We support you in setting up a robust compliance management system (CMS) and developing a policy architecture, we design training courses and support you in preventive compliance audits or internal investigations, when necessary. In doing so, we not only keep an eye on the legal requirements, but also ensure that your company meets ethical and social standards.

Our aim is to help you minimize risks in order to allow your business activities to flourish.

Compliance-Management-Systeme (CMS)

A well-designed and implemented CMS is essential to ensure compliance with all regulations and standards relevant to your company. The triad applies: Prevent - Detect - Respond. We support you in setting up a customized CMS that meets the specific risk profile and needs of your company. This includes the development of a structured policy architecture, the design of classroom and online training courses and the integration of the CMS into the existing management system in accordance with the requirements of ISO 37301. This includes the requirements for the structure, implementation and ongoing effectiveness monitoring of the compliance management system, and the standard also stipulates compliance with social and ethical values and standards. Of course, we also advise on other standards, such as the TÜV standard TR CMS 101:2015.

We have particular expertise in designing e-training courses together with learning management system (LMS) providers. Together with the LMS provider, we develop training courses that are precisely tailored to your company.

If your company already has a CMS, we can assist you to incorporate new legislative developments into the CMS or to adapt the CMS to the latest developments in national and European case law.

If you would like to have your company certified, we will support you in integrating the CMS into your company's management system and implementing the requirements of ISO 37301.

Our aim is to work with you to create an effective and sustainable CMS that evaluates the success of your compliance measures using objective key figures.

Multi disciplinary compliance

Compliance is a multi-disciplinary task that involves many legal and thematic areas. As with the CMS system, there is no one-size-fits all advisor. This is why the compliance team at Schalast consisting of partners Philipp von Ploetz and Dr. Lars Maritzen is supported by a large number of specialists, who we deploy in the best possible way to suit your individual case. Every company is characterized by an individual risk profile, depending on its business activities, market and sector. Our law firm has the necessary expertise to provide companies with comprehensive advice on these cross-cutting issues.

Our specialists cover areas such as Anti-Corruption, Antitrust and Competition Law, Sanctions and Foreign Trade Law, Donations and Sponsoring, Money Laundering and Anti-Terrorist Finance, Data Protection and Information Security, Banking and Capital Markets Compliance, Energy and Emissions Trading, Product Safety and Technical Compliance, Environmental Protection and Waste Management, Healthcare, Supply Chain-Due Diligence and -Management, Occupational Health and Safety, HR Compliance, Accounting and Internal Control Systems, Application of Artificial Intelligence, Financial Crime, Business Partner-Due Diligence, Press, Media and Public Relations as well as Regulatory Law and Subsidies. You can rely on our comprehensive advisory expertise to ensure that your company acts in a legally compliant and responsible manner in all these areas.

Interims Compliance Management

You have implemented a CMS, but the position of Chief Compliance Officer is vacant? No problem: we are prepared for such situations and can provide you with a Chief Compliance Officer (CCO) with industry and company experience at short notice as part of our interim compliance management until you have found a permanent solution.

We are also prepared to provide an interim money laundering or data protection officer.

Whistleblower systems under the HinSchG

The German Whistleblower Protection Act (HinSchG) requires companies with generally at least 50 employees to set up and manage a whistleblower system. Our law firm has extensive experience in implementing these systems and can support you in developing an effective whistleblower system that meets the requirements of ISO 37301.

We are also happy to provide you with an automated tool of your choice, which guarantees that all requirements under the Whistleblower Protection Act are optimally complied with. We help you to follow up suspicious activity reports quickly and efficiently, make your employees aware of the whistleblowing system and encourage them to use it. In addition, we ensure that your internal investigations are conducted fairly and independently to preserve the integrity of your company.

Internal Investigations

When there are indications of legal violations in your company, it is crucial to act quickly and effectively. Our law firm offers comprehensive support in internal investigations to identify possible violations and take appropriate action. We help you to develop a structured and transparent investigation strategy that ensures that all relevant facts are gathered and analyzed.

Our goal is to help you minimize potential risks and protect your company's reputation. Rely on our expertise to ensure that your internal investigations are conducted efficiently and in compliance with the law.

Dawn Raids

To avoid being surprised by a dawn raid, we recommend that you prepare thoroughly for the process.

We provide you with comprehensive advice on developing a dawn raid guideline that is suitable for your company, whereby we differentiate in terms of content and presentation between a reference work for the legal or compliance departments and a practice-oriented guideline for other employees. Another key point is the definition of clear responsibilities in the event of a search and the training of the internal task force, particularly with regard to the observation of search activities by so-called shadows and external communication. It is also important to pay attention to technical aspects of data provision, e.g. how to access computers and cell phones remotely or block chat groups centrally. A few weeks or months after the internal introduction of a dawn raid guide, we recommend carrying out a test run in the form of a mock dawn raid.

In the event of a dawn raid, it is important that all wheels mesh. Our Schalast Rapid Response Team is then at your side and has sufficient personnel capacity with the relevant experience to be able to accompany even larger searches at several locations. Thanks to our locations in Berlin, Düsseldorf, Frankfurt, Hamburg and Stuttgart, we can be on site quickly if necessary.