The aim of the project carried out by GRC team (Governance, Risk and Compliance) in Signal Iduna was to create a list of requirements that centrally maintained SAP system should comply with, in order to be used in the Polish branch of the company—Signal Iduna Polska. The prepared list was a reply to Polish legal articles resulting from the chosen (in system’s scope) articles from the hard law (Accountancy Act, Personal Data Protection Act) and the Standard of Good Practice.
The results will be verified by an external auditor looking into financial reports and a corporate auditor checking compliance with security requirements.
