Showing 1-20 of 58 products
i-Sight is a cloud-based compliance management solution that helps businesses of all sizes implement workflows, analyze results, spot trends, assess training gaps and monitor risks. It includes notifications and alerts to help manage... Read more
Sword Policy Manager is a cloud-based compliance management solution that helps businesses of all sizes control and monitor policies and procedures within the organization. The centralized platform enables complete management of critical... Read more
Corporater Compliance is a cloud-based solution that provides oversight and visibility into compliance activities. It provides controls, compliance reporting, auditing, workflow and process support and notifications of exceptions... Read more
Zenefits is a cloud-based human resources information system (HRIS) that features user dashboards, core human resources, benefits administration, onboarding and employee scheduling. When new employees are hired, HR professionals using... Read more
Jolt is a human resource (HR) platform provided by Intuiplan. The system is scalable and appropriate for businesses of varying sizes. Companies in the food and beverage industry, hospitality and travel, retail, and others can use and... Read more
Netwrix Auditor is a security solution that allows administrators to manage server log files, security events and syslogs across the company network. The solution alerts administrators in real time on critical events. It allows administrators... Read more
Promapp is a cloud-based process management and compliance solution that enables large and midsize businesses to create and share process knowledge using a centralized repository. The solution is suitable for various industries including... Read more
SafetySync is a cloud-based occupational health and safety management system that helps organizations monitor risks, train employees and keep up to date with compliance regulations. It is suitable for businesses of all sizes in a range... Read more
Assignar is a cloud-based construction management solution suitable for businesses in a variety of industries. Key features include timesheets, custom forms, inspections, scheduling, compliance management, invoicing and payroll. Workers... Read more
PolicyTech is a policy and procedure management solution from NAVEX Global that is suitable for all industries including healthcare, financial services, manufacturing, retail, government, energy and law enforcement. PolicyTech offers... Read more
MyEasyISO is a cloud-based compliance management solution that helps users to integrate their businesses with ISO compliance and manage their quality, safety, health and environment (QHSE) certifications. It offers various quality... Read more
Cetec ERP is a cloud-based manufacturing enterprise resource planning solution that caters to midsize and large businesses and helps them to manage various components of the manufacturing process i.e inception of a job, procurement... Read more
Intellect Compliance is a cloud-based regulatory compliance and management solution that is suitable for organizations of all sizes. The solution helps compliance managers reduce workload and achieve legal compliance by automating... Read more
Wdesk is a cloud-based compliance reporting and management solution for midsize and large companies. It offers team management, project management, data management, collaboration and data-integration functionalities within a suite. Wdesk... Read more
SiteDocs is a cloud-based audit management solution designed for businesses of multiple sizes in the construction and maintenance industries. Users can run their safety programs through mobile apps and web browsers. Key features include... Read more
Field iD is a cloud-based safety compliance solution that uses a combination of radio-frequency identification (RFID) and barcodes along with internet-connected mobile devices to automate inspection and safety compliance management... Read more
BP Logix Process Director is a compliance management solution that offers both workflow as well as business process management (BPM) compliance within a single solution. The software is best suited to the needs of financial services,... Read more
ZenGRC is a cloud-based and on-premise governance, risk and compliance (GRC) management solution. It serves businesses of all sizes in any industry, including technology, retail, consumer goods, health care and finance. Primary features... Read more
Onspring is a Process Automation Platform that allows users to manage data, workflow, and reporting. Onspring can be used for a single business and has the ability to connect multiple functions across an enterprise. The system is built... Read more
VComply is a cloud-based governance, risk and compliance (GRC) management solution designed for midsize and large enterprises. It aims to help businesses stay compliant with industry standards. The solution enables businesses to set... Read more
Compliance software is at the heart of an organization’s efforts to continually track whether business processes are aligned with applicable laws, organizational policies and the standards of consumers and business partners.
Of course, a corporate compliance program goes far beyond software, and businesses in certain industries may not even need software to manage compliance requirements. However, large businesses and organizations in sensitive industries (pharmaceutical manufacturing, financial services etc.) generally benefit from an approach to compliance issues that’s partially automated by software.
Compliance management functionality can be found in various types of software. We’ll help you understand your options, so you can make the right choice for your specific business model and industry.
Here’s what we’ll cover:
Reviewers' Choice Products
Our Reviewers’ Choice list shows the five highest user-rated software solutions for Compliance when adjusted for total number of reviews and recency of reviews.
If a software solution has more reviews, and more recent reviews, we value those ratings more highly than a product with fewer, older reviews. This is because is it much harder to get 100 five-star reviews than it is to get 10.
We also know that software vendors continually tweak and update their product, so we believe that more recent reviews tend to be more accurate.
To determine which products made the final cut, we looked at how users rated each solution's:
A solution can make the Reviewers' Choice top five in all three categories, or just one or two. All software solutions in the Reviewers' Choice have at least 10 reviews from real software users. The final products are listed in alphabetical order from left to right.
For more details on how we selected our Reviewers' Choice, read the full methodology.
There are essentially three kinds of compliance management software (also known as corporate compliance and oversight tools) on the market:
Industry-specific tools help businesses in heavily regulated industries (health care, industrial manufacturing, financial services etc.) meet specific legislative and commercial requirements.
GRC platforms include generic compliance management features alongside a broader set of capabilities for risk management and corporate governance (for instance, IT risk management, business continuity planning, and legal management). Sample vendors include Enablon.
In this buyer’s guide, we’ll focus on all-purpose compliance management platforms as well as GRC platforms. Industry-specific tools are so niche in functionality that your specific business model will significantly whittle down your shortlist of vendors.
Compliance software covers a huge range of business processes, regulations and industry needs. It’s no surprise that platforms are highly diverse in their functionality.
Compliance doesn’t stop at industry regulations and standards (OSHA, ISO etc.). Corporate ethics policies, acceptable use policies, and even business partner policies can all pose compliance issues. For instance, Wal-Mart suppliers have to meet a number of stringent standards that suppliers of many other major retailers don’t have to bother with.
Let’s therefore zoom in on the most important components of a compliance management system:
|Policy management and compliance registry||Policy authoring and approval workflows, version control, etc. Policies are documented in a global registry that maps applicable regulations to policies.|
|Controls monitoring||Workflow engine enables business units to attest compliance with policies and regulations. Controls are documented in a centralized catalog, and standardized workflows allow for a controlled incident escalation process.|
|Compliance reporting||Enables visibility into violations and noncompliant facilities at various levels of aggregation via dashboards and scheduled reports. Some solutions also support continuous monitoring of KPIs related to sensitive business processes for compliance issues.|
|Audit management||Systematic workflows, case management and reporting features for investigating and resolving compliance issues. Some solutions also support real-time field reporting for audits.|
|Regulatory intelligence and change management||Tracks RSS and XML feeds of regulatory information and alerts published by standards bodies and government organizations. Feeds can then be mapped to existing policies. Some providers also have legal teams that compile knowledge bases of international regulations.|
|E-learning for compliance training||Generic and customizable online courses for training employees on how to comply with policies.|
|Survey tools||Survey modules allow organizations to distribute self-assessments to employees.|
|Conflicts management||Tools for monitoring potential conflicts of interest (employee gifts, employee trading etc.)|
|Fraud management||Risk management features allow for detection of patterns indicating fraudulent activity in financial statements, vendor payments etc. Controls can also be tested for efficacy in preventing fraud, and “whistleblower” hotlines and web forms allow employees to act as a front line of defense.|
|Multilingual interfaces||Interfaces are available for employees who don’t speak English.|
Aside from these specific features, the advisory firm Gartner notes in their “Market Guide for Corporate Compliance and Oversight Solutions” that one of the most important functions of compliance software is aggregation: “The huge number of global legal, regulatory and administrative requirements and the variety of standards, guidelines and frameworks require compliance managers to merge and normalize mapping of requirements to controls and other compliance activities.” (The full report is available to Gartner clients.)
This is obviously a daunting policy management challenge that compliance software partially addresses through automation.
Which Compliance Areas Do All-Purpose Solutions Cover?
In addition to basic requirements, such as employee codes of conduct, GRC platforms and all-purpose compliance management, software solutions typically cover the following compliance areas:
Industry-specific standards bodies and regulatory agencies
Many providers offer out-of-the-box support for dozens of other standards, but if your organization operates in a heavily regulated industry, the first step in your search should be evaluating industry-specific solutions.
We’ve seen that the landscape of compliance management vendors remains highly fragmented due to the diverse nature of compliance requirements. Keeping the following considerations in mind will help you evaluate vendors to build an effective shortlist: