As an integrated holding company, the Company recognizes the pivotal role of the Risk Management System in safeguarding the resilience and sustainability of its operations. This system not only serves as the frontline in identifying, assessing, and managing potential risks but also aligns with the principles of Corporate Governance (GCG). Through the implementation of an effective Risk Management System, the Company ensures transparency, accountability, and optimal risk management to deliver long-term value to stakeholders. 

The Company follows a comprehensive risk management system integrated with the strategic planning process and the Company’s business activities. The Company’s risk management shall be implemented in all management levels according to respective roles and functions.

1. GCP (Group Corporate Policy): Serves as the risk identification outlined in the form of policies and procedures.

2. Internal Control: Serves as the internal control risk management.

3. Internal Audit: Evaluates the risk management system, internal control, and management information systems.

4. IT Audit: Ensures control over the system used by the Company.

5. CCSA (Compliance and Control Self-Assessment): Evaluates the risk management system, internal control, and devices used in management information systems.

6. MARS (Management Awareness Reporting System): Serves as the risk management to identify, report, and resolve problems faced by the Company and business units.