Your centralized source for compliance and risk management
Our solutions allow you to create a speak-up culture and manage the entire whistleblower reporting process from setting up flexible, anonymous reporting channels to local case management and disclosure.
Allow reporters to choose their level of anonymity, remain compliant with local law, and ensure each step is managed within ethical standards of compliance.
Maintain dedicated hosting and GDPR-compliant data storage in the EU, make frequent updates, and monitor regulatory developments to ensure the highest level of security and data privacy controls.
Prevent retaliation with built-in follow-up reminders to stay compliant with the EU Directive’s “reverse burden–of proof" while protecting reporter anonymity. Create a safe atmosphere for reporting and deliver feedback on investigations.
Our European, GDPR-compliant call center supports 300 languages and web intake is equipped for 54 languages – all to ensure accurate, complete capture of case detail.
‘Culture of compliance’ behind DOJ’s voluntary self-disclosure updates
Is your compliance program ready to do the right thing and step up and own up to misconduct?
We cover some basics of the EU directive, including its definition, who it is applicable to, and the requirements companies must follow.
The EU Whistleblower Protection Directive requires appropriate protections for stakeholders to communicate potential breaches of EU law. It was published by the European Parliament on September 25th, 2019. It mandates EU member states to provide safeguards to reporting persons and expands the definition of whistleblowing.
Unlike regulations such as the General Data Protection Regulation (GDPR), this is not a single uniform directive that all EU countries must follow. It is a set of new rules and minimum standards for lawmakers and mandates the requirements of the directive to be transposed into national legislation.
The directive applies to public and private companies that have 50 or more employees or have an annual turnover or total assets of more than €50 million. It also covers local authorities that provide services to more than 10,000 people. Companies that also provide financial services or are at risk money laundering or terrorist financing are affected. It also requires that an organization’s subsidiaries with 250 or more employees also set up their own reporting channels and not be fully reliant on their parent companies' central channels.
It requires companies to provide internal reporting channels, educate employees about whistleblowing procedures, safeguard whistleblowers who report breaches of union law, and protect reporters from the risk of retaliation. It mandates the creation of internal and external reporting channels, acknowledge receipt of the report within seven days, and allows the whistleblower to review, approve, or edit their report.
With potentially 27 different whistleblowing laws in the EU, compliance can be a complicated endeavor. Our ethics and compliance solutions assist you in creating a whistleblowing system with multi-channel helplines, managing cases efficiently, protecting whistleblowers, and training employees on the protection the directive offers. We also provide access to the world’s largest privacy legislation database so you can stay updated on the latest changes.
Ready to get started?
Request a free demo today to see how OneTrust can guide your trust transformation journey.
Our privacy center makes it easy to see how
we collect and use your information.
When we collect your personal information, we always inform you of your rights and make it easy for you to exercise them. Where possible, we also let you manage your preferences about how much information you choose to share with us, or our partners.