top of page

Get started now with Regtick's templates
'out of the box'

Whether you are in healthcare, finance, technology, construction, engineering or any business sector, Regtick provides easy to follow solutions to meet your specific compliance needs. With our simple sign-in process, you can get started in minutes, not months. Use any of the templates below, or easily create your own with our intuitive, visual, no-code interface.

ENVIRONMENTAL, SOCIAL, GOVERNANCE, SUSTAINABILITY

CDP

Formed as the Carbon Disclosure Project, the CDP is a not-for-profit charity that runs the global disclosure system for investors, companies, cities, states and regions to manage their environmental impacts

CSRD

The Corporate Sustainability Reporting Directive (CSRD) requires in-scope EU companies to report on the impact of corporate activities on the environment and society, and requires the audit (assurance) of reported information.

TCFD

The Task Force on Climate Related Financial Disclosures provides information to investors about what companies are doing to mitigate the risks of climate change, as well as be transparent about the way in which they are governed.

UNEP

The United Nations Environment Programme Finance Initiative provides a voluntary sustainable banking framework and sets reporting consistency in disclosing signatory firms' alignment with the UN SDGs and Paris Climate Agreement.

UNSDGs

Adopted in 2015 by United Nations Member States, the 17 Sustainable Development Goals (SDGs) call for global action to end poverty, enhance health and education, reduce inequality, and foster economic growth, while addressing climate change and preserving the environment.

ISO 14001

The internationally recognized standard for Environmental Management Systems (EMS). It provides a framework for organizations to design, implement, and continually improve their environmental performance. It is widely recognized as the leading standard for environmental management, applied by over 300,000 organizations around the world

ESG Express

Regtick's custom library of industry best-practice tasks to define, design, manage and accelerate your Environmental, Social and Governance transformation goals.

HEALTH CARE, MEDICAL DEVICES

CQC 2014

The Care Quality Commission Care Act 2014  sets out how adult social care in England should be provided. It requires local authorities to make sure that people who live in their areas: receive services that prevent their care needs from becoming more serious or delay the impact of their needs

HIPAA (coming soon)

The Health Insurance Portability and Accountability Act of 1996, is a landmark piece of United States legislation that aims to protect the privacy and security of individually identifiable health information (protected health information, or PHI). 

ISO 13485

A voluntary International Standard which contains a comprehensive quality management system for the design and manufacture of medical devices. 

ISO 14155

An International Standard which addresses good clinical practices for the design, conduct, recording and reporting of clinical investigations carried out in human subjects to assess the safety and performance of medical devices for regulatory purposes

INFORMATION SECURITY & ARTIFICIAL INTELLIGENCE

ISO 27001

International Standard for Information Security Management Systems (ISMS). Published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), this standard helps organizations keep information assets secure.

SOC 2 (Coming Soon)

SOC 2 (Service Organization Control 2) is an auditing procedure developed by the American Institute of Certified Public Accountants (AICPA) that ensures service providers securely manage data to protect the interests of the organization and the privacy of its clients. SOC 2 is specifically designed for service providers storing customer data in the cloud. It's relevant for technology and cloud computing organizations.

NIST AI RMF

The NIST AI RMF, or the National Institute of Standards and Technology Artificial Intelligence Risk Management Framework, is a framework designed to manage risks associated with the design, development, use, and evaluation of artificial intelligence (AI) products and systems. It aims to provide guidance to organizations in managing the unique challenges and uncertainties presented by AI technologies.

EU AI Act

A legislative framework by the European Union to regulate the use of artificial intelligence (AI) within its member states. Announced in April 2021, this act represents one of the world's first major legal frameworks specifically focused on AI. Its primary aim is to ensure that AI systems are safe, transparent, and accountable, and to reinforce European values and fundamental rights in the deployment of AI.

FINANCIAL SERVICES

SFTR

The Securities Financing Transactions Regulation (SFTR) is a European Union regulation aimed at increasing transparency in the securities financing markets. It was adopted in 2015 and came into full effect in 2020. Securities financing transactions (SFTs) include activities like repurchase agreements (repos), securities lending, and buy-sell back transactions, which are often used for borrowing funds against collateral

NY DFS 504

NY DFS 504 refers to a regulation issued by the New York State Department of Financial Services (DFS), specifically Part 504 of Title 3 of the Official Compilation of Codes, Rules, and Regulations of the State of New York. This regulation focuses on anti-money laundering (AML) and counter-terrorist financing (CFT) monitoring and filtering programs of financial institutions.

LIBOR Reform

LIBOR reform refers to the global transition away from using the London Interbank Offered Rate (LIBOR) as a benchmark interest rate. This library contains the Work Breakdown Structure as recommended by the Alternative Reference Rates Committee (ARRC) for firms undertaking the transition away from LIBOR and evidencing on-going compliance.

GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law in the European Union (EU) which concerns how companies collect, store, process, and protect the personal data of individuals.

FCA SYSC

The FCA SYSC, or the Financial Conduct Authority's Senior Management Arrangements, Systems and Controls (SYSC) sourcebook, is a key component of the UK’s regulatory framework for financial services. It applies to firms regulated by the FCA and sets out requirements and guidelines for the systems and controls that firms must have in place to comply with FCA regulations

Dodd Frank

The Dodd-Frank Wall Street Reform and Consumer Protection Act, is a comprehensive piece of financial regulation  to reduce risks in the U.S. financial system through a variety of reforms. Key aspects include: Consumer Financial Protection Bureau (CFPB); Financial Stability Oversight Council (FSOC); Volcker Rule; Enhanced Regulation of Financial Markets; Increased Oversight of Large Financial Institutions.

Consumer Protection (UAE)

The Consumer Protection Act in the United Arab Emirates (UAE) is a legislative framework established to safeguard the rights of consumers and ensure fair practices in the consumer market. It aims to protect consumers from unfair and fraudulent practices, ensure the quality and safety of products and services, and maintain a healthy relationship between consumers and businesses.

BCBS 239

The Basel Committee on Banking Supervision's standard number 239, is a set of principles for effective risk data aggregation and risk reporting.This regulation was developed to address significant weaknesses in the risk management practices of banks, particularly in terms of their ability to aggregate risk data accurately and report it in a timely and comprehensive manner

Trusts & Trustees Act (Malta)

In Malta, trusts are regulated primarily under the Trusts and Trustees Act (Chapter 331 of the Laws of Malta), which was enacted in 2004 and has since been updated to align with international standards. This Act provides the legal framework for the creation, operation, and regulation of trusts in Malta

Conduct Risk

While not a regulation in itself, the FCA expects firms to have a robust conduct risk framework in place, which identifies, manages, monitors, and mitigates the risks of harm their business could pose to customers

COBIT

The Control Objectives for Information and Related Technologies, is a framework developed by ISACA (Information Systems Audit and Control Association) to help businesses govern and manage their enterprise IT. It provides a set of best practices, principles, and guidelines that organizations can use to align their IT with their business goals and objectives.

COSO ICF

The  COSO Internal Control Framework a comprehensive model for establishing and maintaining effective internal controls within an organization. This framework guides companies in managing risks, preventing fraud, and ensuring the reliability of financial reporting.

Consumer Duty

The FCA Consumer Duty Regulation, also known simply as the Consumer Duty, is a set of rules introduced by the UK's Financial Conduct Authority (FCA) in July 2023. It aims to significantly raise the bar for consumer protection in the financial services industry. 

FATF

The Financial Action Task Force (FATF) is an international organization that sets standards for combatting money laundering and terrorist financing. Its recommendations provide a framework for governments and financial institutions to implement preventive measures against these illicit activities.

SRD II

The Shareholder Rights Directive II (SRD II) is a European Union (EU) directive that aims to strengthen the position of shareholders and encourage long-term engagement with companies listed on regulated markets in the EU.

MiCA

The Markets in Crypto-Assets Regulation (MiCA) is comprehensive regulation, adopted in April 2023 and taking effect in December 2024,. It establishes a harmonised framework for crypto-assets not covered by existing financial services legislation.

OPERATIONAL RESILIENCE

DORA

The Digital Operational Resilience Act is part of the EU's broader digital finance package, DORA seeks to ensure that all participants in the financial system, including banks, insurance companies, and other financial entities, are capable of withstanding, responding to, and recovering from technology-related disruptions.

FCA / PRA

The FCA and PRA  rules on operational resilience, require firms to identify their important business services, set impact tolerances for maximum acceptable disruption, and ensure they can continue to deliver these services during severe but plausible scenarios.

BCBS

The Basel Committee on Banking Supervision (BCBS) has outlined principles focusing on operational resilience, primarily to address the challenges faced by banks in a rapidly evolving and increasingly digital financial landscape

The power of one platform

  • Regardless of the size or complexity of your organization, Regtick's solutions adapt to your unique requirements.

  • Our scalable platform ensures that compliance management is accessible and efficient, whether you are a small startup or a multinational corporation.

  • With Regtick, you can stay ahead of evolving regulations, mitigate compliance risks, and demonstrate a strong commitment to regulatory excellence

bottom of page