UNE 19601: Strengthening your Criminal Compliance in Spain

Naltilia helps you design, implement and monitor a UNE 19601-aligned criminal compliance program, so you can prevent offences, demonstrate due control and protect your organisation under Spanish law.

Align with UNE 19601 and the Spanish Criminal Code

UNE 19601 sets the requirements for criminal compliance management systems. How Naltilia Helps

  1. Map your criminal risks (corruption, fraud, money laundering, tax offences, environment, workplace safety, data protection, etc.).
  1. Link each risk to specific controls: policies, procedures, approvals, segregation of duties, financial controls, whistleblowing, investigations.
  1. Generate structured risk assessments and gap analyses against UNE 19601 requirements.
  1. Maintain a live view of your compliance level by process, business unit or subsidiary.
Clear understanding of your exposure and priorities
Turn fragmented obligations into a single, structured criminal risk map
Evidence-ready for boards, auditors and prosecutors
Show continuous improvement in your criminal compliance

Operate an Effective Criminal Compliance System

Move from paper programs to a living system that works day to day. How Naltilia Helps

  1. Automate the creation and updating of key documents: Code of Ethics, crime-prevention policy, disciplinary regime, third-party clauses.
  1. Centralise incidents, investigations, sanctions and remedial actions in one platform.
  1. Track the functioning of your whistleblowing channel and internal investigations.
  1. Document the role and activity of the Compliance Function and governing bodies.
Faster, more consistent implementation of crime-prevention controls
Automate documentation and tracking
Clear traceability of decisions, investigations and corrective measures
Stronger position to prove due control and reduce liability

Demonstrate Continuous Improvement & Readiness

UNE 19601 emphasises ongoing monitoring, review and improvement. How Naltilia Helps

  1. Plan and monitor effectiveness tests of key controls (training, approvals, checks, audits).
  1. Track training coverage and understanding for high-risk roles and third parties.
  1. Prepare dashboards and reports for governing bodies, supervisory authorities and certification audits.
  1. Document updates following incidents, regulatory changes or audit findings.
Show that your model is not static, but actively managed
Make certification and supervisory reviews simpler and more transparent
Reinforce your defence in case of investigations or criminal proceedings
Document continuous improvement and active monitoring