Business Operation and Operating Results Corporate Governance Financial Statements Attachments
2. Risk management
Risk management policy and plan
The Company places importance on risk management and sustainable development that can achieve
the organization’s objectives and goals, as well as meet the needs of the stakeholders appropriately by
applying international standard guidelines of COSO ERM 2017: Enterprise Risk Management Integrating
with Strategy and Performance with the Company’s risk management processes. The Company is also
determined to manage risks towards the achievement of the organization’s objectives. This is done in order
to decrease the probability that risks will occur or reduce the impact if an event occurs and/or to obtain
business opportunities.
The Company’s structures of risk management are categorized into 3 levels. These levels are corporate
level, field level or business unit level and operational level. It is duty and responsibility of the management
and personnel at all levels to manage and control operational risks to acceptable levels. The Corporate
Governance and Risk Management Committee is comprised of independent directors and directors that
have been appointed to define the policies and the scope of operational risk management. This includes
follow-ups, scrutinizing, and giving comments and recommendations regarding the tasks of governance
and risk management. There is the Risk Management Committee which consists of the Company’s high-
ranking executives or representatives from various departments to closely monitor risk management
operations and create risk management culture through training to provide knowledge to the employees.
The Company implemented a business continuity management system under the framework of
international standards in business contingency management to prepare readiness in case of occurrence
of the incident, such as disaster, natural perils, or any mistakes which are not under control. Those
circumstances may cause interruption of main operating system and may lead to loss or damage to the
properties and personnel, covering critical business processes, both at the central and regional levels. It
is specified that there must be a business continuity management policy and manual in place, starting
from response to situations including supervision on communication, dissemination of necessary information
both internally and externally, appropriately, and promptly ensuring that the business continuity management
will be effective and sustainable.
บริิษััท สหการประมููล จำำากัด (มหาชน)
Union Auction Public Company Limited
39