Archives
Contributors
Re: solution for audit compliant storage of documents for dematerialized document
Hi Alex,
having dealt with that very requirement quite often and from a
different angle, i would agree and say "no". However, there is
more than one law that is relevant here (at least in the German
case). Thinks that i am immediately aware of (but that may or may
not apply to specific companies) are (but certainy not limited
to).
- GoBD, HGB
- KassenSichV
- ProduktHaftG
- KontraG
- Basel3
- Kritis
- IDW
in U.S. additionally
- SOX
The most important requirement ist the digitally immutable "original" at the time of creation. So this is something that would require (in Europe and according to the most contemporary law) and eIDAS conform signature. I heard people wispering that this will probably be part of Odoo v16 EE (but lets see).
But even if you have eIDAS there is much more requirements to be fulfilled than only this. Maybe we can have a small discussion on that in Liege next week. As i said i am very much intersted in the topic as well and its gonna be more and more important
Best Frederik
Hello, A customer of mine is asking if the storage of Documents is compliant with the various audit requirements (inalterability, etc). I don't think the standard (even in EE) can take care of this. But maybe I'm wrong. I see requirements such as """ technical procedures, such as electronic signatures, must be used to ensure the integrity of the recorded information. The time at which the information was recorded must be verifiable without any possibility of falsification (e.g. by time stamping). Information such as protocols, log files, etc. must also be retained. """ Has anyone implemented something similar and would be willing to share experience? -- Alexandre Fayolle Senior Software Engineer Tel : +33 4 58 48 20 30 Camptocamp France SAS 18 rue du Lac Saint André 73 370 Le Bourget-du-Lac France http://www.camptocamp.com_______________________________________________
Mailing-List: https://odoo-community.org/groups/contributors-15
Post to: mailto:contributors@odoo-community.org
Unsubscribe: https://odoo-community.org/groups?unsubscribe
-- Dr.-Ing. Frederik Kramer Geschäftsführer initOS GmbH Innungsstraße 7 21244 Buchholz i.d.N. Phone: +49 4181 13503-12 Fax: +49 4181 13503-10 Mobil: +49 179 3901819 Email: frederik.kramer@initos.com Web: www.initos.com Geschäftsführung: Dr.-Ing. Frederik Kramer & Dipl.-Ing. (FH) Torsten Francke Sitz der Gesellschaft: Buchholz i.d.N. Amtsgericht Tostedt, HRB 205226 Steuer-Nr: 15/200/53247 USt-IdNr.: DE815580155
by Frederik Kramer - 03:35 - 5 Oct 2022
Reference
-
solution for audit compliant storage of documents for dematerialized document
Hello, A customer of mine is asking if the storage of Documents is compliant with the various audit requirements (inalterability, etc). I don't think the standard (even in EE) can take care of this. But maybe I'm wrong. I see requirements such as """ technical procedures, such as electronic signatures, must be used to ensure the integrity of the recorded information. The time at which the information was recorded must be verifiable without any possibility of falsification (e.g. by time stamping). Information such as protocols, log files, etc. must also be retained. """ Has anyone implemented something similar and would be willing to share experience? -- Alexandre Fayolle Senior Software Engineer Tel : +33 4 58 48 20 30 Camptocamp France SAS 18 rue du Lac Saint André 73 370 Le Bourget-du-Lac France http://www.camptocamp.com
by Alexandre Fayolle - 03:06 - 5 Oct 2022