Compliance and Risk Management

In today’s business world, all companies, regardless of their size, business model and scope of activities, are required to understand and comply with a plethora of laws and regulations, including common law legal relationships with employees, creditors, and landlords; various licensing requirements imposed by federal, state, and local governments; intellectual property rights; employment laws; federal and state tax laws and regulations, including the reporting obligations imposed under such laws; domestic and foreign laws regulating technology transfers and the form and content of many common commercial relationships; federal and state statutes relating to antitrust and unfair competition; governance rules and regulations; federal and state laws relating to privacy and data security; federal and state securities laws; and federal and state statutes relating to consumer protection and other matters.  Recognizing the various legal and regulatory requirements that must be understood and satisfied, it is imperative for companies to create and faithfully administer appropriate compliance programs.

The Sustainable Entrepreneur’s Library of Resources for Compliance and Risk Management consists of one part with several chapters that lay out the general procedures for establishing and operating an effective legal and regulatory compliance program and dig deeper into the details of key specific compliance topics and activities.  An overview chapter introduces the relevant laws and regulations, including a discussion of the federal sentencing guidelines and other governmental regulations and policies relating to compliance programs. The next chapter on Compliance Programs identifies the legal and business reasons for establishing a compliance program, describes the steps to be taken to launch and maintain such a program and provides essential information on how to organize the compliance function and the commonly agreed elements of an effective compliance program.  The chapters on Compliance Audits and Risk Assessments cover the general procedures for conducting compliance audits and risk assessments.  The chapter on Records Retention covers the general procedures for establishing and administering a records retention program.  The chapter on Contract Management covers the processes and procedures that companies may implement in order to manage the negotiation, execution, performance, modification and termination of contracts with various parties including customers, vendors, distributors, contractors and employees.  The chapter on Internal Investigations covers the general procedures for conducting “internal investigations”, which include all of the activities engaged in by companies to collect and evaluate information relating to the purported wrongdoing.  The chapter on Disclosure Controls and Procedures is intended primarily for executives, directors and senior managers of public companies that are subject to various rules and regulations in the federal Securities Exchange Act of 1934, as well as pronouncements by the Securities and Exchange Commission, that impose strict obligations with respect to disclosure controls and procedures.  Finally, the chapter on Privacy and Data Security covers the development and administration of policies and procedures to comply with laws, regulations and industry standards relating to privacy, data security and overall collection and use of nonpublic personal information.


Compliance and Risk Management: A Guide for Sustainable Entrepreneurs

Project Articles on Compliance and Risk Management


Checklists and Questionnaires

Labor Ethics Questionnaire

Risk Assessment Questionnaire (Project)

Risk Assessment Questionnaire


Compliance Management System RFP Template



Legal Compliance Checkups: Business Clients

Business Counselor’s Law & Compliance Practice Manual

Chapters or Articles in Books

Protecting Personal Data

Articles in Journals

Governance in an Era of Compliance

Government and Other Public Domain Publications

Conducting Effective Compliance and Risk Assessments

Enterprise Risk Management

Health Care Director’s Compliance Duties

Online Articles

Chief Compliance Officer vs. General Counsel

Conducting Effective Investigations

Essential Elements of Corporate Compliance

Ethics Officers and Ethics Programs

Online Databases

Business Transactions Solution


West Legal Ed Center:  Click here for list of all programs presented by the Business Counselor Institute, an affiliate of the Sustainable Entrepreneurship Project, on West Legal Ed Center. Programs relating to compliance and risk management include several videos prepared for the Beyond the Bar training initiative and the following webinars (available on demand):

Business Counselor Institute on West Legal Ed Center

  • Compliance Programs (04.2016)
  • Compliance Audits (09.2015)
  • Risk Assessments (10.2015)
  • Contract Management (01.2016)

Beyond the Bar Training Programs

  • Compliance Programs
  • Compliance Audits
  • Risk Assessments
  • Records Retention Programs
  • Contract Management