The A2A Group has a risk assessment and reporting process based on the Enterprise Risk Management method of the Committee of Sponsoring Organizations of the Treadway Commission (COSO report) whose purpose is to make business risk management an integral and systematic part of management processes. This process is also driven by other international frameworks.
Such activities are carried out in accordance with the Guidelines for the Internal Control and Risk Management System approved by the Board of Directors and adopted by the Group companies with significant strategic value. The Enterprise Risk Management (ERM) process and methodology are an integral part of the Guidelines and are formalized in the internal regulatory document "Enterprise Risk Management Policy".
Through the involvement of all corporate structures, the risk identification and evaluation process is regularly activated, enabling the monitoring of the most significant critical issues, the measures to control them and the mitigation plans.
The risk profile of the Group and its companies, identified in the periodic (half-yearly) assessment process, are analysed by the respective Boards of Directors.
The ERM process takes into account all possible risks that affect the achievement of the objectives of the Group and assesses their impact on the company, as regards both the financial and reputational aspects.
The Enterprise Risk Management methodology and process implemented by the Group also include the identification and management of opportunities, understood as scenarios with positive uncertainty linked to a risk and whose expected benefit constitutes a possible favourable effect on the achievement of the objectives of the Group.
The following tables provide a summary of the main types of risk which are part of the assessment and reporting process, grouped together on the basis of their main features: