GHL System Berhad Annual Report 2017

ANNUAL REPORT 2017 47 STATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL INTRODUCTION The Board of Directors (“Board”) recognises the importance of a sound framework of risk management and internal controls for good corporate governance and to safeguard the Group’s assets and shareholders’ interests. Towards this end, the Board is committed in maintaining a sound risk management framework and internal control system for the Group and ensuring its continued effectiveness, adequacy and integrity through a process of periodic review. Guided by the Statement on Risk Management and Internal Control – Guidelines for Directors of Listed Issuer and Main Market Listing Requirements, the Board is pleased to present the Statement on Risk Management and Internal Control. RESPONSIBILITY OF THE BOARD The Board assumes the responsibility for effective and adequacy of the Group’s risk management and internal control system and has an established Term of Reference to assist in discharging of this responsibility. As such the Board has delegated the responsibility of undertaking this process of periodic review to the Audit and Risk Committee (“ARC”), whose responsibilities and duties are detailed in the ARC Report section of this Annual Report. However, the Board as a whole remains ultimately responsible for the effectiveness, adequacy and integrity of the system of risk management and internal controls. The Board’s risk management approach has continued to evolve in line with the Group’s expanding activities. During the financial year, the Group’s business has expanded from the partnership with Alipay, a third-party mobile and online payment platform based in China, which is expected to contribute significantly to the Group’s business in the coming years. The Group is also committed to grow its overseas markets and to identify suitable Merger and Acquisition (“M&A”) opportunities in ASEAN. The Board is aware that expansion into new areas of business, operating in different countries and M&A activity can involve new and different risk considerations. Whenever these events occur, the Board will, in addition to its normal risk management process, pay particular attention to the impact of Group’s overall risk profile and sufficiency of existing internal controls in addressing additional risks, if any. The Board has, during FY 2017, continued to strengthened the Groups’ governance and risk management framework to identify, assess, mitigate, report and monitor significant risks in an effective manner. The Board recognises the integral role of key management in the risk management and internal control process. The Board had established the Risk Management Committee (“RMC”), comprising senior management, to identify and assess the Group’s risks and thereafter to design, implement and monitor appropriate risk management processes and internal controls to address and mitigate such risks. KEY INTERNAL CONTROL PROCESSES The Group’s internal control system comprises the following key processes: 1. Authority and Responsibility a) Board Committees Board Committees are established and operate under clearly defined Terms of Reference, which are reviewed regularly, to objectively and independently focus on certain responsibilities delegated by the Board. b) Delegation of Authority In the financial year 2015, the Management has implemented a revised Delegation of Authority, which is in line with the growth of the Company’s business. The revised Delegation of Authority clearly defines the authority and authorisation limits of the Management in all aspects of the Company’s key business decisions.

RkJQdWJsaXNoZXIy NDgzMzc=