Risk Management Process
The BASF Group’s risk management process is based on the international risk management standard, COSO II Enterprise Risk Management – Integrated Framework, and has the following key features:
Organization and responsibilities
- Risk management is the responsibility of the Board of Executive Directors, which also determines the processes for approving investments, acquisitions and divestitures.
- The Board of Executive Directors is supported by the Corporate Center. Corporate Finance and Corporate Development, which are units within the Corporate Center, and the Chief Compliance Officer coordinate the risk management process at a Group level, examine financial and sustainability-related opportunities and risks, and provide the structure and appropriate methodology. Opportunity and risk management is thus integrated into the strategy, planning and budgeting processes.
- BASF’s risk committee reviews the BASF Group’s risk portfolio at least twice a year to evaluate any adjustments to risk-management measures and informs the Board of Executive Directors of these. Members of the risk committee are the president of Corporate Finance, the president of Corporate Development, the president of Corporate Legal, Compliance & Insurance and the heads of the Corporate Audit, Corporate Environmental Protection, Health & Safety, Corporate Treasury, and Group Reporting & Performance Management units.
- The management of specific opportunities and risks is largely delegated to the divisions, the service and research units and the regions, and is steered at a regional or local level. This also applies to sustainability-related topics relevant to BASF including the impact of climate change on BASF. A network of risk managers in the divisions, service and research units as well as in the regions advances the implementation of appropriate risk management practices in daily operations. Financial risks are an exception. The management of liquidity, currency and interest rate risks is conducted in the Corporate Finance department. The management of commodity price risks takes place in the Global Procurement unit or in authorized Group companies.
- The BASF Group’s management is informed of short-term operational opportunities and risks that fall within an observation period of up to one year in the monthly management report produced by Corporate Finance. In addition, Corporate Finance provides information twice a year on the aggregated opportunity/risk exposure of the BASF Group. Furthermore, any arising individual risks which have an impact of more than €10 million on earnings or risks qualitatively evaluated to have a material impact, for example, reputational risks, must be reported immediately.
- As part of strategy development, the Corporate Development unit additionally conducts strategic opportunity/risk analyses with a 10-year assessment period. These analyses are annually reviewed as part of strategic controlling and are adapted if necessary. Scenarios were also developed to map possible developments beyond the ten-year horizon.
- BASF’s Chief Compliance Officer (CCO) manages the implementation of our Compliance Management System, supported by additional compliance officers worldwide. The CCO regularly reports to the Board of Executive Directors on the status of implementation as well as on any significant results and provides a status report to the Supervisory Board’s Audit Committee at least once a year, including any major developments. The Board of Executive Directors immediately informs the Audit Committee about significant incidents.
- The internal audit unit (Corporate Audit) is responsible for regularly auditing the risk management system established by the Board of Executive Directors in accordance with section 91(2) of the German Stock Corporation Act. Furthermore, as part of its monitoring of the Board of Executive Directors, the Supervisory Board considers the effectiveness of the risk management system. The suitability of the early detection system we set up for risks is evaluated by our external auditor.
Tools
- The Governance, Risk Management, Compliance (GRC) Policy, applicable throughout the Group, forms the framework for risk management and is implemented by the operating divisions, the service and research units and the regions according to their specific business conditions.
- A catalog of opportunity and risk categories helps to identify all relevant financial and sustainability-related opportunities and risks as comprehensively as possible. We also systematically assess opportunities and risks with effects that cannot yet be measured in monetary terms, such as reputational and climate risks. To reflect these, risks for companies in connection with the transition to a low-carbon economy (transition risks) as well as physical risks as defined by the Task Force on Climate-related Financial Disclosures (TCFD), among others, were added to the catalog.
- Because global climate policy ambitions and the implementation of the relevant measures play a decisive role in the ongoing growth of the chemical industry and its customer industries, global long-term scenarios (up to 2050) with various global warming paths were defined. To assess the impact of different global climate policy approaches on our business units, the scenarios were discussed by the business units in workshops. Their feedback will be incorporated into the further development of scenario assumptions and outcomes. A dataset of scenario-specific macroeconomic parameters will be provided to test the economic feasibility of investments and business strategies.
- We use standardized evaluation and reporting tools for the identification and assessment of risks. The aggregation of opportunities, risks and sensitivities at division and Group level using a Monte Carlo simulation helps us to identify effects and trends across the Group. We also aggregate qualitatively assessed risks at Group level using a risk portfolio.
- Our Group-wide Compliance Program aims to ensure adherence to legal regulations and the company’s internal guidelines. Our global employee Code of Conduct firmly embeds these mandatory standards into everyday business. Members of the Board of Executive Directors are also expressly obligated to follow these principles.
a The Corporate Audit unit is part of the Corporate Center.