Q1 2026 Compliance Review Checklist
Last updated: Jan 15, 2026 Prepared by: Sarah Chen
3 items overdue — immediate action required

Compliance Items

  1. 1. Data Protection Policy review — due Feb 1
  2. 2. Access control audit completed — Jan 8
  3. 3. Vendor risk assessments — 3 OVERDUE
  4. 4. Employee training certificates — collected
  5. 5. Incident response plan update — not started
  6. 6. Quarterly SOC 2 evidence — uploaded
  7. 7. GDPR data mapping — in progress
  8. 8. UK-FCA regulatory filing — deadline approaching

Notes

Need to follow up with Mike re: vendor assessments. 3 vendors still haven't submitted questionnaires. Escalate?

Also — Sarah mentioned the FCA deadline moved up by two weeks. Need to confirm with legal.
CONFIDENTIAL — Internal Use Only Page 1 of 1