The internal control and risk management system of Astaldi Group, in line with national and international best practises, must be aimed at allowing the business to be run in a way that is healthy, proper and consistent with the pre-established objectives.
In the daily conduct of his business, the Company considers the internal control and risk management system necessary in achieving its objectives.
Through the system of internal control and risk management, the Group intends to ensure that its activities comply with a business conduct which is:
- aware of the risks associated with its activities;
- healthy, proper and consistent with the pre-established objectives
- able to satisfy, in addition to its own internal needs, the needs of external stakeholders;
- compliance with laws and regulations.
Objectives of the Internal control and risk management system
The Company has defined its own internal control and risk management system through the set of rules, procedures, and organisational structures aimed at permitting:
- the individual corporate activities’ compliance with the purpose the company aims to achieve, and with the directives issued by top management in compliance with internal and external regulations;
- the effectiveness and efficiency of corporate processes;
- the reliability and precision of the accounting documents, of information, and of economic and financial reporting;
- the safeguarding of company assets, with the identification of behaviour harmful to the corporate interest, and/or fraud.
The components of the Internal control and risk management system of Astaldi
The players involved in the Company’s risk control and management system are:
- the Board of Directors;
- the Control and Risks Committee;
- the CEO in charge of the internal control and risk management system;
- the Board of Statutory Auditors;
- the auditing firm;
- the supervisory body;
- the Manager of the Internal Audit Department;
- the Manager in charge of the Company’s financial reporting;
- the Management Control and Corporate Risk Management Department;
- the second-level offices;
- management, and all the operating personnel within the sphere of their roles and responsibilities.