Compliance

---

We assess design and operating effectiveness of entity-level and transactional controls mapped to COSO standards. Focus areas include revenue recognition controls, cash handling in multi-unit operations, expense approvals, and segregation of duties in property-level versus centralized environments.

We review board minutes, policy manuals, and management delegation frameworks to eliminate ambiguity around approval thresholds, fiduciary roles, and financial authority. Clean governance structures enhance investor confidence and streamline integration post-acquisition.

We verify trade licenses, food safety certifications, health authority permits, tourism classifications, and lodging/serviced apartment registrations. Focus is placed on detecting renewal gaps, documentation inconsistencies, and jurisdictional non-compliance across multiple operating subsidiaries.

We assess board composition, committee effectiveness, internal audit function, and enterprise risk controls. Hotels are reviewed on operational oversight and franchise compliance; restaurants on supply chain accountability, safety controls, and labor law governance—aligned with institutional buyer expectations and regulatory scrutiny.

We assess ITGCs around POS, PMS, accounting platforms, and central booking engines. Emphasis is placed on access control, backup/recovery, segregation of environments, and cybersecurity risks, particularly around customer data, loyalty systems, and online ordering platforms.

We benchmark code of conduct, whistleblower protocols, conflict of interest disclosures, and AML compliance. Includes checks on beneficial ownership transparency and anti-bribery policies—critical for investor ESG scoring and institutional acquirer thresholds.

We standardize and update SOPs, policy manuals, and compliance documentation across departments—finance, operations, HR, and procurement. This reduces reputational risk and ensures consistent execution in geographically diverse or franchised networks.

We co-develop an enterprise risk register covering operational, financial, legal, and strategic risks. Each risk is rated by likelihood, impact, and mitigation readiness—backed by periodic review frameworks and escalation paths to the board.

We deliver a compliance heat map across core domains (tax, food safety, HR, data protection), coupled with a maturity model that scores governance sophistication against industry benchmarks. This acts as a cornerstone for exit readiness or PE onboarding.