The question isn’t whether you should implement a compliance program, it’s how you can most resource-efficiently implement the kind of compliance program that will best mitigate your risk.

Simply following rules without thought may create problems in the long run. Does your team really understand why the rules are in place? Do they know the consequences if they don’t follow them?