determined to apply to the subject entity in question.
  • a compliance result can be determined which basically as an indicator of whether or not there is compliance by the particular subject entity with the compliance rule in question.
  • the final aspect of the compliance assessments step is that with respect to each compliance result reached or determined, there will be at least one predefined workflow step associated with the compliance rule in question stored within the rules database and the computer system which is used to implement the method of the present invention will initiate those at least one predefined workflow steps as a result of the reaching of a compliance result with respect to a particular subject entity and a particular compliance rule at a particular period of time.
  • Another aspect of the method of the present invention is to allow for a user of the computer system mentioned in the remainder of the method to provide or enter updated or new entity data into the entity database with respect to a new or existing subject entity.
  • the computer system which will be used to implement the system of the present invention will be a website system, and users will communicate with that website system via a user computer terminal or browser.
  • the rules selection step of the method wherein the applicability of certain compliance rules from the rules database to a subject entity F&K 2210-05-01
  • the rules selection step might only be conducted or initiated by a manual trigger or by a trigger from the remainder of the software operative on the computer system of the method.
  • the rules selection step might also be executed on a periodic frequency, or at any time that changes to the contents of either the entity database for the rules database are detected.
  • predefined workflow steps can be contemplated which could be programmed into the rules database to dictate the behavior of the system of the present invention upon the detection or determination of a particular compliance result with respect to a particular subject entity and a particular compliance rule.
  • the list of predefined workflow steps which could be triggered upon detection of a certain compliance result might include taking no action, notifying the user of the system of the compliance result, notifying someone other than the user of the system of the compliance result, generation of one or more documents, revising the entity data in the entity database with respect to the subject entity in question, forwarding entity data or other information to the user of the system, forwarding entity data or other information to someone other than the user of the system, or initiating the submission of an external information requirement to a third party.
  • Tt will be understood by those skilled in the art that there are any number of different additional predefined workflow steps which could be contemplated and which are understood to be within the scope of the present invention.
  • the compliance assessment step of the method of the present invention wherein the actual comparison of entity data pertaining to a subject entity is compared to the compliance parameters for at least one selected compliance rule from the rules database could again be triggered in any number of ways.
  • the compliance assessment step might in some fashion be manually triggered by a user of the computer system of the method, the compliance assessments step might be triggered on a periodic or predetermined time basis, or the compliance assessments step might also be triggered based upon the detection of some particular state or condition within either the F&K 2210-O 5 -Ol
  • entity database for the rules database including potentially upon the detection of any change in either the entity database or the rules database.
  • the website system of some embodiments of the method of the present invention might allow for a user to customize certain aspects of pre-existing compliance rules for application to a particular subject entity, or the system might also allow for a user to program their own compliance rules with respect to a particular subject entity which were not in anyway based upon any of the preset compliance rules previously programmed into the rules database.
  • One ofthe primary strengths ofthe system ofthe present invention is that the most up-to-date versions of all ofthe governance controls applicable to various subject entities will always be used across all of the subject entities who are subscribers to the system simply by virtue ofthe vendor or operator ofthe system programming any changes to governance controls or their related parameters or workflow requirements into the rules database, and then potentially upon the next application of the compliance rules to the entity data with respect to a particular subject entity the most up-to- date versions of any governance controls and codified compliance rules will be applied.
  • the compliance assessments step with respect to a particular subject entity it may be the case that all ofthe selected compliance rules applicable to that subject entity were considered or assessed for compliance, or it may also be the case in certain circumstances that a compliance assessment step might be conducted with respect to only one, or less than all, ofthe selected compliance rules applicable to that subject entity.
  • Some ofthe compliance rules contained within the rules database might relate to timelines pertaining to the completion of a scheduled governance activity, and at least one predefined workflow step associated with that compliance rule is a notification to an appropriate party ofthe status of completion of that scheduled governance activity on behalf of a subject entity to whom that compliance rule has been determined to apply.
  • the compliance rule is a scheduling rule of this fashion, the execution ofthe predefined workflow step or steps with respect to the compliance result thereof might include the initiation of at least one computer aided task by the computer system in support ofthe completion ofthe scheduled governance activity, in addition F&K 2210-O 5 -Ol
  • One of the key elements of the utility of the method and system of the present invention will be the keeping of an audit trail on the system which will not only keep on a trail that potentially outlines the users who have made changes or updates to entity data stored within the system but might also include previous versions of documents, reports or even historical assessments of the compliance results determined by the method of the present invention.
  • Subject entities of various legal structures are contemplated to be within the scope of the potential users of the system and method of the present invention.
  • Tt is also contemplated however that compliance rules could be set up in the rules database which would allow for the monitoring and enforcement of compliance in relationships between more than one subject entity being monitored by the system, where more than one subject entity existed in the entity database and at least two of those subject entities were related in some fashion.
  • the system and method of the present invention could be used to enforce governance compliance of relationships between entities in addition to enforcing compliance of the conduct of an individual entity.
  • the computer system used in the method of the present invention could also offer additional data viewing and reporting functions which users might find effective for examining compliance issues or other general business issues associated with a particular subject entity.
  • certain embodiments of the method of the present invention might include a compliance scoring step, whereby the system might be used to generate a compliance score with respect to the overall activities and entity data with respect to a particular subject entity stored within the entity database. It may be the case that any internal formula for the calculation of a compliance score would be used, or it may also be the case that an independent third-party compliance scoring formula could be programmed into the system to allow for the generation of a compliance score in accordance therewith.
  • a compliance scoring step whereby the system might be used to generate a compliance score with respect to the overall activities and entity data with respect to a particular subject entity stored within the entity database. It may be the case that any internal formula for the calculation of a compliance score would be used, or it may also be the case that an independent third-party compliance scoring formula could be programmed into the system to allow for the generation of a compliance score in accordance therewith.
  • the invention also accomplishes its objectives comprising a website system for use in the enforcement of governance compliance by entities subject to governance controls, said website system comprising at least one server containing at least one processor, a memory operatively coupled to the at least one processor, and a data storage device in communication with the other components of the server and the website system , said at least one server being operatively connected to a communications network whereby it is capable of communication with at least one user terminal computer; an entity database stored on the data storage device, within which is stored entity data pertaining to at least one subject entity which is to be monitored for compliance enforcement; a rules database stored on the data storage device, within which are stored a plurality of preset compliance rules, wherein each compliance rule represents a governance control applicable to certain subject entities and includes at least one selection parameter which can be used to determine the applicability of the related governance control to a subject entity, based on entity data pertaining to the subject entity; at least one compliance parameter which can be used to determine the compliance or noncom
  • the program module will be operative to at a selected time with respect to a particular subject entity, being a rule selection point, determining which compliance rules from the rules database pertain to governance controls applicable to that particular subject entity by applying the at least one selection parameter from the compliance rules in the rules database to entity data from the entity database pertaining to that subject entity.
  • the compliance rules being determined to apply being the selected compliance rules, said determination comprising a rule selection step; and at a selected time being a compliance assessment point, with respect to a subject entity and at least one selected compliance rule applicable thereto, conducting a compliance assessment step comprising determining the compliance or noncompliance of the subject entity with the at least one selected compliance rule by applying the at least one compliance parameter with respect to said compliance rule to the entity data stored within the entity database with respect to said subject entity, the results of said F&K 2210-O 5 -Ol
  • the program module is further capable of communication with a user via a user computer terminal in operative communication with the server and by virtue of said communication receives updated or new entity data for storage to the entity database in respect of a subject entity.
  • the rule selection point being the point in time at which the rule selection step of the method of the present invention is executed by the website system, can be triggered manually, or in accordance with some predetermined schedule or trigger event.
  • the primary trigger event which is contemplated would be the detection of a change of the contents of either the rules database or the entity database with respect to a particular subject entity.
  • the compliance assessment point being the point in time at which the compliance assessment step of the method of the present invention is executed by the website system, can be triggered manually, or in accordance with some predetermined schedule or trigger event.
  • the primary trigger event which is contemplated would be the detection of a change of the contents of either the rules database or the entity database with respect to a particular subject entity.
  • Communications between the user computer terminal or terminals and the server of the website system of the present invention are contemplated to potentially take place using a secure communications protocol.
  • the website system of the invention might offer various data viewing and data reporting functionality to users.
  • a governance compliance enforcement system product comprising a computer usable medium including a o computer readable program for use in the assessment and enforcement of compliance by entities with governance controls applicable thereto, wherein the computer program when executed on the server computer in communication with at least one user computer terminal and operatively connected to or containing an entity database within which is stored entity data pertaining to at least one subject entity which is to be monitored for compliance enforcement, and a rules s database within which are stored a plurality of preset compliance rules, wherein each compliance rule represents a governance control applicable to certain subject entities and includes at least one selection parameter which can be used to determine the applicability of the related governance control to a subject entity, based on entity data pertaining to the subject entity; at least one compliance parameter which can be used to determine the compliance or o noncompliance of a subject entity with the related governance control, based on entity data pertaining to the subject entity; and at least one predefined workflow step associated with compliance or noncompliance with the related governance control by a subject entity,
  • conducting a compliance assessment step comprising:
  • system and method of the present invention could be operated in respect of multiple entities, each of which may have some or all of the same corporate governance controls in place or alternatively in respect of each of which entities separate her individual customized corporate governance controls could also be monitored for compliance.
  • Tt will also be understood that the operation of the system of the present invention in a centrally hosted environment is specifically contemplated to be one of the major benefits of the system of the present invention in so far as it removes the requirement to physically host such a business information system from each of the individual subject entities or customers in question.
  • Figure 1 is a general architectural drawing of one embodiment of the website system in accordance with the present invention.
  • Figure 2 shows one embodiment of an entity database in accordance with the present invention
  • Figure 3 shows one embodiment of a rules database in accordance with the present invention
  • Figure 4 shows one embodiment of the method of the present invention wherein the monitoring of entity data with its back to the subject entity is conducted in a passive fashion
  • Figure 5 shows one embodiment of the method of the present invention wherein the monitoring of entity data with respect to a subject entity is conducted in an active fashion
  • Figure 6 is a flow chart demonstrating the steps of the creation of the necessary records and information for a new subject entity in one embodiment of the system of the present invention
  • Figure 7 is a flow chart demonstrating one embodiment of an entity data update transaction in respect of the system of the present invention
  • the general concept of the present invention is to provide a website system or a distributed computer system which can be used by more than one individual or business entity to monitor and enforce corporate governance compliance in respect of various entities and related parties, by allowing the users of the system to enter various information or entity data with respect to the entities in question into the website system, and the website system of the present invention F&K 2210-05-01
  • system and method of the present invention could be operated in respect of " multiple subject entities, each of which may have some or all of the same corporate governance controls in place or alternatively in respect of each of which entities separate or individual customized corporate governance controls could be monitored for compliance purposes. It will also be understood that the operation of the system of the present invention in a centrally hosted environment is specifically contemplated to be one of the major benefits of the system of the present invention in so far as it removes the requirement to physically host such a business information system from each of the individual subject entities or system users in question.
  • a corporation there might be any number of other related parties to that corporation who might either require information pertaining to the corporation, and/or in respect of whom there may be additional or supplemental information reporting or monitoring requirements which might make those parties themselves also be subject entities, to be monitored by the system and method of the present invention.
  • Related parties to a corporation might include the shareholders of that company, the directors of that company, or the officers of the corporation. There may even be overlap between these classes of individuals so that, for example, users of the system for information reporting or tracking purposes might also be subject entities who are being monitored within either independently or in relation to other subject entities in the system for the purpose of ensuring compliance.
  • the relational database structure of the proposed system and method of the present invention will allow for the aggregate treatment and propagation of various security permissions and properties amongst these different types of subject entities, users or related parties based upon such potential overlap in their effective business roles in relation to one or more subject entities.
  • Different classes of subject entities or users of the system and method of the present invention might have different informational requirements or needs.
  • the final group of individuals or entities who might be involved with the practice or operation of the method of the present invention are the users of the system.
  • the users of the system of the present invention are contemplated to be the individuals who would either be entering entity data into the system, or participating in compliance assessment steps based upon the ongoing assessment by the system of the compliance or noncompliance of certain subject entities with various governance controls.
  • Users of the system of the present invention might also be subject entities themselves, but it can be foreseen that certain users may not be subject entities.
  • present invention might be a user of the system for information retrieval purposes while at the same time being a subject entity being tracked by the system of the present invention in terms of relationships with one or more subject entities. It may be necessary to track information with respect to the shareholder in order to actually apply the governance monitoring and compliance method contemplated by the present invention both to the conduct of the corporation as a subject entity, but also to that shareholder as a separate subject entity, and the relationship between the shareholder in the corporation.
  • Certain non-related parties may also be given access to the system of the present invention for the sake of verifying the status of certain data or information contained therein on behalf of certain subject entities.
  • a particular subject entity may wish to grant access to the information contained within the system of the present invention to a particular capital partner or financial institution whereby that financial institution could on a discretionary basis access the system of the present invention to verify the compliance of the subject entity or entities with a particular governance control imposed thereon.
  • governance controls or restrictions which are in place with respect to particular subject entities, and their business or conduct.
  • a governance control is any rule or restriction placed upon the constitution or activities of a particular subject entity which might F&K 2210-05-01
  • governance controls which are applicable to subject entities may be classified or divided into two subcategories. namely externally imposed governance controls and secondly internally created or imposed governance controls.
  • Reference to different types of governance controls as either an external governance controls our internal governance controls will be used herein where necessary to segregate or identifier differentiate between governance controls which are externally imposed upon a subject entity such as legislatively imposed governance controls of the like, versus internally imposed governance controls which might be governance controls implemented by the shareholders or directors of a particular corporation or entity to monitor or enforce business restrictions which are desired from an internal organizational perspective.
  • An external governance control is a governance control, regulation or condition which is imposed upon the subject entity by an external party or governing authority.
  • legislative requirements with respect to the particular type of a business structure for a subject entity would be one type of an external governance control.
  • Tt may be the case that the corporation legislation in a jurisdiction or jurisdictions required that a certain number of shareholders were of a particular citizenship or residency, that the board of directors of this particular type of a subject entity consisted of a particular number of individuals or individuals with certain backgrounds or qualifications, or that any number of different conditions needed to be in existence or alternatively needed to be proacti vely avoided, in order to satisfy the good standing requirements with respect to that particular type of business entity within the jurisdiction in question.
  • a particular type of a business transaction such as a capital transaction or investment may require a subject entity to maintain a particular liquidity level to avoid offending the terms of the loan or other credit facility.
  • this is a governance condition, imposed by a third party or an external party such as a stock exchange or securities body, this would constitute another type of an external governance control to which a subject entity could be required to pay attention.
  • an external governance control Any particular type of an external governance condition or control, as that concept will be understood from the description elsewhere above, could be adapted for monitoring or control in accordance with the system of the present invention and on that basis it is all contemplated to be within the scope of the present invention.
  • Internally imposed governance controls are effectively any type of a governance control, limitation or condition which are imposed upon the constitution or governance of a particular subject entity from the inside, rather than by an external party or legislative regime.
  • Internally imposed governance controls are effectively any type of a governance control, limitation or condition which are imposed upon the constitution or governance of a particular subject entity from the inside, rather than by an external party or legislative regime.
  • the shareholders of a particular company might adopt a resolution that a particular number of people needed to be on the board of directors of the F&K 2210-05-01
  • governance controls might exist both with respect to the subject entity itself, or also with respect to the relationships between one or more subject entities. For example it is contemplated that there are any number of ongoing restrictions or requirements and securities legislation requiring specific types of relationships between specific types of subject entities to be publicly disclosed s or to be structured in some particular fashion. These types of inter-relational governance controls might apply equally to various subject entities monitored in accordance with the system of the present invention. Any particular type of a condition or control imposed either upon one subject entity, or at the relationship between more than one subject entity, is contemplated within the scope of the present invention. Overall, it is understood that governance controls as outlined 0 herein are intended to cover any type of a constitutional or governance limitation a requirement with respect to a particular subject entity and/or the relation of that subject entity to any other party being a subject entity for monitoring purposes.
  • the types of information which the system needs to track and maintain with respect to a subject entity include various types of entities data related to the Constitution or governance of the subject entity and or any related entities or parties and their ongoing conduct.
  • the entity data with respect to that subject entity which might be maintained within the entity database in the system of the present invention will include identifying information for the subject entity. It will also be necessary for the entity data in respect of a subject entity to identify the type of a business organization or entity which the subject entity is, since it is contemplated that in certain embodiments of the system of the present invention, the system could be capable of use with a number of different types of subject entity structures.
  • the entity data with respect to subject entity which would be entered into the entity database on the system of the present invention could include any information or data which was necessary to determine the applicable external legislative regimes or other regulations which might apply to the affairs of the subject entity, in order to determine the applicable external governance controls with respect to the affairs of a particular subject entity and to allow for the application in monitoring of those particular external governance controls in accordance with the system and method of the present invention.
  • the system of the present invention can then automatically determine which sets of governance rules for various jurisdictions apply to the subject entity in question, for the purpose of determining further entity data which was required to be maintained on the part of the subject entity in question, or for the use of such controls or rules in the determination of the validity or compliance of various entity data or entity activities related either to the subject entity itself or to related parties thereto.
  • the entity data which might be collected with respect to a particular subject entity might also include further detailed structural information with respect to the structure of the subject entity.
  • the entity data collected with respect to a particular subject entity might include the number of shareholders or directors of the entity or might even a more detailed level include very specific structures and roles pertaining to share structures are types of voting which were required by shareholders or directors or other related parties with respect to the subject entity in the context of approval of various types of business activities.
  • the type of entity data which would be captured with respect to any particular subject entity could be customized depending upon the level of governance compliance or monitoring which was requested or required by the particular subject entity in question.
  • the system of the present invention could offer different levels of corporate governance compliance monitoring or enforcement. If a corporation was simply going to use the system for internal comfort purposes, they may elect to use a lower level of data collection and compliance monitoring that if they were using the system of the present invention to satisfy external authorities or third parties as to the compliance of the corporation with certain governance controls or conditions.
  • the system could actually provide an option to the user to select these differing levels of data collection or control, or the level of data collection and control to be imposed upon a particular subject entity' could be automatically enforced are selected by the system of the present invention based upon some or all of the entity data with respect to that subject entity which were entered or saved within the entity database on the system. It will be understood that the provision of such F&K 2210-05-01
  • a further flexibility which is contemplated would be to provide or allow for "on-the-fly" adjustment or customization of the types of entity data which would be kept with respect to a particular subject entity, based upon the entry of selection of certain data types or data entries in the creation of the entity data pertaining to that subject entity. For example, it would be desirable to customize the types of entity data which would be maintained with respect to a particular subject entity based upon the legal structure of the entity. Different types of entity data might be kept for a corporation than for a partnership or a soul proprietorship.
  • the system could identify or recognize the relevant types of entity data which needed to be collected are maintained with respect to a particular subject entity based upon any type of information entered into the system with respect to a particular subject entity, including identification of entity type, jurisdictions in which business was being done or in which the subject entity was resident, the nature of business activities conducted by the subject entity requiring the capture and monitoring of different types of information, or even the capital status of the subject entity as a further example.
  • the external governance controls associated with that particular type of a reporting issuer and traded on a particular exchange could be applied to the treatment of the subject entity by the system of the present invention, and any additional information which was required to be captured in order to properly tracked and assess the compliance of the subject entity with those types of controls could also be required to be entered are maintained on the system of the present invention.
  • the entity data associated with a particular subject entity which could be captured or maintained by the system of the present invention could also include entity data in respect of other parties which might be related to a primary subject entity.
  • entity data For example shareholders, directors related companies or the like are all related parties to a particular subject entity, but may in and of themselves each form a subject entity which was separately desirable to be monitored in accordance with the system and method of the present invention.
  • Adjustment of the system of the present invention to capture any necessary types of entity data with respect to related parties have subject entities, which might potentially be subject entities themselves, will be an extension of the present invention which would be obvious to one skilled in the art and is contemplated within the scope of the claimed invention outlined herein.
  • the system could be adjusted or program to accommodate the entry details pertaining to the nature of relationships between related parties and the subject entity, for capturing the system is entity data in the entity database with respect to the subject entity.
  • entity data in the entity database with respect to the subject entity.
  • the scope of the type of entity data which could be captured with respect to a particular subject entity is simply illustrated bj the addition of this potential extra layer of entity data with respect to the details of relationships between related parties and subject entities track as separate entities within the system of the present invention.
  • the system of the present invention could be programmed to render certain types of entity data optional for entry into the database while other types of entity data which were related to a F&K 2210-05-01
  • Tt will be understood to one skilled in the art that validation or verification of the entity data with respect to a particular subject entity, as well as the automatic selection of particular types of entity data to be required entry versus optional entry fields, are all contemplated within the scope of the present invention.
  • each of the government controls in question is codified as a compliance rule within a rules database.
  • a compliance rule effectively represents a governance control which might be applicable to a particular type of a subject entity and would include at least one selection parameter which might be a formula or calculation which can be used or compare it against entity data in respect of one or more subject entities stored within an entity database to determine whether or not that particular compliance rule and its associated governance control even applies to the particular subject entity in question, and also at least one compliance parameter which might also be a formula or calculation which can be used in comparison against entity data in respect of a particular subject entity, from the entity database, to determine based upon the results of the rendering of that formula or calculation whether or not the subject entity in question, based upon the entity data used for the calculation, is in compliance with the particular governance control represented by that compliance rule.
  • the data verification, or comparison of applicable compliance rules to entity data in respect of the subject entity stored within the entity database may yield a binary result based upon the data fed to the formula or formulas in question — i.e. the test which is applied by the particular compliance rule in question will end up resulting in either an "compliant" or s "noncompliant” answer.
  • the result of the application of a particular compliance rule to the entity data stored within the entity database with respect to a subject entity is a compliance result.
  • the compliance result calculated by the system of the present invention could be stored to an audit trail, but more importantly could be used to activate or instigate particular predetermined workflow steps based upon that compliance result. 0
  • the compliance rules which might be applied to the entity data with respect to that particular subject entity might be as follows:
  • a) does the entity data with respect to that subject entity identified at least five individuals in relation to the subject entity who are members of the board of o directors thereof; b) of the individuals who are identified as board members of the subject entity, is the citizenship of at least three of those members of the board of directors identified as being Canadian; c) is there an individual identified within the entity data associated with the subject 5 entity as the auditor of the subject entity - i.e. has an auditor been appointed? d) does the entity data with respect to the related individual who is identified as the appointed auditor of the subject entity, if an auditor has been appointed, indicate that the auditor was appointed in advance of every 15th; and F&K 2210-05-01
  • fight sample compliance rules or governance controls outlined above are simply demonstrative of the types of tests or rules which could be codified into the compliance rules in the rules database of the system of the present invention and which could be applied to entity data within the entity database and the system of the present invention to determine or enforce the compliance of particular subject entities with particular governance controls.
  • each compliance rule in the rules database would not only encapsulate in the form of selection parameters and compliance parameters the necessary information for the system and method of the present invention to determine the applicability of a particular compliance rule to a subject entity as well as if applicable, the ability to determine whether or not the subject entity in question was complying or not with the governance control associated with that compliance rule, but the compliance rule through the rules database would also have at least one predefined workflow step associated with F&K 2210-05-01
  • the system could trigger the at least one predefined workflow step associated with it based upon the compliance or noncompliance with the particular compliance rule in question by the subject entity in question.
  • the predefined workflow step or steps associated with each compliance rule in the rules database might consist of anything from simple reporting of the status of compliance with a particular compliance rule by the subject entity in question to a predetermined or predefined party or user of the system through to the triggering of the automatic conduct or preparation of other mechanical steps, reporting or the like by the computer system of the present invention in support of compliance with the compliance rule by the subject entity in question.
  • predefined workflow steps which might be associated with compliance rules, it might be required that every time there is a change made in the constitution of the board of directors of a corporation, notice or change of directors needed to be filed with the corporate authorities in question within a certain period of time.
  • the compliance rule or records associated with the enforcement of this governance requirement upon the appropriate entities might contain predefined workflow indications that would trigger a notification to the subject entity or any predefined or preselected user associated with the subject entity that a notice of change of directors needed to be filed, when anyone entered new entity data into the system indicating that there had been a change in the constitution of the board of directors of the subject entity in question.
  • the system itself may also be able to generate the notice a change of directors for filing of the subject entity, or even in a further embodiment may be able to actually generate and electronically file a notice of change of directors on the behalf of the subject entity in question, and the document generation function or the automatic generation and filing of such a notification are two further examples of predefined workflow steps which might be associated with certain compliance rules within the rules database.
  • components of utility of the system of the present invention in so far as one of the primary objects of the present invention is to deliver a web-based corporate governance monitoring and enforcement system which would simplify the process of monitoring and ensuring compliance with various corporate governance controls by small to medium-sized enterprises.
  • Programming 5 such a system to automatically notify a user of existing or future requirements based upon the detection of certain conditions within the entity data stored within the entity database in respect of the particular subject entity, or a more extensive versions of the system of the present invention of you performing some following requirements are steps using a system itself, is contemplated within the scope of the present invention.
  • System and method of the present invention is seen to be a significant enhancement over systems currently available in the prior art for the purpose of monitoring or enforcing corporate s governance compliance.
  • the only systems which are known of in the prior arc with respect to the collection of corporate governance information or large, expensive systems which are really on this basis accessible only to the largest companies.
  • Tt is known in the prior art that there are systems which are effectively used to maintain an o electronic corporate record book.
  • the systems are hosted internally by their users and as such there are significant system and administrative overheads associated with the operation of such systems. These systems are more directed to use as document repositories and methods of distribution of documents and information amongst members of. for example, boards of directors of larger companies.
  • the delivery of the present system as an ASP or website model offers s significant cost and technical advantages enabling the rollout of a corporate governance enforcement system to smaller and medium-sized enterprises.
  • the ability of the prior art systems which are effectively electronic record books to actually test any entity data stored therein for compliance with various governance controls or rules is limited.
  • the provision of an effectively integrated system which will allow for the collection and analysis and action of o corporate governance information such as that outlined herein represents a significant improvement over the prior art internally hosted data collection systems.
  • the present invention includes a business method of monitoring or enforcing governance compliance for various types of entities.
  • the business method itself relies upon a computer system containing two databases along with a number of software components.
  • the first database contained by the computer system and required to accomplish the business method of the present invention is a rules database.
  • the rules database will contain a plurality of preset compliance rules — each compliance rule representing a governance control which is applicable to a certain type of subject entity. Tn terms of the actual specific data structure of the rules database that is discussed elsewhere herein, but the rules database will in respect of each governance control applicable to a certain type of subject entity contain information pertaining to a compliance rule associated therewith.
  • Each compliance rule contained within the rules database will include information pertaining to at least one selection parameter which can be used to determine the applicability of the related governance control to a particular subject entity based upon the use of the selection parameter and entity data pertaining to the subject entity.
  • the selection parameter might constitute a formula or some other test or validation which could be applied against entity data pertaining to a particular subject entity to determine whether or not the governance control in question and the related compliance rule applies to that particular subject entity in respect of which the entity data has been collected or not.
  • each compliance rule within the rules database will include at least one compliance parameter which can be used to determine the compliance or noncompliance of a subject entity to which the compliance rule is applied with the related governance control.
  • each compliance rule would be associated with at least one predefined workflow steps toward in the rules database in Association with the compliance rule in question.
  • At least one predefined workflow step would be an instruction or indication to the system of the present invention as to what type of action if any was to be taken upon the determination of a particular compliance result.
  • the second database required for use in the business method of the present invention is an entity database, into which entity data pertaining to at least one subject entity can be placed and stored.
  • Entity data is the basic or advanced information pertaining to the affairs of a particular subject entity which is used to determine the applicability of or compliance with a particular governance control, via the compliance rule in question.
  • the business method of the present invention itself, in reliance upon a computer system containing an entity database as outlined above and a rules database as outlined above, first comprises a rules selection at step, wherein the computer system using components therein will select a subset of the compliance rules contained within the rules database which represents the governance controls which are applicable to a particular subject entity, being the selected compliance rules.
  • the selected compliance rules with respect to a particular subject entity for which there is entity data within the entity database will be identified using the entity data with respect to the subject entity in question along with the selection parameter or parameters in respect of the compliance rules memorialized within the rules database. Tt is easily foreseeable that not every compliance rule within the rules database will be applicable to every' subject entity and on this basis a rules selection step is required.
  • the rules selection step could either be conducted with respect to a subject entity and the results indicating the set of selected compliance rules saved within the memory of the remainder of the system for subsequent use, or the rules selection step could be performed with respect to a subject entity on an ongoing or dynamic basis, as outlined in further detail elsewhere herein.
  • the next step in the method of the present invention is a compliance assessment step during which at least one selected compliance rule in respect of a particular subject entity will be applied against the entity data stored in respect of that subject entity within the entity database, using the compliance parameter or parameters stored in association with that particular F&K 2210-O 5 -Ol
  • the compliance result in question may be a positive or a negative result and it is contemplated or understood that there may be different predefined workflow steps defined with respect to the compliance rule in question dependent upon whether a positive or a negative compliance result is reached with respect to the application of that particular compliance rule to the entity data in respect of a particular subject entity.
  • the list of predefined workflow steps which could be triggered upon detection of a certain compliance result might include taking no action, notifying the user of the system of the compliance result, notifying someone other than the user of the system of the compliance result, generation of one or more documents, revising the entity data in the entity database with respect to the subject entity in question, forwarding entity data or other information to the user of the system, forwarding entity data or other information to someone other than the user of the system, or initiating the submission of an external information requirement to a third party. It will be understood by those skilled in the art that there are any number of different additional predefined workflow steps which could be contemplated and which are understood to be within the scope of the present invention.
  • the rule selection step of the method of the present invention could be conducted in isolation and the results of that saved for further use at such point in time as the compliance assessment step in respect of some or all of the compliance rules determine to be applicable to a particular subject entity was being conducted, or alternatively the rule selection step could be conducted as a part of the compliance assessment step, in advance of determining the compliance results for particular compliance rules in respect of that subject entity at the time of execution of the compliance assessment step.
  • the method of the present invention can be implemented using a web site system which was capable of monitoring and applying various compliance rules to numerous subject entities and the related parties thereto at the same time.
  • the full gamut of functionality which is considered to be within the realizable scope of the web site system of the present invention, and which could be used in the practice of the business method of the present invention, is outlined elsewhere herein.
  • Figure 1 demonstrates the general architecture of a corporate governance monitoring and enforcement website system operating in accordance with the present invention. It includes a user computer 13 and a governance compliance enforcement web site system 15, which are linked together by the Internet 16.
  • the user computer 13 might be any type of computing device that would allow a user or customer to interactively browse web sites via a web browser 14.
  • the user computer 13 might be a personal computer running any one of the Microsoft Windows operating systems. It will be understood that other types of computing devices running other operating systems can also be used as the user computer 13, so long as they were able to connect to the Internet 16 and accommodate the perusal and interaction with the governance compliance enforcement web site system 15 by a web browser 14 installed therein, and that all such other devices are contemplated within the scope of the present invention.
  • the governance compliance enforcement web site system 15 includes at least one web server 17 which houses the server-side components of the web site system 15 of the present invention.
  • the governance compliance enforcement web site system 15 as shown also includes a content F&K 2210-O 5 -Ol
  • the web site system 15 includes an entity database 18 which contains entity data 9 with respect to subject entities 1.
  • the web site system 15 of the present invention would also include a rules database 20, which would contain a plurality of preset compliance rules corresponding to various governance controls applicable to entity data 9 contained within the entity database 18.
  • a rules database 20 which would contain a plurality of preset compliance rules corresponding to various governance controls applicable to entity data 9 contained within the entity database 18.
  • the various software components 30 contained within or operative upon the web site system 15 will be various database maintenance components including a software component 19 for the administration of the entity database 18, and a rules database software maintenance component 21 which is used to access and/or maintain the rules database 20.
  • Other unrelated databases or software may also be resident on the server computer. 5
  • the web site system 15 allows users 8 to enter and maintain entity data 9 with respect to one or more subject entities 1 into the central entity database 18.
  • the system 15 of the present invention can then monitor and/or enforce the compliance of the subject entities I in question with various internal or externally imposed governance controls each of which was codified in a 0 compliance rule within a rules database 20. Where the compliance or noncompliance of the subject entity 1 thereto with a particular applicable compliance rule and its associated governance control was detected by applying the parameters associated with the compliance rule in question to the entity data 9 stored within the entity database 18, various reporting functions or other actions could be triggered. S
  • the user 8 accesses the governance compliance monitoring web site of the present invention 15 using a standard web browser 14 and browsing protocol to communicate with the Web server 17.
  • the user 8 is able to interact with the system 15 of the present invention o from the browser 14.
  • the user 8 could, by way of various forms or data served between the browser 14 and server 17 enter and/or validate various F&K 2210-05-01
  • the web site system 15 could store the new or revised entity data 9 to the entity database 18 for subsequent use in the remainder of the system.
  • the system 15 of the present invention would trigger an alert or notification to one or more selected users 8 of the system 15 with respect to that particular subject entity I, or other functions or workflows could be triggered b> the detection of such a condition - such notifications or other workflow steps are contemplated as the predefined workflow steps which might be associated with the compliance rules stored within the rules database.
  • Various workflows are envisioned such as are outlined in further detail elsewhere herein, including the automatic notification of particular users 8 of the system 15 upon the detection or occurrence of a particular event or condition in the entity data 9 stored within the entity database 18 with respect to a particular subject entity 1.
  • Figure 1 shows three user computers 13, but it will be understood that any number of user computers 13 could be used to access the web site system 15 of the present invention and the only real limitation on the number of user computers 13 which could be used at one time to access the server or web site 15 of the present invention would be related more to the bandwidth available on the Internet or alternatively related more to the external serving or connection capacity of the server 17 rather than to any fixed number of user computers 13 and that any number of user computers 13 is contemplated within the scope of the present invention.
  • the corporate governance compliance system 15 of the present invention could also be a proprietary or closed computer network system through which users could enter data into a central entity database hosted on the system of the present invention, and that either publicly available Internet web site systems or alternatively other types of networked computer implementation of the method of the present invention are both contemplated within the scope hereof.
  • governance monitoring or enforcement There are various specific types of data capture and monitoring functions which it is contemplated fall within the umbrella of governance monitoring or enforcement.
  • the following sections are intended to outline in further detail some of the types of governance enforcement functionality which are contemplated to be possible based on a system in accordance with the present invention which has effectively captured or is used to maintain the corporate record, and upon which entity data other various business-related functions can be driven or based.
  • the entity database 18 would contain the entity data 9 with respect to one or more subject entities 1 and their related parties 2.
  • the server 17 of the web site system 15 of the present invention includes software 30 which, through various components, will carry out the administration and operation of the method and system of the present invention.
  • One aspect of the computer program/transaction processor instructions 30 could be an entity database maintenance component 19, which would be responsible for the upkeep of records in the entity database 18 pertaining to various types of entity data 9 related to subject entities 1.
  • the entity database 18 would be stored in the memory of the server 17 and the entity database maintenance component 19 could be any software component capable of accessing and administering this database 18. It will be understood that the precise structure of the database 18 could be any type of database structure which could be administered by a software component 19 in the server 17 and all types of data structures are contemplated within the scope of the present invention.
  • entity database maintenance component 19 could be to maintain or record any changes or additions made to records in the entity database 18 as a result of or during the various data entry or update transactions performed by users of the web site system 15. As well, the entity database maintenance component 19 could be responsible for serving information from F&K 2210-05-01
  • the entity database 18 either to other software components within the server 17 or to other network components or computers.
  • the information which might be contained within the entity database 18 might include the s following:
  • entity data 9 related to one or more subject entities 1 ;
  • entity data 9 related to the nature of relationships between more than one related o subject entity 1 ;
  • entity data 9 This is intended as only a demonstrative listing of the types of entity data 9 which could be saved 0 within an entity database 18 as contemplated within the scope of the present invention. It is contemplated that any type of entity data 9 which was required for the purposes of recordkeeping, maintenance and/or monitoring of governance compliance of a particular entity could be kept within the entity database 18.
  • the entity database 18 and the entity database maintenance component 19 might either be resident upon the server 17 or alternatively might be resident upon another computer system which was accessible by the server 17.
  • the entity database 18 may have a fixed table structure and design, or alternatively might be o customizable or customized by other software components within the server 17 or by the entity database maintenance component software 19 to adjust the nature or quantity of entity data 9 F&K 2210-05-01
  • the table structure of the entity database 18 could either be designed so as to contain all of the fields which might possibly be needed in any circumstance with respect to each subject entity 1 which might be loaded therein, and those fields could just be optionally accessed by the system 15 for data storage purposes as it should be determined that those were necessary, or alternatively the system could be devised to "on-the-fly" add fields or tables to the database with respect to a particular type of subject entity 1. to capture and maintain the entity data 9 kept in respect of that particular subject entity 1.
  • the system of the present invention could provide by way of its user interface the ability for a user 8 to adjust or modify the types of entity data 9 being kept by the system 15 of the present invention in respect of one or more subject entities 1.
  • a user 8 might wish to have the system of the present invention simply maintain or track some additional business information for them in addition to the entity data 9 which was required for the implementation or practice of the compliance enforcement method of the present invention.
  • the system could allow the user 8 to create additional fields in the entity database 18 and specify validation or requirement rules or exceptions with respect to those particular fields.
  • that added entity data 9 might either be maintained within the central entity database 18 or it will also be understood that a separate data structure could be contained either within the entity database 18 or elsewhere within the server 17 and its associated content repositories which could contain that added or nonessential entity data 9.
  • the entity database maintenance component 19 could either be a stand-alone software component or could form a part of a single larger software system 30 resident upon or accessible and executable by and upon the server 17.
  • Figure 2 demonstrates one embodiment of a data structure for an entity database 18 which would potentially be a relational database with multiple tables or repositories for different types of entity data 9. again dependent upon the determination that certain types of entity data 9 would need to be captured or maintained with respect to a particular subject entity 1 or its related parties.
  • the structure shown in Figure 2 might still be referred to by one skilled in the art as a unitary data structure but it is shown in this fashion for the purpose of demonstrating a relational database approach to the construction of an entity database 18 in accordance with the present invention).
  • FIG. 2 there is shown a main entity database 18, in which it is contemplated that the basic identifying information with respect to the various subject entities 1 monitored on the system would be resident or contained. There are then shown a plurality of additional tables within which various types of entity data 9 could be stored in respect of one or more subject entities 1 associated with the system 15 of the present invention.
  • the next table shown in Figure 4 beyond the related party entity data structure shown at 18G is a table in which entity data 9 would be stored in respect of corporate subject entities 1 - specifically there is shown a table 18A in which various types of entity data 9 specific to corporations could be stored.
  • a table 18A in which various types of entity data 9 specific to corporations could be stored.
  • the entity data 9 could be stored in respect of either home jurisdiction information, dependent upon the home jurisdiction of the corporate subject entity 1 (18AA), or there is also shown a table within which information 9 pertaining to the extra-jurisdictional business activities of a subject entity 1 could be stored as was determined applicable (18AB).
  • extra tables existed for storing shareholder or director information although those people might be set up as related parties in the related parties table 18G, and linked across to the corporate entity data structure 18A as appropriate.
  • Shown next at 18B is a separate table within which partnership information could be stored if a subject entity 1 was a partnership.
  • the data structure contained one or more subordinate tables or structures within which additional data could be stored including information pertaining to the members of the partnership, although again members of the partnership would likely be related parties represented within the related parties data structure 18G.
  • These two tables 18 A and 18B, in respect of corporate or partnership subject entities 1, will be understood to be only two types of entity structure specific data structures which could be resident within the entity database 18 of the present invention and it will be understood that any number of different modifications or structures will be obvious to one skilled in the art which are all contemplated within the scope of the present invention.
  • I 8C Shown next at I 8C is a separate table in which entity data could be maintained for subject entities which were publicly traded entities, as those would have different information capture and reporting or compliance requirements.
  • table 18C has been labeled as a securities entity data table.
  • Tt may also be the case that independent of entity structure, certain jurisdictions required certain data to be captured and recorded - a table 18D within which such jurisdiction specific data might be captured is demonstrated in the Figure.
  • Figure 2 finally demonstrates two additional customization aspects of the contemplated system.
  • ISE custom entity data structure
  • Customized compliance rules or compliance and monitoring settings could be kept in a custom compliance rules section 18F of the entity database 18.
  • the contents of 18F might alternately be resident in the rules database 2 outlined further below.
  • the rules database 20 would contain preset compliance rules 12 with respect to the different types of subject entities 1 in respect of whom the system of the present invention would be used, and internal or external governance controls applicable to the entities in question.
  • the rules database 20 may have a fixed table structure and design or alternatively might be customizable or customized by other software components within the server 17, if it were necessary to make adjustments to the table structure or database designed to accommodate particular types of custom compliance rules, either internal or external in nature.
  • the server 17 of the web site system 15 of the present invention includes software which through various components can carry out the administration and operation of the method and system of F&K 2210-O 5 -Ol
  • the present invention including a rules database maintenance component 21 which would be responsible for the upkeep of records in the rules database 20, pertaining to various types of compliance rules 12 related to subject entities 1 in their related parties 2.
  • the rules database 20 would be stored in a memory of the server 17 and the rules database maintenance component 21 5 could be any software component capable of accessing and administering this database 20. It will be understood that the precise structure of the database 20 could be any type of database structure which could be administered by a software component 21 in the server 17 and that all types of data structures are contemplated within the scope of the present invention.
  • One function of the rules database maintenance component 21 could be to maintain and record any changes or additions made with respect to compliance rules stored within the rules database 20 as a result of or during the update or changes of various legislative regimes or regulatory schemes to which various types of subject entities 1 might be subject.
  • the rules database maintenance component 21 could be responsible for serving information from the rules s database 20 either to other software components within the server 17 or to other network components or computers.
  • any type of compliance rules 12 which were required for the purposes of assessing the compliance of various subject entities I with the necessary governance controls o applicable to that subject entity I could be kept within the rules database 20 and that any necessary adjustments to the scope or format of such a database and/or its supporting software components are contemplated within the scope of the present invention.
  • the information which would be stored within the rules database 20 with respect to each compliance rule 12, corresponding to a governance control applicable to s some subject entity I would include at least one selection parameter, which would be the necessary information or formula to be used in conjunction with entity data stored in the entity database with respect to a particular subject entity to determine whether or not that particular compliance rule and its associated governance control was applicable to the subject entity in question, as well is at least one compliance parameter which could be used in comparison to her o along with entity data stored within the entity database with respect to the subject entity in question to determine the compliance or noncompliance of that subject entity with the related F&K 2210-O 5 -OI
  • Each compliance rule 12 is stored within the rules database 20 would have at least one predefined wo ⁇ kflow-step associated wrtrt it wh-ich- weukJ -al3O -be stored- with in the rules database 20 in respect of that compliance rule 12.
  • the predefined workflow step is contemplated to be anything from the details of a notification or alert process upon a s determination of a compliance result with respect to a particular subject entity and a particular compliance rule 12, through to or in addition to more elaborate workflow steps or items which might be enabled by or facilitated by the system of the present invention including upon the detection of a certain compliance result generating certain information or documentation through the system 15, sending out third-party notifications or information in an automated process, or o even upon detection of a certain predetermined compliance result in initiating the transfer of certain entity data 9 or other calculated information based on such entity data and the compliance rule in question to an external computer system.
  • the rules database maintenance component 21 might then also potentially have the capability to s accept and properly format from a user 8 accessing the web site 15 of the present invention through their browser 14, the parameters required to create additional records in the rules database 20 which would codify additional governance controls, either internal or external, which the user 8 wished to use in respect of one or more subject entities 1.
  • Tt might also be the case in certain circumstances the system allowed for customization of records in the rules 0 database 20 with respect to how they would be applied in respect of an individual subject entity 1 , so that even if the rule itself could not be adjusted in circumstances in which it was not desirable to provide that functionality, the actions triggered or undertaken by the system upon detection of a positive or negative result of the application of that particular compliance rule 12 to the entity data 9 in question could be adjusted by a user 8 with the appropriate security s clearance or settings.
  • Tn a circumstance where the system allowed for the customization of compliance rules 12 stored within the rules database 20.
  • the customizations which were applied to various rules 12 within the rules database 20 in respect of a particular subject entity 1 by a user 8 with the proper editing 0 privileges in respect of that subject entity 1 could either be stored in additional tables or records within the rules database 20, or in a supplemental data structure or elsewhere on the system of F&K 2210-O 5 -Ol
  • Tt will even be foreseen that in certain circumstances, compliance rule customizations could be stored in respect of a particular subject entity 1 within the entity database 18.
  • one of the major benefits of the system of the present invention is the fact that the actual compliance rules 12 within the rules database 20 have been preprogrammed or pre-created for use by users 8 of the system in respect of one or more subject entities 1 in respect of which those users 8 are responsible for data input or maintenance, it will be foreseen that allowing the user 8 to customize the parameters or predefined workflow steps associated with the application of one or more compliance rules 12 from the rules database 20 will be one major aspect of the system of the present invention.
  • FIG. 3 there is shown one embodiment of a rules database 20 in accordance with the present invention.
  • Figure 3 shows a main rules database 20 with a number of subordinate tables.
  • the rules database 20 will contain all of the necessary information and parameters to apply various compliance rules 12 to entity data 9 contained within the entity database 18 in respect of one or more subject entities 1.
  • selection parameters and compliance parameters which would allow for the actual application or testing of various compliance rules 12 against data contained in the entity F&K 2210-O 5 -Ol
  • the rules database 20 would contain in respect of each compliance rule 12 therein any necessary information regarding predefined workflow steps to be triggered by the system 15 of the present invention upon the detection of either a positive or negative compliance result in application of one or more compliance rules 12 to entity data 9 contained within the system in respect of a subject entity 1.
  • the table structure of the rules database 20 there could either be a single table containing all of the necessary information in respect of all of the compliance rules 12 programmed into the system 15, or alternatively there may be separate tables containing information pertaining to different types or sets of compliance rules 12 related to different types or sets of internal or external governance controls applicable to one or more subject entities. Any type of a data structure accomplishing the objective of allowing for the storage of the necessary information to apply various compliance rules 12 to the entity data 9 in respect of one or more subject entities 1 of one or more legal types maintained by the system 15 of the present invention is contemplated within the scope hereof.
  • compliance rules 12 As has been outlined elsewhere herein it is contemplated that one major determining factor in the type or nature of compliance rules 12 applicable to a particular subject entity 1 is the legal entity structure of that entity 1. As such there would be different sets of compliance rules 12 applicable to co ⁇ orations as subject entities I versus partnerships or other structures. Shown in the Figure with respect to the rules database 20 there is one table shown at 2OA which contains compliance rules pertaining to corporations.
  • a partnership compliance rules table 2OB which could contain the necessary information to apply partnership specific entity related compliance rules 12 to a partnership subject entity I and its entity data 9, and that table 2OB could also contain the necessary trigger or action information to allow for the system 15 of the present invention to react to the application of various compliance rules 12 to the entity data 9 in respect of a subject entity 1 which was a partnership.
  • the corporation from one state or province may be subject to different governance controls and compliance rules 12 the corporation from another state or province. There may also be some overlap in some of the compliance rules 12 between adjacent or multiple jurisdictions along with rules 12 that are exclusively applicable to corporations resident in our doing business in those particular jurisdictions. It will be understood that the data structure of the rules database 20 can accommodate these different sets of compliance rules 12 in respect of particular entity types either by the addition of further tables to the database or alternatively by the addition of further identifying information to compliance rules 12 and their related action items stored within the rules database 20 so as to delineate for the sake of the system which compliance rules 12 are applicable to entities of which type and from which jurisdiction.
  • Tt is also contemplated that the system 15 and the rules database 20 could similarly accommodate variations in compliance rules 12 in respect to particular types of subject entities 1 based on other factors beyond the entity type or status, or the jurisdiction in question and that similarly any modifications to the scope of the data which would be contained in the rules database 20 in this respect and any necessary but obvious attendant modifications to the programming required to maintain or applied these different compliance rules 12 is all contemplated within the scope of the present invention as well.
  • Tn respect of the table of corporate compliance rules 2OA shown in the rules database 20 there are also demonstrated in the Figure to subordinate tables or data structures which include home jurisdiction corporate compliance rules, shown at 20AA, or extra jurisdictional compliance rules shown at 20AB.
  • these two additional sets of compliance rules 12 could be selectively applied to the entity data 9 in respect of certain subject entities I in respect of which it was determined that they would apply.
  • custom compliance rules table 2OC in the Figure.
  • Tt will be understood that the data structure demonstrated in Figure 5 is simply shown in a demonstrative fashion to outline one way that the data might be structured within a rules database 20 in accordance with the system and method of the present invention. It will be understood that any data structure in a rules database 20 which accomplishes the goal of allowing for the storage of pre-coded compliance rules 12 which can be determined to apply, and can be applied, to the entity data 9 in respect of one or more particular subject entities I to be maintained or monitored by the system 15 of the present invention is contemplated to be within the scope of the present invention.
  • Tt will be understood that the compliance rules 12 as codified in the rules database 20 in accordance with the present invention would simply need to have sufficient information stored in respect thereof to allow for the application of the particular compliance rule 12 in question to the entity data 9 stored ⁇ vith respect to a particular subject F&K 2210-O 5 -Ol
  • the compliance rule 12 might also then have action or trigger items associated there with, either stored in the rules database 20 or stored in a separate event triggers database or the like, which outlined actions or reporting to be triggered by the system 15 of the present invention upon the detection of certain results in the application of the compliance rule 12 to the entity data 9 in respect of a subject entity 1 to which that particular rule was applicable.
  • rules database 20 and the rules database maintenance component 21 might either be resident upon the server 17 of the web site system 15 the present invention, or alternatively might be resident upon another computer system which was accessible by the server 17.
  • rules database 20 and the entity database 18 could be combined into a single database or data structure rather than being resident in the server 17 as two separate databases potentially requiring more than one database maintenance component.
  • the integration of the rules database 20 and the entity database 18 into a single database or data structure would be easily adjusted or accomplished by one skilled in the art of database design, the combination of those two database functions into a single data structure is also contemplated to be within the scope of the present invention.
  • the rules database maintenance component 21 could either be a stand-alone software component or could form a part of a single larger software system 30 resident upon or accessible and executable by and upon the server 17.
  • the system of the present invention can operate in either a "passive” or in an "active” fashion with respect to the application of various compliance rules 12 to the entity data 9 with respect to a subject entity I .
  • What is generally speaking intended or contemplated in the system of the present invention where it is operating in a "passive” fashion is that the web site system 15 of the present invention would effectively apply various compliance rules 12 from the rules database 20 to the entity data 9 stored within the entity database 18 only upon triggering of the compliance assessment step by a user 8 interacting with the web site 15 of the present invention.
  • Figure 4 demonstrates one embodiment of the method wherein the system would operate in a "passive" fashion as outlined above.
  • Step A in Figure 4 is that a user 8 would log onto the system 15 of the present invention via their browser 14.
  • the next step which is shown at letter B in the Figure is an authentication step.
  • the authentication step would provide not only a security level with respect to maintaining the integrity and/or confidentiality of the entity data 9 contained within the system 15 but would also allow the user 82 by virtue of use of the proper login credentials to access the entity data 9 with respect to the proper subject entity 1 , since one user 8 might be responsible for or have access to the entity data 1 with respect to more than one subject entity.
  • the user 8 could either through the authentication process or in a subsequent step identify the subject entity 1 and/or related parties 2 F&K 2210-05-01
  • the compliance assessment step would involve assessing the compliance of the subject entity in question with each of the selected compliance rules which were active compliance rules , which had been selected to be applicable to the subject entity based on the entity data contained within the entity database and the selection parameters associated with that particular compliance rule in the rules database, and which were selected to be assessed during that particular iteration of the compliance assessment step either automatically or by the user.
  • Steps E and F If the system 15 were programmed to trigger any other predefined workflow steps beyond the reporting of the results of a compliance assessment to the user 8. that step could be inserted before the end of the process as well.
  • Every selected compliance rule which was applicable to a particular subject entity would be an active compliance rule every time the compliance assessments step of the method of the present invention was conducted, whereby every time that the compliance assessment step was initiated, every compliance rule which was a selected compliance rule in so far as it was selected based on F&K 2210-05-01
  • the entity data and the selection parameters associated with the compliance rules in question would be considered or assessed for compliance purposes every time that the compliance assessment step was conducted.
  • certain compliance rules only needed to be considered at that time, meaning that with respect to the particular iteration of the compliance assessment step in question the active compliance rules would represent only a subset of the selected compliance rules which themselves represent a subset of the total compliance rules contained within the rules database, and the compliance assessment step in that particular iteration would only assess the compliance of the subject entity with a smaller number of selected compliance rules, since in that circumstance the active compliance rules would represent less than the complete number of selected compliance rules.
  • a compliance agent software component or the like resident on the system 15 of the present invention which would on an ongoing basis either on a time based routine or alternatively based upon the detection of any changes in the entity data 9 stored within the system 15 of the present invention automatically conduct the compliance assessment step of the method of the present invention with respect to one or more particular subject entities in an automated or agent fashion.
  • a compliance agent software component or the like resident on the system 15 of the present invention which would on an ongoing basis either on a time based routine or alternatively based upon the detection of any changes in the entity data 9 stored within the system 15 of the present invention automatically conduct the compliance assessment step of the method of the present invention with respect to one or more particular subject entities in an automated or agent fashion.
  • Figure 5 demonstrates an active embodiment of the compliance assessment step of the method of the present invention.
  • the active method which is shown in Figure 5 does not rely on an operator initiation of the compliance assessment step. Rather there is shown at Step A in Figure 5 the automatic triggering of the compliance assessment step by a compliance software agent or the like which would be a part of the general software components 30 resident upon the server of the web site system 15 of the present invention. Tt is contemplated that what would be done in an automated or active embodiment such as this would be that a compliance software agent or other software component would trigger or perform the compliance assessment step of the method of the present invention with respect to a particular subject entity.
  • the compliance software agent or other software components responsible for the periodic review of compliance of the subject entity or entities 1 resident on or monitored by the system 15 of the present invention could be triggered in a number of different ways.
  • the system might for example be programmed to have such a compliance software agent component or the like conduct the compliance assessment step on a time determined basis. Tt may be determined that the system should execute the compliance assessment step on a daily basis, weekly basis or some other predetermined basis. It might also be the case in another embodiment that particular subject entities I could select a particular time frequency within which they would like the compliance assessment step to take place.
  • the compliance assessment step could be triggered upon the detection of the entry of a change or update to any of the entity data 9 with respect to a subject entity 1. It will be understood that any number of different types of trigger conditions could be conceived, and that all such modifications or F&K 2210-05-01
  • the comparison software agent could either in its detection of a triggering condition or event run the compliance assessment step in respect of all of the subject entities 1 contained within the entity database in a single pass, or alternatively the active model could engage in multiple schedules or multiple different types of trigger conditions or events could be used to trigger the compliance assessment step with respect to a particular subject entity 1 at separate times or in separate fashions rather than in one single pass. Both such approaches are contemplated within the scope of the present invention.
  • the present invention it is the intention of the present invention to offer effectively a governance compliance monitoring and enforcement web site system and method which by virtue of its ASP model will provide a cost-effective solution which can be used by enterprises of various types to enforce the compliance of their organizations or entities with various governance controls placed thereon either by internal or external means.
  • the system of the present invention is scaled to host and/or monitor entity data 9 with respect to a plurality of subject entities 1, rather than for only a single entity 1. It will be understood that the hosting of any number of subject entities 1 and the entity data 9 related to those entities I and their related parties 2 is contemplated within the scope of the present invention.
  • the subject entities 1 which would be monitored by the system of the present invention could be of numerous different legal entity structures or types.
  • the first data function which a user would encounter would be the set up of a new subject entity on the system.
  • a new user could effectively access a "self-service" governance monitoring and F&K 2210-O 5 -OI
  • enforcement system in accordance with the present invention and could set up the necessary records on the system of the present invention to allow for the monitoring of a subject entity 1 on behalf of that user.
  • FIG. 6 there is shown a flow chart which demonstrates one embodiment of a data entry process via the system of the present invention, related to die setup of a new subject entity 1 for monitoring by the system 15 of the present invention.
  • the first step in the process A would be the accessing of the web site 15 by a user 8 via their browser 14, and upon the selection of the appropriate link or content in the web site 15 via the browser 14 the user 8 would be directed to a web form or web application through which the necessary information for the creation of a new subject entity 1 on the system of the present invention would be presented to the user 8 for them to fill in or complete.
  • Entry of the initial entity data 9 with respect to a new subject entity 1 is shown at Step B in-the Figure.
  • the web form or web application which might be presented to the user 8 to create a new subject entity 1 on the system 15 of the present invention might in fact consist of more than one form or page, since the first form or page presented to the user 8 might capture basic information related to the subject entity I itself, and then there may be following forms or pages which need to be filled in based upon the testing of the type of information provided by the user 8 in that first basic form with respect to the subject entity 1.
  • the system 15 may present different screens to the user for the entry of different required entity data 9 related to a corporation, than if the entity 1 in question was a partnership, joint venture, proprietorship or a business venture of some other particular legal structure.
  • Step B The filling in of the basic entity data 9 with respect to the entity 1 in question is shown at Step B in the flow chart of Figure 8.
  • Step C a data validation or error checking step, shown at Step C. with a view to verifying the integrity of the data against previous contents of the entity database 18, as well as to ensure that the entity data 9 F&K 2210-05-01
  • One of the flexibilities of the system of the present invention is that the system could, by the proper coding of various internal or external governance control regimes into the rules database 20. accommodate the proper data entry and capture as well as the proper governance monitoring of various types of entities in a single database application by virtue of the multiple entity design which is contemplated for the database in question. Specifically, whether it be different rule sets or control regimes which were stipulated by the legal structure of a subject entity 1. the jurisdiction of operation of a subject entity 1. or any number of different general classifications of subject entities 1. all of these different regimes could be programmed into the rules database 20 so that a single system could be used to monitor the compliance of the data in respect of various subject entities I regardless of their qualification under these categories.
  • this decision block shows that in the case of a corporation as the subject entity 1, additional entity data 9 could be collected in respect of shareholders, directors and officers of the corporation, versus if the subject entity I was a partnership or if the subject entity I was some other type of a business structure there might be other types of information which needed to be collected.
  • the types of information which are demonstrated in this Figure with respect to each different entity type are simply intended to be demonstrative of the type of a process which could be applied by the system of the present F&K 2210-O 5 -Ol
  • Step K in the Figure is the validation or error checking of any additional entity data 9 which has been captured with respect to the subject entity 1. That step also shows the writeback of that information to the entity database 18 once it s has been validated.
  • Step L the software components 30 within the system of the present invention could determine whether or not any additional entity data 9 was required to be entered by the user 8 to complete the setup of the subject entity I . For example, it might be determined that in respect of o a particular type of subject entity I in respect of which certain information had been entered by the user 8, that additional information was required in order to properly monitor the relationship between that entity 1 and another entity 1. Once it was determined that all of the necessary entity data 9 with respect to the new subject entity 1 had been entered, the data setup routine could be closed, as shown at Step M in the Figure.
  • the workflow shown in this Figure is only s demonstrative of one process by which a user 8 of the system 15 in accordance with the present invention could enter the necessary set up information and entity data with respect to a new subject entity 1 which it was desired to begin to monitor in accordance with the compliance monitoring system of the present invention.
  • One variation which is foreseen is that while the Figure shows a couple of separate data entry and database write steps, it will also be understood o that the software application or components used to capture all of the necessary entity data 9 with respect to a new subject entity 1 could capture all of the potential entity data 9 in advance of writing any of that information to the entity database 18.
  • the system of the present invention could trigger the rules elections step of the method whereby the o new entity data would be compared to the rules database to identify applicable or selected compliance rules. Following the completion of such a rule selection step either during or F&K 2210-O 5 -Ol
  • the system might also trigger a partial or complete compliance assessment step to review whether or not the entity data with respect to the subject entity in question was in compliance with the applicable compliance rules.
  • One of the key aspects of the system of the present invention would be the automation of the rule selection step wherein the compliance rules which applied to a particular subject entity are selected based upon the comparison of one or more selection parameters with respect to each compliance rules stored within the rule database against entity data pertaining to the subject entity in question from the entity database.
  • multiple layers or sets of compliance rules 12 may apply to different subject entities 1.
  • a particular set of corporate legislative compliance rules 12 from the rules database 20 were selected based upon the jurisdiction of incorporation of the subject entity 1 , but it may also be the case that the particular corporation in question was a reporting issuer under securities legislation in one or more jurisdictions and that on that basis additional sets of securities compliance rules 12 which were preprogrammed in the rules database 20 would also be selected for application to the subject entity 1.
  • This example is intended to demonstrate that individual compliance rules 12 or multiple compliance rules 12 in sets which were preprogrammed in the rules database 20 could be applied in aggregate to a subject entity 1.
  • Individual compliance rules may be parsed to a very basic level so that they effectively each comprised very simple and straightforward formulas or binary tests which could be applied to entity data 9 contained within the entity database 18.
  • the aggregation of multiple compliance rules 12 on this basis into sets would allow for the system to, either automatically or with user assistance,identify selected compliance rules 12 from the rules database 20 based upon a lesser number of data validation or verification tests being conducted on the entity data 9 contained in F&K 2210-05-01
  • the system might initially determine that a set of legislative corporate governance compliance rules 12 related to the jurisdiction of incorporation of the subject entity 1 for the province of Saskatchewan were applicable, and that there were sets of compliance rules s 12 in relation to both the provinces of Ontario and British Columbia related to corporations or other entities which were extra-provincially created but carried on business in those provinces which also needed to be applied to the particular subject entity 1 in question and the entity data 9 associated therewith in the entity database.
  • the system could automatically deselect the extra-provincial governance controls in respect of the province of British Columbia as well as at the same time adding the compliance rules 12 associated with the governance controls with respect to the province of Quebec to the aggregate of compliance rules 12 from the rules database 20 which needed to be applied in 5 respect of the particular subject entity I and monitored by the system 15 of the present invention.
  • the ability of the system and method of the present invention to automatically determine the applicability or inapplicability, as the case may be, of particular governance controls to a subject entity, and by extension thereof to determine the applicability or inapplicability of certain o compliance rules 12 stored within the compliance rules database 20. depends upon the proper selection of selection parameters which can result in the application or removal from F&K 2210-O 5 -Ol
  • One of the major benefits of the system and method of the present invention is that in addition to providing a means to actively monitor the compliance of a subject entity 1 with various internal or externally imposed governance controls, the system and method of the present invention will also allow on an ongoing basis for the creation of an up-to-date data repository of constitutional or governance related information with respect to the subject entity 1 which can act as a record for use by interested parties and/or for use by the entity itself in various functions or purposes.
  • FIG. 7 there is shown a flow chart of one embodiment of a data entry transaction in accordance with the system of the present invention, whereby a user 8 could enter new or updated entity data 9 with respect to an existing subject entity 1 already set up in the system.
  • the method shown in the Figure is a method which would be understood to one skilled in the art of database design or web site design whereby data resident in a database, in this case entity data 9 resident within an entity database 18, could be updated by a user 8 via a web site 15 and a user browser 14. Updating database contents via a browser interface in a client server environment will be understood to all skilled in the art.
  • the first step in the data flow demonstrated in Figure 7, shown at Step A. is the logon of the user 8 to the web site 15. Tn logging on to the web site 15. the user 8 would provide the necessary security credentials or otherwise to be authenticated or identified to the system 15 of the present invention, shown at F&K 2210-O 5 -Ol
  • Step B The logon credentials provided by the user 8 might automatically identify to the system 15 the subject entity 1 in respect of which the user 8 was authorized or wished to edit the entity data 9 on the system of the present invention, or alternatively if the user 8 was registered on the system 15 to access the entity data 9 for more than one entity 1.
  • a menu might be presented to the user 8 via the web site system 15, and through which the user 8 could specify the subject entity 1 in respect of which it was desired to either edit or upload additional entity data 9 to the entity database 18.
  • the user 8 would identify the desired subject entity I in respect of which it was desired to enter updates to the entity database 18, shown at Step C.
  • Step D Shown at Step D is the entry of the updates to the entity data 9 in question.
  • the web site system 15 of the present invention would serve the necessary data entry forms or the like to the browser 14 of the user 8, by which the user 8 could enter or edit the entity data 9 in question.
  • the system 15 could either loop back to seek alternate update information if the validation or error checking step failed, but if the information which had been provided by the user 8 passed any validation tests which it was subjected to it could be then written to the entity database 18, shown at Step F.
  • Step G is the triggering of the compliance workflow step by the system 15 based upon the recordal or posting of an update to the entity data 9 in respect of a particular subject entity 1 in the entity database 18.
  • the system could be programmed to automatically conduct a new compliance review upon the detection or completion of the writing of an entity data 9 update to the entity database 18.
  • the rule selection step might also be triggered by the writing of an entity data 9 update to the entity database 18.
  • the triggering of a rules selection step or a compliance assessment step based on the detection of data updates is an optional step, and the compliance assessment could also take place at a later time either in a periodic scheduled automatic review or alternatively in a triggered review which was triggered based upon a manual input from the user 8 of the system 15.
  • the ability of the system of the present invention to validate entity data 9 which is entered into the system for storage in the entity database 18 is key.
  • the system of the present invention can maximize the accuracy of the types of compliance rules from the compliance rules database 20 which were applied to the particular subject entity I in question.
  • the accuracy of the data would be essential.
  • Error checking or validation of entity data 9 or entity data updates could take many different forms and could be conducted to many different thresholds. Data validation techniques will be understood by those skilled in the art of computer programming and database design.
  • the inclusion of a rigid security model in the system 15 of the present invention will enhance its value and utility. For example, even from a workflow point of view, the system 15 could be set up so that only particular users 8 had data editing or entry privileges with respect to a particular subject entity 1. and that other users 8 were potentially allowed to view data with respect to that subject entity I but not allowed to make any changes.
  • One of the benefits of the system of the present invention is the ability to in certain implementations of the system capture a complete audit trail with respect to changes which have been made to the data over time. It may be desired for example to have a system which will capture the identity and details of individuals who may have updated or changed certain records in the system at certain periods in time. Implementation of an audit trail component to the database system of the present invention would be easily conceived by one skilled in the art and is intended to be contemplated within the scope of the present invention. And may also be desirable in certain circumstances to have a historical audit trail outlining the compliance results determined by the system with respect to one or more subject entities from time to time, over time.
  • Another aspect of the web site system 15 of the present invention which is foreseen to offer functional advantages to the users of the system 15 of the present invention would be the ability of the system 15 to automatically create certain entity data 9 in the entity database 18 based upon either the compliance rules 12 contained in the rules database 20 and/or the entity data 9 already contained within the entity database 18. Effectively it would be possible to program the system 15 of the present invention to automatically create certain updates or new entity data 9 for storage to the entity database 18 in respect of particular subject entities 1 on a periodic basis or as needed. For example, there may be certain types of entity data 9 which need to be maintained in the entity database 18 primarily tor the sake of recordkeeping.
  • the system could either be programmed to automatically recalculate this information for storage as either modified entity data 9 or new entity data 9 for storage to the entity database 18 in respect to one or more subject entities 1 or their related parties 2.
  • the far reach of the ability of the system 15 to calculate on an ongoing basis or as needed new entity data 9 in an unsupervised fashion for storage to the entity database 18 or for use by other aspects of the system 15 of the present invention will be understood by one viewing the overall functionality of the system, and there are various methods of implementing such a function.
  • a user 8 could log on to the web site 15 via their browser 14 and, provided that they had the appropriate security credentials, access a reporting menu from which they could select from preprogrammed report formats, queries or also specify ad hoc reporting if they wished to do so.
  • the user 8 could logon to the system and in respect of a subject o entity I extract a ⁇ eport with all the details of all the shareholders of the corporation, where the subject entity 1 was a corporation.
  • a report could be extracted which detailed the dates and details of the filings of the last 10 securities documents or regulatory filings with respect to a particular set of compliance rules applicable to that subject entity 1 from the rules database 20.
  • the parameters and details of the reports and the components necessary to extract and formulate reports for serving to users 8 through their browsers 14 could be a part of the general software components resident on the server 17, or alternatively it may be the case that there was a separate reporting engine or the like used. In either case, once the user had selected a report which they wished to view and that selection had been transmitted or communicated back to the server 17 o from the browser 14 of the user 8, the software components in the server 17 could action the creation of the necessary report for serving back to the browser 14 of the user 8.
  • a reporting step such as this would consist of querying the required data from the entity database 18 and/or the rules database 20 as might be appropriate and applying a report format to the extracted data contained in the query.
  • the reports in question could either be preprogrammed onto the system of the present invention 0 so that the software components 30 resident on the server 17 would know what to do to extract and formulate those reports for serving back to the browser 14 of the user 8. or it will also be F&K 2210-05-01
  • an ad hoc query and reporting interface could be provided whereby a user could on an ad hoc basis specify with more detail the nature and format of the data which they wished to extract from the entity database 18 and/or how they wished to have it displayed.
  • the system and method of the present invention can assist an organization or entity in maintaining the compliance of themselves or their entity with various internal or external governance controls by automatically triggering or forcing the occurrence of certain workflows or events upon the detection of certain conditions in the data maintained in the entity database with respect to that individual or the related entity.
  • the software components 30 on the server 17 would be capable of executing the compliance assessment step of the method with respect to at least one selected rule applicable to at least one subject entity either on demand or in an automated fashion, as has been outlined above. It is also contemplated that the compliance rules 12 themselves as stored in the rules database 20 would each include information regarding at least one predefined workflow step to be carried out upon the detection of either the completion or compliance of a subject entity 1 with a particular compliance rule.
  • a compliance monitoring agent software component has been discussed elsewhere in further detail above. Effectively it is contemplated that the system and method of the present invention could include some type of a software agent which could on some periodic or other trigger basis conduct the compliance assessment step of the method of the present invention in respect of one or more subject entities 1 and one or more selected compliance rules. Tn the
  • a compliance agent software component might not only conduct or trigger the compliance assessment step of the method of the invention, but that compliance agent software component might also be programmed to trigger any number of different types of other actions of which the system 15 might be capable including the generation of reports, sending of alerts or any other actions for which the system in question may be enabled.
  • the "active" versions of the method would automatically on some kind of a periodic or other trigger basis detect the arrival of a condition or state at which time a compliance assessment step in respect of a particular subject entity 1 with respect to at least one selected compliance rule applicable to that entity should be conducted.
  • the software of the system 15 of the present invention might include other workflow automation components which would, based upon entity data 9 contained within the system 15, actively conduct certain corporate governance tasks on behalf of the subject entity I in question.
  • the system 15 might identify certain future events which were required to take place based upon the nature or state of the entity data 9 with respect to a particular subject entity I stored within the entity database 18.
  • Actions to be taken as well as conditions within which those actions would be triggered, in respect of a particular type of a compliance rule or governance control, could all be programmed into the rules database 20 is further compliance rules 12.
  • the workflow aspect of the system including details of the types of conditions which would trigger certain workflow steps as well as the details of those workflow steps and cells might also be stored in a separate data structure apart from the rules database 20. Again such matters of database design are all contemplated within the scope of the present invention.
  • Certain compliance rules 12 stored within the rules database 20 might consist of certain timelines or fixed dates at which certain actions needed to be taken by a particular type of subject entity 1.
  • the system could either on a date specific or time specific basis monitor the entity data 9 in respect of that subject entity 1 to ascertain whether or not certain actions had been taken within an appropriate timeframe, or could also in a more extensive implementation based upon dates calculated by the system of the present invention actually trigger various workflows in respect of a subject entity including reminders of compliance deadlines or even triggering certain computer-based tasks to be undertaken at appropriate times.
  • That calendaring component might be a part of one of the other software components discussed elsewhere herein or might be a calendar specific condition monitoring engine or the like which could monitor on a date and time basis the present date and time against all of the outstanding upcoming deadlines in respect of one or more subject entities I hosted by or monitored by the system 15 of the present invention.
  • the various calendar dates or deadlines in this type of an embodiment could either be calculated on an active and ongoing basis based upon the compliance rules 12 from the rules database 20, or the structure of the databases within the system 15 of the present invention could be modified to add a specific table or structure within which upcoming deadlines could be maintained with respect to the subject entities monitored by the system of the present invention and the calendar agent or components would then simply need to monitor a specific table in the database for upcoming deadlines and trigger the appropriate actions based thereon.
  • compliance rule 12 Another type of compliance rule 12 which could be programmed into the rules database 20 and potentially monitored or enforced by the system 15 of the present invention would be a compliance rule or rules 12 related to the routing of corporate or entity data 9 to various parties requiring or entitled to receive such information. For example, where certain types of information or documents were loaded into the system 15 of the present invention as entity data 9 it may be the case that was information to which members of the board of directors of a subject entity 1 were entitled or were required to have and review in advance of a scheduled board of directors meeting.
  • the system could not only be programmed to remind the user or users 8 responsible for creating or uploading that information 9 to the database 18 in the first place, and continue to monitor the submission of that information in a timely fashion, or in advance of a deadline but also then upon the expiry of that deadline or upon receipt of the information which was required to be distributed, send around a notification or otherwise forward copies of that information or data 9 to the individuals in question.
  • the ability to automatically forward and circulate this information using the system 15 of the present invention in fact helps the subject entity 1 to gain or maintain compliance with the various governance controls applicable thereto, beyond just reporting the status or compliance of the entity 1 with the controls or compliance rules 12 in question.
  • the system 15 of the present invention could also be modified to provide effectively a corporate management dashboard or workspace within the web site 15 of the present invention, whereby a user 8 could access via their browser 14 all of the entity data 9 to which that particular individual is entitled with respect to one or more subject entities 1 or the related parties 2 thereto.
  • This type of a management dashboard or workspace could also include a work area within which users 8 could upload or download or view documents or other information contained within the entity database 18 or elsewhere in the content store of the system 15 related to the subject entity 1 in question.
  • the system could provide a document workspace in respect to the subject entity 1 being maintained by the system which would allow for users 8 to upload financial reports or other documents for secure access by entitled users 8.
  • Access permissions could be determined by a class based permission propagation method whereby based upon the attributes assigned to a particular user 8 the appropriate security permissions or security level could be established — i.e. a shareholder of a company could be set by default to access certain areas of the system 15 with respect to the subject entity I in question whereas a member of the board of directors of the subject entity I might have a different security level attached thereto entitling them to further or different information and access privileges to the work area and other aspects of the system of the present invention 15.
  • a permission propagation method which was conducted automatically based upon different attributes assigned to users 8. it would also be possible to provide a specific user interface by which an administrative user 8 with respect to subject entity 1 could set up or adjust the access permissions of different users 8 with respect to the entity data 9 of a particular subject entity I or its related parties 2.
  • system 15 could automatically generate certain reports and potential even file them with the necessary external authorities when it was determined to be required to do so based upon either a compliance result yielded from an iteration of the compliance assessment step of the method in respect of a particular selected rule pertaining to a subject entity. If it was determined for example that, based upon the entry of some new entity data 9 into the system 15.
  • the remainder of the software of the system of the present invention could be programmed to automatically generate a document for signature and manual filing by the appropriate individual associated with the entity 1 in question, or alternatively the system 15 could also be capable of electronically filing that information with the necessary authorities, without requiring any intervention all by the user. Either such approach is contemplated within the scope of the present invention,
  • Another major benefit which is foreseen in the system of the present invention is the fact that the users 8 of the system 15 will always have access to the most up-to-date programming of compliance rules 12, within the rules database 20, without the need to perform those updates or programming adjustments on their own, since the ASP provider of the system of the present invention would keep the rules database up-to-date with respect to at the very least the preset compliance rules programmed in the rules database.
  • the programming of the compliance rules pertaining to those particular governance controls F&K 2210-05-01
  • the up-to-date versions of the compliance rules could be adjusted, and subsequently during another rule selection step or compliance assessment step the up-to-date versions of the compliance rules, reflecting the up-to-date versions of the governance controls in question as well as the up-to-date parameters and action steps associated there with, would be used by the system. It would also be possible to program the system so as to provide the ability for historical or backdated compliance rules 12 to be applied in certain circumstances where that might be deemed appropriate either by the user or users 8, the operator of the system 15 or the purveyors or providers of various governance controls.
  • system and method of the present invention could also assemble a historical record that, in the proper circumstances where data integrity and security was maintained, could be used for enforcement purposes by government or other related parties or authorities.
  • Another aspect of the system and method of the present invention is the ability of the user of this system or method to automatically produce a compliance score or a compliance scorecard for a particular subject entity. It may be the case that in terms of overall comparison of information with respect to various subject entities it was desired to come up with some kind of a formula which would allow for the objective comparison of the compliance or performance of various subject entities with the compliance rules applicable to them.
  • a compliance scoring step could be added to the method of the present invention whereby a preset scoring formula would be applied to the entity data and compliance rules applicable to various subject entities or a single
  • Tt will be understood that in certain cases there may be an independent third-party scoring formula which would be desired to be codified in used for the sake of providing rankings of subject entities who were subscribing to the system of the present invention in accordance with an openly accepted and independently administered or created compliance scoring formula, or it may also be the case that the provider of the system or method of the present invention could design their own ranking or scoring formula to provide a compliance score to various subject entities at all such formulas or approaches to the rendering of a compliance score in respect of the subject entity who has entity data stored within the entity database of the present invention are contemplated within the scope hereof.
  • One of the major benefits to a system such as that offered by the present invention is the autonomous or independent nature of the system insofar as it is offered potentially by a third party information provider rather than being hosted internally by a particular corporation or entity.
  • the parties related to corporations such as banks, financial institutions, governments or other authorities may find the necessary comfort in the integrity of the system to accept the results and data maintained by the o system and/or to provide a means by which there could be a relatively rapid market spreader acceptance of the use of a corporate governance monitoring tools such as this threw out smaller to medium-sized enterprises who otherwise could not afford to make the necessary investment to properly capture and maintain this information.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Human Resources & Organizations (AREA)
  • Operations Research (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Data Mining & Analysis (AREA)
  • Quality & Reliability (AREA)
  • Tourism & Hospitality (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

L'invention concerne un procédé d'aide à la conformité par des entités avec diverses exigences de gouvernance utilisant un système d'information de tiers indépendant. Des données d'entités concernant des entités sont entrées pour le stockage dans une base de données d'entités dans une mémoire d'ordinateur. Une base de données de règles contient des règles de conformité codifiant les contrôles de gouvernance internes ou externes applicables à l'entité en question et des événements de flux de travail prédéfinis seront déclenchés, comprenant la création d'alertes ou d'informations pour des utilisateurs ou des abonnés du système ou la conduite d'autres tâches spécifiques, sur la base de la comparaison de données d'entités spécifiques chargées dans la base de données d'entités avec les règles de conformité et associées aux contrôles de gouvernance à être appliqués à l'entité en question. La nature indépendante du système offre un niveau de confort pour des intervenants reposant sur les données contenues dans la base de données d'entités. L'invention concerne également un appareil et un logiciel pour la mise en oeuvre.
PCT/CA2006/002049 2005-12-16 2006-12-15 Procede et appareil pour surveiller la conformite de la gouvernance d'entreprise WO2007068121A1 (fr)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US75116405P 2005-12-16 2005-12-16
CA002534154A CA2534154A1 (fr) 2005-12-16 2005-12-16 Appareil et methode pour la surveillance d'observation de gouvernance d'entreprise
US60/751,164 2005-12-16
CA2534154 2005-12-16

Publications (1)

Publication Number Publication Date
WO2007068121A1 true WO2007068121A1 (fr) 2007-06-21

Family

ID=38162526

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CA2006/002049 WO2007068121A1 (fr) 2005-12-16 2006-12-15 Procede et appareil pour surveiller la conformite de la gouvernance d'entreprise

Country Status (1)

Country Link
WO (1) WO2007068121A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10699226B1 (en) 2013-12-31 2020-06-30 Governance Sciences Group, Inc. Systems and methods for automatically generating and providing a compliance notification for a docment in response to a compliance request received from an electronic device via a network

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6154731A (en) * 1997-08-01 2000-11-28 Monks; Robert A. G. Computer assisted and/or implemented process and architecture for simulating, determining and/or ranking and/or indexing effective corporate governance using complexity theory and agency-based modeling
US20040181665A1 (en) * 2003-03-12 2004-09-16 Houser Daniel D. Trust governance framework
US20050144022A1 (en) * 2003-12-29 2005-06-30 Evans Lori M. Web-based system, method, apparatus and software to manage performance securely across an extended enterprise and between entities
US20050149375A1 (en) * 2003-12-05 2005-07-07 Wefers Wolfgang M. Systems and methods for handling and managing workflows
US20050197952A1 (en) * 2003-08-15 2005-09-08 Providus Software Solutions, Inc. Risk mitigation management
WO2005106721A1 (fr) * 2004-05-05 2005-11-10 80-20 Software Pty. Limited Logiciel de gestion de prise de commande d'entreprise
US20060095915A1 (en) * 2004-10-14 2006-05-04 Gene Clater System and method for process automation and enforcement
US20060136922A1 (en) * 2004-12-20 2006-06-22 Michael Zimberg System and method for task management of rule geverned tasks

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6154731A (en) * 1997-08-01 2000-11-28 Monks; Robert A. G. Computer assisted and/or implemented process and architecture for simulating, determining and/or ranking and/or indexing effective corporate governance using complexity theory and agency-based modeling
US20040181665A1 (en) * 2003-03-12 2004-09-16 Houser Daniel D. Trust governance framework
US20050197952A1 (en) * 2003-08-15 2005-09-08 Providus Software Solutions, Inc. Risk mitigation management
US20050149375A1 (en) * 2003-12-05 2005-07-07 Wefers Wolfgang M. Systems and methods for handling and managing workflows
US20050144022A1 (en) * 2003-12-29 2005-06-30 Evans Lori M. Web-based system, method, apparatus and software to manage performance securely across an extended enterprise and between entities
WO2005106721A1 (fr) * 2004-05-05 2005-11-10 80-20 Software Pty. Limited Logiciel de gestion de prise de commande d'entreprise
US20060095915A1 (en) * 2004-10-14 2006-05-04 Gene Clater System and method for process automation and enforcement
US20060136922A1 (en) * 2004-12-20 2006-06-22 Michael Zimberg System and method for task management of rule geverned tasks

Non-Patent Citations (7)

* Cited by examiner, † Cited by third party
Title
"Acertus Governance 3.2.2-S Installation Manual", SECURAC INC., 2004, pages 1 - 27, XP003014147, Retrieved from the Internet <URL:http://www.securac.net/ArticleDocuments/Acertus%20Governance%20Installation%20manual3%5B1%5D.2.2-SAP.pdf> *
"Coca-Cola HBC Acertus Governance for Operational", SECURAC CORPORATION. NEWS RELEASE, 15 December 2005 (2005-12-15), pages 1 - 2, XP003014145, Retrieved from the Internet <URL:http://www.riskgovernance.com/press/CocaCola%20HBC_DEC%2015-2005.pdf> *
"Compliance", SECURAC INC., pages 1 - 2, XP003014150, Retrieved from the Internet <URL:http://www.securac.net/ArticleDocuments/Compliance-ISO.pdf> *
"Governance", SECURAC INC., pages 1, XP003014149, Retrieved from the Internet <URL:http://www.securac.net/ArticleDocuments/Governance.pdf> *
"Secura's Acertum Governance Achieves Powered by SAP NetWeaver Status", SECURAC CORPORATION. NEWS RELEASE, 28 April 2005 (2005-04-28), pages 1 - 2, XP003014146, Retrieved from the Internet <URL:http://www.securac.net/Press%20Releases/Securac%2005Apr28%205AP_Acertus%20Governance%20release.pdf> *
ANONYMOUS: "Corporate Governance Guidelines", OFFICE OF THE SUPERINTENDENT OF FINANCIAL INSTITUTIONS CANADA, January 2003 (2003-01-01), pages 1 - 17, XP003014151, Retrieved from the Internet <URL:http://www.osfi-bsif.gc.ca/DocRepository/1/eng/guidelines/sound/guidelines/CGG_Guideline_e.pdf> *
ANONYMOUS: "Governance Dashboard iView", pages 1 - 2, XP003014148, Retrieved from the Internet <URL:http://www.securac.net/ArticleDocuments/Acertus%20Governance%20Dashboard%20iView.pdf> *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10699226B1 (en) 2013-12-31 2020-06-30 Governance Sciences Group, Inc. Systems and methods for automatically generating and providing a compliance notification for a docment in response to a compliance request received from an electronic device via a network

Similar Documents

Publication Publication Date Title
Dowlatshahi* Strategic success factors in enterprise resource-planning design and implementation: a case-study approach
US8799243B1 (en) System and method providing for regulatory compliance
US20080215474A1 (en) Systems and methods for management of intangible assets
US9741078B2 (en) Dashboard interface, platform, and environment for automated negotiation, benchmarking, compliance, and auditing
US20080208873A1 (en) Method for communicating confidential, educational information
US20100250409A1 (en) Computer-implemented method and system for posting journal entries to general ledger
US20130018812A1 (en) System for Regulation of Continuing Education Requirements
US20210358031A1 (en) System and method to create and operate an electronic marketplace of trusted banks for participation in commercial loans too large for an individual bank
US8799117B2 (en) Record retention and post-issuance compliance system and method for municipal bonds
US20210312555A1 (en) Computer-Guided Corporate Financing with Document Generation and Execution
US8352381B2 (en) System and method for reimbursement of tuition expenses
AU2010206013A1 (en) A property scheme management system and method
Council Transaction processing performance council
US11636168B2 (en) System and method of administering and managing experiential learning opportunities
US20080195625A1 (en) Interactive credential system and method
US7467107B1 (en) Web-based system and method for hedge fund compliance
WO2007068121A1 (fr) Procede et appareil pour surveiller la conformite de la gouvernance d&#39;entreprise
Herd et al. Identifying and Reducing Burdens in Administrative Processes
Kotlyar et al. E-filing Asset Declarations
Misra et al. Modelling change management and risk management in a financial organization due to information system adoption
Halaychik et al. Licensing electronic resources in academic libraries: A practical handbook
Brown Investigating Key Elements of Peer Support Programs Focused on Recovery and Reentry in Community-Based Organizations: A Qualitative Implementation Science Study
CA2534154A1 (fr) Appareil et methode pour la surveillance d&#39;observation de gouvernance d&#39;entreprise
Giannozzi et al. Strengthening governance of social safety nets in East Asia
Sarbaugh-Thompson et al. Legislative Oversight of State Government Contracts

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC DATED 30.09.2008

122 Ep: pct application non-entry in european phase

Ref document number: 06840476

Country of ref document: EP

Kind code of ref document: A1

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载