Sarbanes-Oxley Regulatory Compliance

The Sarbanes-Oxley Act (SOX) was signed into law in July 2002. It introduced legislative changes to financial practice and corporate governance regulation. The Sarbanes-Oxley mandate requires organizations within the financial services industry to implement a comprehensive information security program that will protect customer information and provide timely access to reporting information. The Sarbanes-Oxley Act itself is organized into eleven important titles, although section 404 seems to cause most concern (Management Assessment Of Internal Controls).

It is BP Logix’s commitment to provide its clients with the best technology solutions for document management and workflow software. The senior management of BP Logix will make every effort through good technology practices and internal operating procedures to develop and utilize systems, which enable our customers to comply with the Sarbanes-Oxley regulatory requirements.

BP Logix Process Director provides comprehensive security management and auditing features that enable your organization to maintain compliance with the Sarbanes-Oxley mandate.

• User authentication supports your existing compliant security systems (e.g. Windows Domain Security, Windows 2000 Active Directory, LDAP, etc.);
• All instant messages and user notifications are archived and retained;
• Digital rights management allows security permissions and policies to be enforced;
• A pre-defined, automated workflow process provides consistent review, approval and update procedures for documents;
• Archive maintains documents in their native formats, allowing information to be retrieved according to date by authorized users;
• Historical reports maintain every workflow run against a document, showing not only who updated a document, but who reviewed it, what their comments were and who approved the changes;
• Detailed auditing logs provide a complete audit trail of all users’ activities and system events for reporting and audit purposes;
• All security, permission or access changes are audited;
• All document updates and approvals requiring electronic signature are re-authenticated;
• Approval hierarchies can be established for document changes and updates;
• Software upgrades will not modify configuration parameters or settings on the existing system;
• All documents, workflows, permissions, etc. are stored in an enterprise database with documented schema allowing independent access, backup/restore, reporting, and administration.

Home | BPM Software | Workflow Software | Business Rules Engine | Workflow Management | Document Workflow | eForms | Site Map