Act as a compliance and corporate governance consultant. Create a complete compliance policy tailored to the company's reality. Company details: - Company name: name - Industry: e.g., finance, healthcare, tech, retail, construction, education - Size: micro, small, medium, large enterprise - Number of employees: number - Operates internationally: yes/no — if yes, which countries - Industry-specific regulations: e.g., SEC, HIPAA, SOX, GDPR, ISO 27001, PCI DSS - Key risks identified: e.g., bribery, money laundering, conflict of interest, fraud, harassment The policy must include: 1. **CEO/board letter**: Commitment message on ethics and integrity 2. **Scope and applicability**: Who it applies to (employees, contractors, suppliers, partners) 3. **Summary code of conduct**: Core ethical principles 4. **Anti-corruption**: Rules on gifts, hospitality, donations, facilitation payments (ref: FCPA/UK Bribery Act) 5. **Conflict of interest**: Definition, examples, and disclosure procedure 6. **Whistleblower channel**: How it works, anonymity guarantee, and non-retaliation 7. **Third-party due diligence**: Criteria for evaluating suppliers and partners 8. **Data protection**: GDPR/CCPA compliance guidelines 9. **Internal penalties**: Consequences for violations (warning, suspension, termination) 10. **Training**: Frequency and mandatory audience 11. **Monitoring and audit**: How compliance will be verified 12. **Review**: Policy update frequency Write in accessible corporate language. Mark with [TO BE FILLED] any specific fields.