Audited information

Under the Enterprise Risk Management Policy, based on the risk management standard of the Institute of Risk Managers, a tool is used to prepare risk assessments every year by Business Units, Service Units and Regions assessing threats and opportunities that will impact the objectives set for Clariant overall. These objectives are a result of the overall strategy of the Group as set by the Board of Directors and implemented by the .

The Executive Committee is responsible for monitoring the risk management assessments for relevance and consistency.

Objectives setting is finalized during the last quarter of the year. These objectives together with the threats and opportunities to them are subject to scrutiny by the Executive Committee during meetings with each Business Unit. Also reviewed and discussed are the measures proposed to maximize opportunities and reduce or contain threats. In that context, mitigation measures are defined and responsibilities are assigned.

The Group, the Service Units and the Regions are also required to make risk assessments based on the same criteria. All are required to report significant changes to existing identified risks and new threats and opportunities as they arise.

Risk registers are maintained using financial, operational, reputational impact and probability assessements to score and rank all identified risks. The assessments also address the measures in place to manage the risk identified with dates for completion of the measures. Effectiveness of the measures is also assessed.

When threats and opportunities have been identified, and quantified, they are delegated to responsible named individuals who are required to deliver effective risk management. Depending on the nature of the risks identified, specific skill sets may be required for the management of those particular risks. The assessments are shared between the stakeholders on a regular basis.

A consolidated risk assessment is submitted to the Excutive Committee, the Audit Committee and the Board of Directors for review. In the case of new or changed risks, the reporting procedure is accelerated. Summaries of BUs, Regions and Services risk assessments are shared within Clariant to deliver the Group summary to all key managers.

To support functional responsibility, certain functions have access to risk assessments to assist them in their roles. Examples of such functions are Environmental Safety & Health Affairs (ESHA) to identify key sites for their property risk survey programme, internal audit and Group procurement.

Examples of identified risks included in the Risk Register:

2.1 – Regulation & Compliance: Environmental and product risks

Clariant is subject to many rules and regulations as well as standards. These include chemical industry, country, government and customer requirements as well as the European Union’s (EU) Regulations on Registration, Evaluation, Authorization and Restriction of Chemical substances (REACH). Corporate Product Stewardship is responsible for the management of these risks. Certain specific matters are delegated to Legal, ESHA and Logistics functions.

2.2 – Site and location

This includes manufacturing plants and equipment important for the production of Clariant products for sale to customers. Also addressed are country and culture issues that could create threats and opportunities to business objectives. The aim is to maintain high-quality production facilities. ESHA and Regional Services are responsible for the management of the associated risks.

2.3 – Competitor activity

A number of identified risks include the development of the competitive landscape including emerging players and consolidation activities that could affect the nature and extent of competition. Clariant is a leading participant in its industrial sectors and each sector is monitored to identify changes and consider and plan to deal with the consequences of changes to customers and competitors.

Executive committee

Management body of joint stock companies; at Clariant the Executive Committee currently comprises four members. VIEW ENTIRE GLOSSARY

Stakeholder

Stakeholders are people or groups whose interests are linked in various ways with those of a company. They include shareholders, business partners, employees, neighbors, and the community. VIEW ENTIRE GLOSSARY

Compliance

Compliance is a key element of Corporate Governance. It refers to compliance with the law and directives as well as with voluntary codes within the company. VIEW ENTIRE GLOSSARY