King IV is now effective for financial years that start on or after 1 April 2017 and officially replaces King III in its entirety. In response, an important step for you to take is to understand the differences between King III and King IV. This will help you understand what you need to tweak in the actions you are already taking under King III. People are asking these questions:
- What are the differences between King III™ and King IV™?
- How do I transition from King III to King IV as quickly and easily as possible?
- What if I’m implementing a King Code for the first time?
Many people have spent a lot of time and money applying King III, and understandably don’t want that effort to go to waste. Even though King IV replaces King III entirely, they want to build on what they have already done and just do the extra things that King IV requires them to do.
If you have not previously been applying the King Report and King Code, understanding the differences between King III and King IV will help you properly plan how you will apply King IV. Without understanding how King IV differs or what extra compliance requirements it contains, you will not be able to apply it properly.
We can help you transition to King IV
Having a summary of King III and King IV to compare provides you with valuable insight, but does not cover all the important ground. We have developed King III to King IV comparison tables that cover all the recommended practices of the IT Governance and Compliance Governance principles in both King Codes in detail. The table is a valuable resource in that it highlights the differences or extra compliance requirements in King IV that you need to know about, and also outlines the additional compliance steps you must take.
In addition to the comparison table, we have also developed a King planning tool that you can use internally, to outline the areas of governance that you have focused on in the previous financial year (or reporting period), and what you plan to focus on in the next one. You can then transfer your responses in the planning tool into the disclosure document that King IV requires you to publish at the end of each reporting period or financial year, by using our King disclosure tool.
Actions you can take
- Empower yourself with knowledge and get the tools to effectively transition from King III to King IV by attending our 45-minute King Code Webinar.
- Gain the tools and more insight to help you transition from King III to King IV by attending our 2-hour Practical King IV Workshop on IT and Compliance Governance.
- Improve your organisation’s IT Governance, Risk and Compliance by attending our IT GRC workshop that includes King IV.
- Find out more about King IV by reading our King IV summary.
- Make the right disclosures for King IV by asking us to assist you. We have created clever ways to assist you to draft accurate customised disclosures for your organisation as painlessly as possible.
- Protect your intellectual property by instructing us to conduct an Intellectual Property Audit for you.
What are the main differences between King III and King IV?
Although King IV is based on the underlying principles of the previous King Codes, it emphasises much more stakeholder inclusion, IT governance and disclosure than before. King IV presents a move away from the apply-or-explain regime of King III, and now asks you to apply and explain which recommended practices you’ve adopted, how you’ve adopted them, and which ones you still plan to adopt in the coming financial year.
There’s also been a reduction in the size of the King Code and Report as well. King III had 75 principles whereas King IV only has 17 principles in total. The 17th principle only applies to institutional investors, so organisations are left with 16 principles that they have to comply with. The King IV Report™ has been scaled down to only 82 pages. Previously the codes and reports were published separately but King IV integrates the code into the report. The Report has decreased in size and is more applicable to its audience. The document is easier to read and understand. This helps smaller companies to apply the principles in their businesses.
King IV vs King III regarding IT Governance
IT governance is one of the key areas where King III and King IV are different. For IT governance, one of the most notable differences between the King Codes is that King IV emphasises that governance should focus on technology and information as separate issues, not one. This is a significant departure from King III, which focused on technology rather than information. Data governance (or information governance) becomes even more important because of King IV.
Another difference in King IV is that the governing body will now have to set the direction for how the organisation will achieve good governance of technology and information. This suggests that you will now have to formulate a policy document specifically containing the organisation’s approach. It will also require awareness-raising sessions or workshops with management and the staff. King IV even requires your service providers to have good IT governance and places an added responsibility on you to evaluate their compliance.
Other additional steps under King IV include:
- Disclosing how you have applied or plan to apply IT governance at the end of each financial year that starts on or after 1 April 2017 – the King IV effective date.
- Conducting an Intellectual Property Audit to protect your intellectual property assets.
- Conducting an IT governance assessment that assesses the gaps, and makes recommendations as well. This will include briefing your staff, assessing the technologies you use, and possibly changing your processes as well.
King IV vs King III regarding Compliance Governance
King IV is much simpler than King III and does away with much of the detail. King IV leaves more up to you to determine how to achieve legal compliance. For example, you don’t have to have a compliance function or officer. The principle on compliance governance also deals less with risk but requires much greater disclosure regarding compliance than what King III did. Independent assurance on compliance is now voluntary and not mandatory. For non-binding rules, codes and standards, King IV requires that you be much more proactive in actually complying with any that your organisation has adopted. King IV also requires that you create a much stronger culture of compliance with applicable laws, in your organisation, by, for example, setting out the laws that your organisation is bound to in a policy document that everyone in key positions in your organisation has access to and knows about.
If you are interested, please complete the form on the right or enquire now. We will contact you to find out more about your requirements and give you a quote.
Note: The Institute of Directors in Southern Africa NPC (IoDSA) owns the copyright to all four of the King reports or codes on governance (including the latest version namely the King IV Report™) and owns various trademarks in relation to King IV (including King IV™, King IV Report™, King IV Report on Corporate Governance™ and King IV Code™). All of the IoDSA’s rights are reserved. All views are our own and we are not associated or endorsed in any way by the IoDSA.