France

This group addresses GRC issues as they arise within France and affect French multi-national organizations. Participation is welcome both from individuals based in France. and those who have some responsibility for or oversight of such operations.

France
France's Measures on Diversity and Data Protection: The Ten Recommendations of the CNIL (Littler, 2007) resource Agency Guidances Member contributionOCEG Reviewed
The CNIL (the French independent administrative authority protecting privacy and personal data) issued, on May 16, 2007, 10 recommendations (the "Recommendations") that should assist employers to better fight against discrimination and provide methods that can be used to measure diversity.
Read more
Helpline/Hotline Operation in France: CNIL Requirements and the Single Authorization Process Explained resource White Papers Member contributionOCEG Reviewed
On November 10, 2005, the CNIL adopted guidelines to establish a new framework for corporate whistleblowing systems in France. CNIL created these guidelines to be consistent with Sarbanes-Oxley Act 2002 (SOX) code of conduct and whistleblower requirements for U.S. and other public companies. These rules apply to all public or private companies operating whistleblower programs in France.
Read more
France: Data Protection Act (CNIL) resource Agency Web Sites OCEG Reviewed

The Principles: 1) Loyalty in the collection of data  2) Purpose of the files 3) Information of individuals 4) Reinforced protection of sensitive data  5) No decision concerning an individual may be taken based only on a processing

Read more
French Supreme Court Rules on SOX Whistleblowing Procedures in France (February 2010) resource Articles OCEG Reviewed

Introduction: On December 8, 2009, the French Supreme Court invalidated the whistleblowing procedures set forth in the Code of Business Conduct of Dassault Systèmes (“Dassault”). The Court found conflicts between the whistleblowing requirements of the Sarbanes-Oxley Act of 2002 and the provisions of French privacy and worker protection laws.

Read more
ORSE, Observatoire sur la Responsibitie Societale des Entreprises (Study Center for Corporate Social Responsibility, English Version) resource Organizations & Associations OCEG Reviewed

ORSE – Observatoire sur la Responsabilité Sociétale des Entreprises, which means Study Center for Corporate Social Responsibility, is a French network designed to study and promote socially responsible investment (SRI), corporate social responsibility as well as all the issues related to sustainable development. ORSE is a non-profit organisation that has been set up in June 2000.

Read more
OECD, France Web Site resource Organizations & Associations OCEG Reviewed

OECD reports and statistics on France

Read more
Steps taken by France to implement and enforce the OECD Bribery Convention (OECD 2008, Rev. 2009) resource Research / Studies OCEG Reviewed

Steps taken by France to implement and enforce the OECD Convention on Combating Bribery of Foreign Public Officials in International Business Transactions.

Read more
OCEG 2010 GRC Maturity Survey resource OBS Report - APR OCEG Reviewed
Thumbnail

A report of the responses to the 2010 GRC Maturity Survey. Hundreds of participants responded to questions about the extent to which their organizations have harmonized governance, risk management and compliance process; identified benefits gained from an integrated GRC capability; and indicated their views on the negative effects of fragmented processes.

Read more
GRC Technology Solutions Guide v. 2.1 resource Guides  OCEG Reviewed
Thumbnail

The GRC Technology Solutions Guide  identifies and defines categories of  technology  that have a role in supporting the GRC system and specifically the Elements of the GRC Capability Model™. The Guide categorizes these Technology Categories by:

Read more