Sarbanes-Oxley Anonymous Reporting System

US 20060010047A1
Filed: 07/06/2004
Published: 01/12/2006
Est. Priority Date: 07/06/2004
Status: Abandoned Application

First Claim

Patent Images

1. ) a method of providing sarbanes-oxley anonymous reporting for a public company, said method comprising:

i) receiving in an independent secure database information pertaining to an event relating to accounting practices, internal accounting controls, and/or auditing of said public company, ii) accessing said database via a network interface to enable anonymous submission of information by a user regarding said event (e.g. filing a complaint), iii) providing an audit committee with secure restricted access to certain information of said database to obtain read-only information about said event and to input status and results of an investigation pertaining to said event, and iv) providing said user with secondary access to said database to enable tracking of status information about an earlier reported event supplied by said audit committee and/or to anonymously submit additional information relative to said event.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This invention relates to information escrow and anonymous reporting systems and methods, but more specifically, to an independent information storage and retrieval system that escrows information anonymously reported under the Sarbanes-Oxley Act. The present invention aims to provide public companies with a system and method to comply with the Sarbanes-Oxley Act. The Act requires public companies to establish procedures for the receipt, retention, and treatment of complaints received by the issuer of securities regarding accounting, internal accounting controls, or auditing matters; and the confidential, anonymous submissions by employees of the issuer of concerns regarding questionable accounting or auditing matters. To achieve this goal, the invention provides a method and a system for implementing the methods that are specifically directed to statutory compliance.

32 Citations

View as Search Results

26 Claims

1. ) a method of providing sarbanes-oxley anonymous reporting for a public company, said method comprising:
- i) receiving in an independent secure database information pertaining to an event relating to accounting practices, internal accounting controls, and/or auditing of said public company, ii) accessing said database via a network interface to enable anonymous submission of information by a user regarding said event (e.g. filing a complaint), iii) providing an audit committee with secure restricted access to certain information of said database to obtain read-only information about said event and to input status and results of an investigation pertaining to said event, and iv) providing said user with secondary access to said database to enable tracking of status information about an earlier reported event supplied by said audit committee and/or to anonymously submit additional information relative to said event.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 26)
- - 2. ) The method as recited in claim 1, wherein said accessing step comprises accessing said database via an Internet.
  - 3. ) The method as recited in claim 1, wherein said public company has the ability to restrict access to file an event (i.e. complaint) to key individuals—
    - all individuals who are in a position to know material facts about the accounting, internal accounting controls or auditing matters of an organization.
  - 4. ) The method as recited in claim 2, further comprising an automated securing of the communication to ensure that user can only communicate via a secure channel over the Internet.
  - 5. ) The method as recited in claim 2, wherein said accessing step comprises querying said user regarding independence of said access network in order to further assure anonymity vis-à
    - -vis said a corporate network
  - 6. ) The method as recited in claim 5, wherein said accessing step further comprises confirming independence of said access network by comparing an IP address of a network address terminal with a stored list of IP address applicable to the company under which said event is reported.
  - 7. ) The method as recited in claim 1, further comprising the step of notifying an audit committee of receipt of said event by said database
  - 8. ) The method as recited in claim 1, further comprising the step of confirming to said user that their complaint has been filed.
  - 9. ) The method as recited in claim 1, further comprising the step of matching both a Company Name and Password prior to said user posting a complaint as a further security measure and a means to guarantee delivery of complaint to the respective audit committee.
  - 10. ) The method as recited in claim 1, further comprising the step of creating a back-up of the new complaint entry into the database to prevent any data loss and guarantee delivery of entry to the audit committee.
  - 11. ) The method as recited in claim 10 wherein said notifying occurs via email
  - 12. ) The method as recited in claim 1, further comprising assigning a high-level encrypted password to said user to enable further access to said database, said password comprising a combination of alpha characters, numeric characters, upper case characters and lower case characters.
  - 13. ) The method as recited in claim 12, further comprising automatically locking out a user for a fixed time period after attempting to gain access to said database with an incorrect password
  - 14. ) The method of claim 13, wherein said automatic lock-out occurs after ten attempts
  - 15. ) The method of claim 14, wherein said fixed time period is at least one-half hour.
  - 26. ) The method of combining all events related to the original complaint filed via method as recited in claim 1 and 16 into a single management view.

16. ) A system that provides Sarbanes-Oxley anonymous reporting for a public company, said system comprising:
- i) An independently escrowed, secure database to receive information pertaining to an event relating to accounting practices, internal accounting controls, and auditing of said public company, ii) A user interface of said database accessible by a user to enable anonymous submission of information regarding said event, iii) An audit interface that provides an audit committee with secure, restricted access to certain information of said database to obtain read-only information about said event and to input status and results of an investigation pertaining to said event, and iv) An audit interface that allows said user to request information from original complainant. v) Said user interface providing said user with secondary anonymous access to said database to track status information supplied by said audit committee about an earlier reported event and/or to anonymously submit additional information about said event.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 17. ) The system as recited in claim 16, further comprising an email agent that sends notification of receipt of said event by said database to an audit committee after receipt thereof.
  - 18. ) The method as recited in claim 16, wherein said accessing step comprises accessing said database via an Internet.
  - 19. ) The method as recited in claim 16, further comprising an automated securing of the communication to ensure that user can only communicate via a secure channel over the
  - 20. ) The method as recited in claim 16, further comprising assigning a high-level encrypted password to said user to enable further access to said database, said password comprising, as determined by the Audit Committee, a combination of alpha characters, numeric characters, upper case characters and lower case characters.
  - 21. ) The method as recited in claim 16, further comprising automatically locking out a user for a fixed time period after attempting to gain access to said database with an incorrect password
  - 22. ) The method of claim 21, wherein said automatic lock-out occurs after ten attempts
  - 23. ) The method of claim 22, wherein said fixed time period is at least one-half hour.
  - 24. ) The method as recited in claim 16, further comprising the step of confirming to said user that their management entry has been recorded.
  - 25. ) The method as recited in claim 24, further comprising the step of creating a back-up of the new management entry into the database to prevent any data loss and guarantee delivery of entry to the audit committee.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oculus
Original Assignee
Oculus
Inventors
Minor, Erik

Application Number

US10/710,373
Publication Number

US 20060010047A1
Time in Patent Office

Days
Field of Search
US Class Current

705/30
CPC Class Codes

G06Q 10/10 Office automation; Time man...

G06Q 40/12 Accounting

Sarbanes-Oxley Anonymous Reporting System

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

32 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Sarbanes-Oxley Anonymous Reporting System

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links