• Effectiveness: The relevant information must be pertinent and its timely, correct and consistent delivery.
• Efficiency: The processing and supply of information must be done using the best possible way of resources.
• Reliability: The information must be appropriate for the administration of the entity and the fulfillment of its obligations.
Include in the contracts entered into with business participants:
• The obligation to have a policy for the treatment and protection of personal data of consumers, in accordance with the provisions of Law 1581 of 2012 and Law 1266 of 2008, where relevant.
• The obligation to have policies and procedures related to the prevention and control of the risk of money laundering and financing of terrorism.
• The obligation to advance information campaigns on the security measures that must be adopted by the participants involved in Crypto activities.
• The FTC Dot Com Disclosure Guidelines, is a guidance guide that describes the information that companies must consider as they develop their activity in online electronic media, which mainly guarantee consumer protection. It is directed, above all, at guidance on practices related to online advertising and misleading information.
• Members must ensure that they have all rights necessary and necessary under applicable laws or regulations, privacy policies, or agreements to provide merchant information.
Training for the planning, acquisition and delivery of a complex project or program with its due governance, risk and management of the parts interested
• Training that allows you to gain an understanding of the Gateway warranty process.
• Support the development and maintenance of training programs, as well as maintain constant monitoring of training methods.
• Coordination with the departments of the organization in terms of training in products, services and other issues. In addition, training facilitators must ensure that training programs run properly and on time, and provide managers with updates on the progress of the programs.
• Monitor, evaluate and record the training activities and the effectiveness of the activity carried out.
• Obtain, organize and develop training manuals and course materials, such as handouts and visual materials.
• Identify, select and create courses, meetings, workshops and seminars to meet training needs.
• Strategic risk: Which is defined as the current and future impact on income and capital that could arise from adverse business decisions, the misapplication of decisions, or the lack of responsiveness to industry changes.
• Have a service level agreement with your service providers and technology providers, detailing not only response times and resolution of problems, but rather confirm the roles and responsibilities of each party.
• Have clear and agreed processes for diagnosis, resolution and escalation of failures.
Financial risk: Which refers to the uncertainty produced in the performance of an investment, due to the changes produced in the sector in which it operates, the impossibility of returning the capital by one of the parties and the instability of the financial markets.
Finally, for this risk, it is recommended:
• Have enough financing and cash to meet obligations, and cushion unexpected cash flows.
• Have a risk department appropriate to the size and complexity of the organization.
• Have credit risk policies in place, including credit risk assessments and key performance indicators (KPI’s) for portfolio monitoring.
• Control the age of the portfolio at risk and set up provisions for its impairment in accordance with regulatory requirements.
• Hedge the exposure in foreign currency.
• Regularly verify and monitor internal Back-Office processes and reconciliations.