Prijave na poletni Skladni zajtrk o trajnostnem poročanju, 20. junij 2024 so odprte!



The main annual international event in the field of compliance and business ethics in Slovenia in the region took place on 3 October 2017, at the IEDC-Bled Business School. The Conference on Compliance and Ethical Business is a central international meeting of compliance and ethical business experts from other experts who have support in their organizations in managing compliance and ethics or corporate integrity programs. In addition to visitors from Slovenia, the conference was also attended by participants from Croatia and Serbia. The lecturers came from four different countries, in addition to Slovenia, they also found Great Britain, Spain and the USA, and enriched the program with their decades of experience in managing compliance functions on all continents from various multinational corporations.

Conference agenda 2017

3 . October 2017, Bled, IEDC – Bled Business School




08:30 - 09:00 Welcome


09:00 - 09:25 Introductory speech - prof. dr. Danica Purg, President of the Slovenian Association for Sustainable Development, UNGC Slovenia, and Director of the IEDC-Bled School of Business / Andrijana Bergant, President of EISEP - European Institute for Compliance and Business Ethics


I. Management


09:25 - 09:55 Comprehensive Risk Management System (ERM)


Ksenija Butenko Černe, Director of Legal Affairs at Lek d.d., Head of Compliance for Central and Eastern Europe and Member of the Management Board of Lek d.d. & Sandoz d.d.


II. Business compliance system management


09:55 - 10:30 How to perform (self)review of the compliance management system


Guillermo Iribarren, Senior Compliance Manager, Impact on Integrity


10:30 - 10:45 Discussion


10:45 – 10:55 Professionalization of the function of compliance specialist - the benefits of good compliance


Johnatan Bowdler, Head of Regulatory Compliance, International Compliance Training Ltd.


10:55 – 11:10 Break


11:10 - 11:35 How to manage compliance with new EU rules on financial markets and what this means for customers


Gregor Strehovec, Business Compliance Consultant, SKB d.d.


11:35 – 11:45 Disscusion


III. Business ethics


11:45 - 12:45 Business Ethics Panel: why do people exploit a given trust?


Sally March, Drummond March Ltd.
Rok Praprotnik, Director of Compliance and Integrity, NLB d.d.


12:45 - 13:35 Lunch break


IV. Data protection and compliance risks


13:35 - 14:15 Impact of the new European General Data Protection Regulation (GDPR) on business practices


Robert J. Bond, Solicitor & Notary Public, Partner at Bristows LLP


14:15 - 15:10 The regulator's view on the challenges, implementation and control of the General Data Protection Regulation (GDPR)


Dr. Nataša Pirc Musar (Info House), Matjaž Drev (Information Commissioner of the Republic of Slovenia), Robert J. Bond (Bristows LLP)


15:10 – 15:30 Break


15:30 - 17:00 ROUND TABLE: How do scandals affect companies and individuals, how to survive them and how to avoid them?


Participants: Ksenija Butenko Černe (Lek d.d.), Guillermo Iribarren (Impact on Integrity), Sally March (Drummond March LTD), Robert J. Bond (Bristows LLP), Tomaž Vesel (President of the Court of Audit and independent president of FIFA's Audit and Compliance Committee )
The talk will be moderated by: Annie Wartanian Reisinger


17:10 Discussion and conclusion of the conference

Speakers and guests at 2017 conference

Robert J. Bond, Solicitor & Notary Public, Partner at Bristows LLP, UK

Mr. Bond is a partner in the successful, internationally operating law firm Bristows LLP, a lawyer and notary. Prior to that, he was a partner in the international law firm Charles Russell Speechlys LLP. He also holds an international certificate of compliance and ethics expert. He is a legal expert and author in the fields of e-commerce, media, personal data protection, information security and ‘cyber’ risks with more than 36 years of international experience. He is the chairman and member of many British and foreign professional organizations in the field of information security. He is on the list of the top 10 IT lawyers and among the best lawyers in the UK for 2014.



Sally March, Drummond March Ltd., UK

Ms. March is a lawyer, specializing in the international economy and a certified compliance and business ethics expert. He has extensive experience from international companies and works in Russia, elsewhere in Europe and the USA. Her experience includes senior positions in corporations in the areas of compliance, risk and legal matters, as well as the legal profession. She has worked for the BBC and Nortel, among others.





Guillermo Iribarren, Senior Compliance Manager, Impact on Integrity, Spain

Mr. Iribarren has direct experience working in the field of corporate integrity in emerging markets. Advises on risks, compliance and legal matters to companies in regulated sectors. Since 2004, he has worked for the most successful Latin American law firms. He holds a bachelor’s degree from the Universidad José María Vargas, Venezuela and a master’s degree in international business from the Afundación Business School, Spain. He is also a certified compliance expert.




prof. dr. Danica Purg, President of the Slovenian Association for Sustainable Development, UNGC Slovenia, and the director of the IEDC-Bled Business School

Prof. dr. Danica Purg is also the president of the international management development association CEEMAN, which brings together 220 business schools from 55 countries and is based at the IEDC-Bled Business School. The UN Global Compact has appointed it to the PRME Global Working Group on Principles for Responsible Management Education (PRME). In 2013, she was chair of this committee. Field of work of prof. dr. Purg as lecturers and researchers covers leadership, leadership styles and personal development of managers with a special emphasis on the development of leaders through inspiration derived from the arts. For her achievements in the field of business education, she received the International Dean of the Year 2010 award from the Academy of International Management (AIB). In 2016, she received a Lifetime Achievement Award from the University of Cologne School of Business in the field of social responsibility, ethics and corporate governance, and in July this year, at the United Nations International Forum in New York, a pioneering work and contribution to establishing an international initiative for responsible business education.


Ksenija Butenko Černe, Director of Legal Affairs of Lek d.d., Head of Compliance for Central and Eastern Europe, and Member of the Management Board of Lek d.d. & Sandoz d.d.

Mrs. Ksenija Butenko Černe, works in the company Lek d.d. since 1994, first in the legal field, mainly in international economic, status and regulatory matters and in the field of industrial property law. Since 2001, she has been in charge of legal affairs as Executive Director. When Lek became a member of the Novartis / Sandoz business group and a legal function was established within Sandoz, it took over responsibility for global legal support in Central and Eastern Europe and in early 2005 was appointed Sandoz's lead legal advisor for Central and Eastern Europe. Europe. In 2005, the company's Supervisory Board appointed her a member of the Management Board of Lek d.d. It has assumed responsibility for the management and ensuring the legally compliant operation of the company with the relevant local and EU legislation, and for the operation of the company as a socially responsible company, a member of the Novartis / Sandoz Group.



Tomaž Vesel, President of the Court of Audit of the Republic of Slovenia and Independent President of FIFA’s Audit and Compliance Committee

Tomaž Vesel (born 1967 in Ljubljana) graduated from the Faculty of Law of the University of Ljubljana in 1997. He is continuing his postgraduate studies at the Faculty of Law of the University of Maribor in the field of European commercial law. In addition to the titles of state auditor and certified state auditor in October 2012, he also trained and trained abroad. He began his career at the Center of the Government of the Republic of Slovenia for Informatics in 1997, and then continued between 1999 and 2004 as a member of the National Audit Commission of the Republic of Slovenia. At the end of 2003, he was elected First Deputy President of the Court of Audit of the Republic of Slovenia. The National Assembly of the Republic of Slovenia elected Tomaž Vesel in April 2013; He became President of the Court of Audit of the Republic of Slovenia for a period of 9 years in June 2013. In June 2016, he was appointed Chairman of the Audit and Compliance Committee at FIFA by the Council of the International Football Association - FIFA. It is an independent and unprofessional function. Tomaž Vesel is the author of a series of professional articles on topics important for the exercise of the audit competence of the Court of Audit, and has participated in numerous lectures as a lecturer in Slovenia and abroad. Its role is important in establishing the field of auditing public procurement and concessions and auditing institutions in the Republic of Slovenia, as well as excellent knowledge of the field of public procurement, concessions, procedures for disposing of real and financial assets of the public sector, state aid, EU law and methods of work of the Supreme Audit Institution. . As an undisputed expert in areas important for the exercise of the Court of Auditors' competence, he also cooperates with international organizations. He is an OECD external expert for the preparation of reports and the implementation of external assistance in the countries of the former Yugoslavia. . He is a co-author of the Court of Auditors 'audit manuals and the Court of Auditors' strategy. As the President of the Court of Audit of the Republic of Slovenia, he has a proactive role within the European Organization of Supreme Audit Institutions - EUROSAI and the International Organization of Supreme Audit Institutions - INTOSAI. He actively speaks English and German.



Rok Praprotnik, Director of the Center for Business Compliance and Integrity Strengthening, NLB d.d.

Mr. Praprotnik is the director of the Center for Business Compliance and Integrity Strengthening at NLB d.d., an organizational unit with the authority to conduct internal investigations, general regulatory compliance and preventive development tasks in the field of corporate ethics and integrity. Prior to taking over his current duties at the bank, he served as Deputy Chairman of the Commission for the Prevention of Corruption, where he was responsible for overseeing the financial situation of public officials, lobbying and strategic prevention activities of the commission as an independent state body. In the past, he worked as a journalist for the newspapers Delo and Dnevnik, where he dealt mainly with journalistic investigations in the field of intelligence services, the army and the institutions of the rule of law.



Gregor Strehovec, Business Compliance Consultant, SKB d.d.

Mr. Strehovec is employed at SKB banka d.d., a member of the international banking group Societe Generale (SG), as a compliance consultant. He started his career as a lawyer at the Bank of Slovenia and continued it at SKB bank as the director of the Legal Office or Legal office and compliance. Since 2010, he has been working as a compliance officer. He is active in the Bank Association of Slovenia, as a member of the Committee on Legal Affairs and later as a member of the working group for business compliance. Mr. Strehovec is a member of the International Conference of Legal Departments of the SG Banking Group, a member of the International Working Group of Lawyers of the SG - Societe Generale - Banking Group BHFM, for several years he has also been a member of the European Financial Markets Lawyers Group (EFMLG) and, most recently, a member of the International Conference of Compliance Officers of the SG Banking Group. He is the author of several professional articles and a regular lecturer at professional seminars.



mag. Matjaž Drev, State Supervisor for Personal Data Protection, Information Commissioner of the Republic of Slovenia

Mag. Matjaž Drev is the State Supervisor for Personal Data Protection at the Information Commissioner of the Republic of Slovenia and carries out inspection and misdemeanor proceedings in the field of personal data protection. He gained his professional experience for several years as a system and network administrator, so he approaches the challenges of the right to privacy in a distinctly interdisciplinary manner. He pays professional attention to the intersection of law and information technology, an area that already determines the present and future of personal data protection.






Dr. Nataša Pirc Musar, Univ.dipl.prav., Founder of Info Hiša

Dr. Nataša Pirc Musar has 15 years of experience in the field of personal data protection. She was the Information Commissioner of the Republic of Slovenia for two terms and the Chair of the Joint Supervisory Committee for Europol for 2 years. Even after the expiration of her term, she has dedicated her career as a lawyer to the right to privacy, most recently to the new General Data Protection Regulation (GDPR) and other human rights and media law. In 2015, she received her PhD from the Faculty of Law in Vienna in the field of personal data protection and access to public information.



Andrijana Bergant, EICE President, EMBA, CCEP-I

Andrijana graduated in law from the University of Ljubljana, and in 2010 she completed a postgraduate study of management at the Cotrugli Business School in Zagreb (Executive MBA program, accredited by the MBA Association). Later in her career, she also graduated from the Banking School at the Association of Slovenian Banks and the internal international insurance academy of the Triglav Group. It has an international certificate in the field of CCEP-I compliance. For three years she was also a member of the international committee for the examination of this certificate. She is the founder and president of EICE. Her most recent position at the corporation is as a consultant at the Business Compliance and Integrity Building Center at NLB d.d., where she led the Compliance Prevention and Development Group; the latter includes areas such as a code of conduct, conflict of interest prevention and general ethics, compliance risk management, training, regulatory compliance and the implementation of compliance standards at the group level. Prior to that, she established and managed the compliance function in the largest Slovenian insurance company for almost seven years, after performing legal work in other financial organizations for several years. She participated in the drafting of the Declaration on Fair Business Practices and the Slovenian Corporate Integrity Guidelines. She regularly writes and lectures for many Slovenian and foreign newspapers or conferences and is the author of several professional articles and blogs in the field of business compliance and ethics.



Annie Reisinger, pridružena profesorica, Evropska pravna fakulteta, svetovalka EICE

Mrs. Reisinger graduated from Johns Hopkins University, l’Institut d’Etudes Politiques de Paris (Sciences Po), and Georgetown University Law Center. At the same time, he has a recognition in European and comparative law from the Facolta di Guirisprudenza, Universita di Siena. Mrs. Reisinger has worked in top international law firms such as Kelley, Drye & Warren LLP, McGuireWoods LLP, and Miller and Chevalier Chartered, where she was responsible for investigations and compliance with international anti-corruption, export controls, and economic sanctions regulations. . It was during this time. Reisinger has conducted a number of international investigations, trainings and inspections for multinational companies across the Americas, Europe, the Middle East, North Africa and Asia. Mrs. Reisinger also has extensive experience working at Honeywell International, a Fortune 100 company where she has held the position of Aerospace Director, Export Compliance Investigations, Audits, Training, Procedures, & Operational Excellence. At Honeywell, he. Reisinger directed and led a global compliance team that oversaw the compliance of intercontinental export operations for the ‘Aerospace business’ area. She was an expert on compliance with export sanctions for ‘Aerospace Mergers & Acquisitions’ and dealt with breach of contract. Lately him. Reisinger works as an associate professor at the European Law Faculty in Ljubljana, a visiting lecturer at the University of Primorska in Koper and a consultant at the EISEP Institute. Mrs. Reisinger is fluent in English and Armenian, has an excellent command of French and at the same time is learning Slovenian.

Gallery BCEC 2017

In our environment, companies interested in this type of knowledge and practice are interested in doing business according to higher standards and recognizing the many benefits for business, reputation and, finally, for their competitive position, especially in international business. Namely, foreign reputable companies give priority to partners who can show professionalism in risk management also in the field of compliance and ethics, as this gains credibility and consequently trust. In a similar way, investors assess the risk of their investments, especially in our region, which is still considered more risky for corruption and money laundering. Effective compliance and ethics programs operating according to international standards are therefore one of the distinguishing elements for companies from Slovenia and surrounding countries for foreign companies looking for professional and reliable partners (or investments) in this environment. Therefore, it is not surprising that the participation in the Bled Conference on Compliance is increasing and this year included about 75 representatives from more than 50 different companies and other organizations from Slovenia, Croatia and Serbia.

Ksenija Butenko Černe

Ksenija Butenko Černe, Director of Legal Affairs of Lek d.d., Head of Business Compliance for Central and Eastern Europe and Member of the Management Board of Lek d.d. & Sandoz d.d., presented the compliance and ethics program at Lek d.d. and the entire Novartis group. She stressed that organizational culture is one that can be present at any time in all pores of a business, while no individual in their control is able to do so. A culture of compliance and ethics is therefore the most effective factor that will decisively help to reduce the possibility of non-compliance or breach of ethics and the associated negative consequences. Risks to compliance and ethics are best understood by focusing on the end effect that a particular irregularity may have on the end user, ie the patient or customer. It is crucial that the owners of business operations and processes are the owners of all business-related risks, including compliance and ethics risks. At Novartis Group, every process owner has a responsibility to incorporate the principles of compliant and ethical business into day-to-day operations.

Guillermo Iribarren, Senior Compliance Manager, Impact on Integrity, Spain, stressed the importance of the effectiveness of the compliance and ethics program. A company that already has such a program in place must identify key performance indicators for this system and evaluate it by individual elements of its operation. How committed in their words and actions, for example, is the top and middle management of an organization regarding the lawful and fair acquisition and conduct of business; What is the participation of management and employees in the implementation of training in the field of compliance and ethics; Are the principles of legal and ethical business with all control mechanisms consistently transposed into work processes and into everyday business practices; Are the company's partners or contractors aware of the requirements of compliance and ethics; Does the company know, regularly assess and take action on its risks in this area; How to act effectively and consistently in cases of violations and the like. Guillermo presented various models for evaluating the effectiveness of compliance and ethics programs, and the most common reasons why compliance programs fall in real life. He highlighted the example of the Rols Roys Corporation, which has had a compliance program in place for many years. However, due to inefficiencies in practice, it has relented, as it was revealed in the second half of last year that this English luxury car manufacturer had been paying bribes for years in emerging markets, including India, Russia and China. In early 2017, however, a total of £ 671 million in fines was settled with British and US regulators.  

Guillermo Iribarren
Gregor Strehovec

Gregor Strehovec, Business Compliance Advisor, SKB d.d., described how Slovenian banks will also have to adapt to the new package of EU regulations in the field of financial markets and what improvements, as well as obligations, this will bring to their customers. A basic obligation for every retail person and individual entrepreneurs who want to continue trading financial instruments in 2018 will be required to obtain an LEI code, otherwise their transactions will be disabled. On the other hand, the interests of investors and other clients of the bank will be additionally protected from unprofessional advice and non-transparent costs of banking operations. Namely, banks will have to inform each client about all direct and indirect costs of each transaction in advance, retrospectively and on a total, annual basis.

Sally March, Drummond March Ltd. from the UK and Rok Praprotnik , Director of Compliance and Integrity, NLB d.d. they talked about the reasons why people abuse a given trust and why good people do bad things. In cases from the international banking sphere in particular, they showed how dangerous it is if management deliberately ignores violations and violates even the most basic standards of protecting the interests of its customers and many other stakeholders for the sake of short-term financial benefits. The consequences can be multidimensional and even fatal in terms of uncertainty for employees, long-term damage to reputation, loss of strategic partnerships and funding for the company, damage to owners or investors, customers and the wider environment… If the company is dominated by sales and other financial performance parameters then they will certainly overshadow the message of legal and fair business and the principles of compliance and ethics will also be sacrificed for the sake of achieving short-term financial benefits. The strongest factors influencing the behavior of individuals are related to the power of authority, the influence of peers or co-workers, time pressure and the presence of fear, especially of the existential threat, such as job loss. Therefore, it is largely possible to assess the credibility and integrity of the behavior of individuals in the company, in terms of their manager and employees, and in terms of how the system of performance appraisal and remuneration is set up. The basic need of each individual depends in an important part on how we are treated by the social environment. For example, if our value and performance at work is largely assessed by how much income we generate for the company, the vast majority will do everything to meet the requirements of this criterion, including at the expense of violating laws and ethical principles. Individuals in the company are also strongly influenced by the perception of where the boundaries really are or tolerance regarding incorrect or unfair behavior. If the management ignores the cases of violations or does not act promptly, efficiently and fairly regarding them, employees will have the perception that the limit of what has been allowed has shifted, regardless of what is written in the company's policies and rules.

Robert J. Bond, Solicitor & Notary Public, Partner at Bristows LLP, presented some of the biggest effects of the new EU General Data Protection Regulation (GDPR). One of the most important, comprehensive and complex activities that companies in the EU will have to carry out until the directive enters into force in May 2018 is certainly the analysis of all business relationships with business partners along the entire supply and delivery chain. contractual processors of personal data and that it will be able to transfer all legally required conditions to the relationship with them. Another such task will be to review the adequacy of customer consents, in particular for the purposes of direct marketing and related customer segmentation. Under the new law, companies will have to have the consent of their customers according to higher standards. For many companies in Slovenia, this may mean that the existing databases, which have been used for marketing so far, will no longer be allowed to be used for this purpose until a new, explicit and fully informed consent of individuals is obtained. The new regulation places particular emphasis on simplicity and comprehensibility as regards information on the protection of personal data. Administratively, however, data controllers will have to adopt a whole range of policies in this area, which will have a significant impact on the assessment of their responsibilities in this area. From the point of view of accountability, however, for companies that will be victims of internal or external misuse of personal data, including the increasing presence of cyber attacks, it will be crucial to assess whether they have done everything possible to prevent personal intrusion for personal data security. .

In the panel on the implementation and effects of the GDPR regulation, dr. Nataša Pirc Musar, founder of the Info House, said that Slovenian companies are probably not aware of the task ahead of them in preparing for the new regulation and will be able to face many business obstacles next year because they will not adapt in time. . Matjaž Drev, the state supervisor from the Information Commissioner of the Republic of Slovenia, emphasized that the practice of their supervision will still be just as strict, and the fines may be significantly higher, according to the new regulation, which also allows for millions of euros in fines. . In Slovenia, the principle of proportionality will be observed, but the most serious violations will be those involving the processing of personal data without a legal basis. In their practice, they have already dealt with several such cases, where violators even knew that they had no legal basis for processing.

Who was the conference for?

  • Management members and managers in general who are primarily responsible for the operations of your organization, including the compliance and ethics of the management, decision-making, and overall operation of the company, your employees, and outsourcers. By knowing the trends and good practices in this field, you can not only protect your company from losses, due to the strengthening of compliance and ethics, but also strengthen your competitiveness and reputation.
  • Regulators and other oversight bodies that monitor companies and their legal operations, assess their liability in the event of violations, and build an external environment that significantly influences the development of effective compliance and ethics programs within organizations. Last but not least, you also audit and evaluate the operation of the compliance system in the internal management of companies.
  • Compliance Professionals, who set up and manage a compliance program in organizations and advise management and supervisory bodies and other management on existing and pressing compliance issues. Through your work and professional development, you create the benefits of a compliance program for your organization.
  • Internal audit professionals who work with compliance experts to audit the compliance function and system.
  • Social responsibility professionals with whom compliance and business ethics issues are closely linked and intertwined.
  • Lawyers and other interested professionals who are, in one way or another, stakeholders or advisors in the organizational compliance and ethics management system.


Ascaldera and Info House are cooperating in the implementation of the rules imposed on companies by the GDPR (the new European general regulation on personal data protection). The info house takes care of the legal part, Ascaldera focuses on information technologies, which must comply with legal rules. We offer companies with their top experts an analytical and thorough review of compliance with the GDPR, we perform t.i. GAP analysis and take care of internal training.