By JeffG-Oracle on Mar 28, 2012
A USA based company is assessing Demantra Trade Promotion Management (TPM) capability. It appears that SOX
is necessary in their case due to the nature of what TPM does and the necessity for auditability. Do we
have any detail on SOX compliance for Demantra?
SOX compliance with regards to IT:
1. Requires auditing of data changes done by who, what, when
a. Audit trail profiles can be set up for key financial series and view them in audit trail reports
b. One functionality we do not have which typically is asked for is user login history. We have only
active sessions, history is not available.
2. Segregation of duties
a. With respect to TPM, you could have deduction and financial analyst for settlement be different
from promotion creator, promotion approver or sales team.
b. Budget Approver for funds can be different from funds consumer.
c. Promotion creator can be different than promotion approver
d. For a US customer you may have to write some custom scripts to capture promotion status change
and produce an external report as part of compliance.
One additional requirement is transparency of forward commitments entered into with retailers / distributors
for trade spending, promotions. Outside of Demantra - Consumer Goods Trade Funds Analytics.