KEISDATA offers the innovative software platform KRC®, multi-language and multi-culture, which revolutionizes the way of managing and assessing business risks, taking advantage of the skills of the various representatives of the company, facilitating group work and helping to share knowledge until at the decisional stages.
KRC® is an integrated management system in which the processes of the thematic areas of the sustainability path, the ERM applied to all types of Risk, the Organizational Model and other specific sector standards have been engineered.
KRC® enables risk management by means of guided IT procedures and in line with regulations. Each procedure follows a flow dictated by the legislation and at each stage the responsibility can be attributed to the various referents based on the role and qualifications they hold. The data resulting from each procedure are processed and used to generate appropriate graphs to monitor the situation and make decisions immediately.
KRC® works on the basis of a process approach, graphically represented, and guides business users, in relation to responsibility, role, title and task, to data entry/consultation functions, reports and dashboards.
KRC® integrates a document system able to index all the documents of the organization. It manages an interactive workflow mapping the approval cycle. It is able to produce constantly updated documentation and to alert the approach of deadlines giving evidence of what has been done or is being done. It is also able to independently generate documentation such as procedures, instructions and guidelines. The notification system encourages the use of an integrated communication on activities and deadlines.
KRC® contains areas for the management of reports of damaging events, near-events, detectable for all the thematic areas; areas for legal requirements, for the audit, and connection to company records.
KRC® can be integrated with any software and is transversal, so as to allow the exploitation of the potential of information in application areas different from the one in which it originated.
The platform reflects the principles of the GRC framework (Governance, Risk and Compliance).
In KRC® the principles of Knowledge, Risk and Compliance Management are applied on the basis of the guidelines indicated by the mandatory rules and voluntary adhesion.
The Knowledge Management process includes the governance issues related to the organization, processes, people and the reference context; at the same time it guides the company along its path of sustainability, respecting and applying the mandatory rules, as well as in voluntary compliance decisions.
The Knowledge Management process capitalizes the company's and people's knowledge, involves them, makes them participate and makes them aware of the impact of their experience in risk analysis. KRC® allows the structuring and sharing of knowledge in line with the existing cultural heritage and consistent with new strategic and operational needs.
KRC® develops the Knowledge Management approach to support Risk Management; involves multidisciplinary skills and areas of activity, such as the definition of methodologies, criteria and the engineering of collection tools.
The Risk Management process is applied according to the standard ISO 31000:2018, which allows better management of the various types of risk, through a unique control system and integrated into a collaborative model.
KRC® in the methodology of Risk Management applies to all processes through:
The development of the sustainability path is strictly connected to a structured analysis of the risks inherent in the complexity of the processes, in the correct application of the mandatory rules, in the management of adverse events, in the definition of the objectives. The Risk Management process guides this analysis and helps to seize and develop new opportunities for improvement.
The Compliance Management process consists in the identification, analysis and timely assessment of the effects of the regulatory intervention on the activities of the Organization. It provides the company with a complete and updated overview of current laws and regulations. It prepares the company to face both the daily requirements and the future problems protected from critical and harmful events.
The analysis of the regulatory impact, applied in KRC®, is a support to the decisions of the top management and of the delegated roles.
The aim is to define an appropriate strategy for the management of regulatory compliance through: organizational analysis regarding the processes, roles, responsibilities, powers and responsibilities; and definition of tools for planning and management of costs and benefits of investments, development of plans and programs for the alignment of the new requirements than those in force in the organization.
The KRC® project provides a modular architecture to allow companies to approach the issues of Certification and Compliance Rules in a more easy and structured way and with a gradual approach according to the sustainability path chosen by them.
In KRC® the configuration and implementation of organization, processes, assets, layouts, etc., evolve with the development of compliance management and specific risks in the various systems that, over time, gradually flow into a single integrated system.
The implementation model is determined by the following key factors:
The iterative implementation model with progressive releases is as follows:
KNOW: to acquire the know-how of the company;
DO: for the release of the functionalities;
CHECK: for the testing and fine-tuning;
DEPLOY: for the release in function.
KEISDATA provides different structures, in compliance with the provisions of ITIL and COBIT best practices. The platform is designed for project management and allows company contacts to monitor progress.
KRC® is built with Microsoft technologies, using ASP.Net for the implementation of the web based and SQL application Server as a database engine.
The architectural options are as follows:
The architecture in connectors, the base of KRC®, guarantees and provides access to external data sources and interfacing with different applications either directly (web services, database access SQL Server or Oracle) and is mediated by file Export (XLS, XLSX, CSV, TXT fixed width, XML) read in real time. The connector configuration follows the approach to XML templates that characterizes KRC® therefore not likely to be required customization or extension application.
The platform KRC® is able to:
The installation requires no prerequisites KRC® outside of those of the .Net Framework and SQL Server, all components and libraries that are self contained and do not use external references.The browser used by fixed stations are Internet Explorer and Google Chrome 11. The platform KRC® is accessible via mobile devices.
KRC® uses the following components: