In the framework of Enterprise Risk Management, risk assessments are prepared by Business Units, Service Units, Corporate Functions and Regions to assess threats that will impact the achievement of the objectives set for Clariant overall. These objectives are a result of the overall strategy of the Group as set by the Board of Directors and implemented by the Executive Committee.

The Executive Committee is responsible for monitoring the risk assessments for relevance and consistency. The Executive Committee has formed a subcommittee »Ethics and Risk Management«, which maintains an up-to-date understanding of areas where Clariant is, or may be, exposed to risk issues and seeks to ensure that management is effectively addressing those issues. The Ethics and Risk Management Committee meets on a quarterly basis.

The short- and long-term objectives are set in the fourth quarter of the year. These objectives and threats are subject to scrutiny by the Executive Committee during meetings with each Business Unit. Also reviewed and discussed are the proposed measures to reduce or contain threats. In that context, responsibilities are assigned.

All stakeholders are required to report significant changes to existing identified risks and new threats as they arise.

Risk registers are maintained using financial and reputational impact and probability assessments to score and rank all identified risks. The assessment also addresses the measures in place to manage the risk identified with dates for completion of the measures. Effectiveness of the measures is also assessed.

When threats have been identified and quantified, they are delegated to qualified individuals who are required to deliver effective risk management. Depending on the nature of the risks identified, specific skill sets may be required for the management of those particular risks. The assessments are shared between the stakeholders on a regular basis.

A summary risk assessment is submitted annually to the Executive Committee, the Audit Committee and the Board of Directors for review. In the case of new or changed risks, the reporting procedure is accelerated.

To support functional responsibility, certain functions have access to risk assessments to assist them in their roles.

Examples of such functions are Environmental Safety & Health Affairs (ESHA) to identify key sites for their property risk survey program or Group Procurement to ensure reliable and compliant supply of raw materials.

Examples of identified risks included in the Risk Register:

2.1 – Regulation & Compliance:

Clariant is subject to many rules and regulations as well as compliance standards. These include chemical industry, country, government and customer requirements as well as the European Union’s (EU) Regulations on Registration, Evaluation, Authorization, and Restriction of Chemicals (REACH) or similar regulations in other countries.

The function Global Product Stewardship is responsible to ensure that all relevant legal requirements are met. Certain specific matters are delegated to other functions.

2.2 – Sites and locations

This includes manufacturing plants and equipment important for the production of Clariant products for sale to customers. Also addressed are country and culture issues that could create threats to business objectives. The aim is to maintain high-quality and safe production facilities. ESHA and Regional Services are responsible for the management of the associated risks.

2.3 – Economic development

The achievement of corporate targets depends on the economic development, which is therefore continuously monitored in all markets. Should a market not develop in line with expectations, the organization will be adjusted accordingly. The global trade uncertainty arising from the currently looming conflicts around trade and tariffs could adversely affect economic development.

2.4 – Digital interconnection

Successful performance of the Clariant group depends on properly working information systems. Cyber attacks may result in the loss of data, knowledge, facilities, or money, leading to interruptions in manufacturing and product deliveries. Such attacks might cause significant economic damages as well as loss of trust.