Owner Role
Owners are accountable for compliance outcomes within their assigned domain. They receive escalations, approve evidence packages, and have visibility into all compliance activity within their scope.
Responsibilities
Section titled “Responsibilities”- Review and approve final evidence packages before audit submission
- Receive escalation alerts when deadlines are missed or reviewers flag critical issues
- Assign and manage reviewers within their compliance domain
- Monitor compliance calendar adherence for their domain
- Validate that reviewer attestations are complete and accurate
What Owners Can Do
Section titled “What Owners Can Do”- View all documents, reviews, and evidence within their domain
- Approve or reject evidence packages
- Reassign reviews to different reviewers
- Configure escalation rules for their domain
- Generate and export compliance reports
- Access the Risk Intelligence Dashboard for their domain
What Owners Cannot Do
Section titled “What Owners Cannot Do”- Modify system-level settings (Administrator only)
- Access data outside their assigned compliance domain
- Delete audit trail entries
- Override reviewer attestations without creating a new review record
Accountability
Section titled “Accountability”Every Owner action is logged:
- Evidence package approvals
- Reviewer assignments and changes
- Escalation acknowledgments
- Report generation and export
This log is immutable and available to Administrators for audit purposes.