June 2021 Flashcards
What is RIDDOR?
Reporting of Injuries, Diseases and Dangerous Occurrences Regulations (2013)
What is a hazard?
May cause physical or mental harm to an organisation’s stakeholders.
What activities are covered by H&S regulation? (4)
- Identification and assessment
- Application of measures to control to protect
- Recording of incidents to regulatory agency
- Implementation of policies and procedures on the above
What role do H&S government agencies have (3)?
- Implementation of new rules and guidance
- Supervise activities
- Take enforcement action to address non-compliance
What is the major H&S legislation and what does it entail?
Health and Safety at Work Act 1974
- Establishes HSE as regulatory body
- Responsibility on both employees and employers
- Employees protected from hazards “as far as reasonably practical”
- Employers expected to co-operate and act responsibly
- Covers non-employees
- Excessively long hours and undue stress
What needs to be reported to HSE under RIDDOR? (7)
- death on premises
- work-related accidents that lead to serious injury
- work-related accidents that incapacitate for more than 7 days (3-7 on register just)
- non-fatal accidents to non-workers, requiring immediate hospital treatment
- occupational disease (cancer/dermatitis) due to biological agent
- dangerous occurrence (building collapse or fire)
- gas related incidents
What is an enforcement notice?
Notice of time being granted to reach compliance
What is the Employers Liability (Compulsory Insurance) Act 1969
Insurance required to pay compensation following injury
Name 8 compliance reporting requirements
- AML
- CTF
- Climate change disclosures
- Corp Gov reporting
- Environmental compliance
- Contingency planning
- Data protection requirements
- Basel financial regulations
What else beyond RAG?
Black = extreme
Blue = insignificant
Name 5 kinds of CSR activity?
- philanthropy
- free/subsidised services for employees
- voluntary leave
- marketing campaigns to change attitudes
- free/subsidised good for poorer customersN
Name 7 kinds of sustainability activity
- Fairtrade
- Supply chain selection - local pref
- Closed loop supply chain
- Lower carbon footprint
- Less pollution
- Long-term growth vs short-term perf.
- Improve worker health
What to do when risks cannot be anticipated?
Alternative is to build resilience
- not prevention, but effect reduction
- crisis management + bus. Wcontinuity
- link with PR
What is COBIT?
COBIT (Control Objectives for Information and Related Technologies) is a framework created by ISACA for information technology (IT) management and IT governance
Name 3 areas where GRC integration might be limited
- Financial - compliance with IFRS etc
- IT - DP, acceptable use, HR
- Legal - compliance related