Governance, Compliance & Legal Management System

Compliance management and legal system based on web built using the Laravel 9.x framework. In Phase 1 through Phase 4, this system was built from scratch covering CMS foundation, UI infrastructure, and five main business modules that form the core of this platform.

This system is designed to help organizations manage all aspects of regulatory compliance, risk assessment, legal document management, licensing monitoring, and routine regulatory reporting. From the database structure consisting of more than 221 migrations, it can be concluded that this system handles very complex business domains with many interrelated entities.

Problems

Fragmentation of legal document management (NKB, OHK, PKS, SK, SP, SPK) without a centralized platform.
Lack of departmental compliance transparency toward external and internal regulations.
Complexity of compliance assessment process (Compass Assessment) involving assessees, assessors, and coordinators.
Risk of expired licensing documents without early warning system.
Delays in routine regulatory reporting due to lack of integrated reminder system.
Need for audit trail and security especially after pentest findings.

Solutions Built

Legal Helpdesk module with controllers for NKB, OHK, PKS, SK, SP, SPK, attachment upload feature, related parties, checker initials, and admin approval.
Regulation Management module with external/internal regulation catalog, article paragraph breakdown, regulation implications, and Compass Assessment module for compliance tracking.
Compass Assessment module with workflow: assessee completes → assessor reviews → coordinator approves, equipped with improvement monitoring, corrective action, and assessment threshold.
Licensing Monitoring module with licensing document tracking, expired reminder via scheduled jobs, and dashboard visualization.
Report Monitoring module with PIC configuration per department, routine report reminders, and compliance status tracking per period.
AuditTrail feature on models, XSS validation middleware, captcha, login history, user stamps (created_by/updated_by), and pentest result remediation.

Project Goals

Centralization of regulatory compliance, legal document, and licensing management in one integrated platform.
Multi-level workflow automation for assessment, review, and approval with real-time notifications.
Improved visibility and accountability through transparent dashboard and reports.
Prevention of regulatory risks through automatic reminder system and periodic monitoring.
Data security and traceability through audit trail and strict input validation.

Tech Stack

Backend: Laravel 9.19, PHP 8.0.2, Laravel UI 3.4, Laravel Sanctum 2.14.1, Livewire 2.10, Maatwebsite Excel 3.1, PhpWord 1.1, Intervention Image 2.7, Spatie Laravel Sluggable 3.4, Spatie Image Optimizer 1.7, Mews Captcha 3.3, Number to Words 2.7, Laravel Debugbar 3.6.
Frontend: Vite 3.0.0, laravel-vite-plugin 0.7.1, Bootstrap 4.6.2, jQuery 3.7.0, Sass 1.94.2, Livewire 2.10, Simplebar 5.3.9, vite-plugin-static-copy 0.13.0.
Database & DevOps: MySQL, Redis, PHPUnit 9.5.10, StyleCI, patch-package 8.0.0, EditorConfig, Git.

Timeline

Period: June 2022 – December 2024 (~2.5 years)
Phase: Foundation & CMS Core → UI Framework & API Infra → Major Module Development → Security Hardening.

Architecture Notes

This application uses a modular monolithic architecture, where each main business module is represented by its own service provider that registers repository pattern (interface + Eloquent implementation) and centralized capability authorization. This architectural pattern facilitates maintenance and addition of new modules.

Project Description

Related

Sustainability Information System

Integrated Recruitment System (Web Career)

Product Catalog Management System