6 GOVERNANCE 249 Risk, Integrity & Compliance Department (“RICD”) leads the Group’s compliance monitoring programme. RICD is responsible for ensuring the effectiveness of the compliance process, conducting monitoring activities, and escalating material compliance matters where appropriate. Outcomes of compliance monitoring and key developments are regularly reported to the Risk, Integrity and Compliance Committee (“RICC”), the Board Governance and Risk Committee (“BGRC”), and the Board of Directors to ensure continued oversight and accountability. OBJECTIVE STATEMENT To ensure a positive compliance culture through adopting the highest standards of probity and accountability in all areas of UEM Edgenta Group’s operations and businesses COMPLIANCE POLICY Articulating compliance commitment Upholding Responsibility Elevating good business practices MATURITY LEVEL LEVEL 0 - Incomplete Ad hoc & unknown LEVEL 1 - Initial Unpredictable & reactive LEVEL 2 - Process Process measured & controlled LEVEL 3 - System Proactive rather than reactive LEVEL 4 - Programme Outcome measured & controlled LEVEL 5 - Effective Optimising for effectiveness GOVERNANCE STRUCTURE METHODOLOGY APPROACH Board of Directors (“Board”) Establishment of compliance reporting dashboard Risk, Integrity and Compliance Committee (“RICC”) Review of Acts & Regulations Board Governance and Risk Committee (“BGRC”) Establishment of Regulations listing & compliance checklist Risk, Integrity & Compliance Department (“RICD”) Compliance Self-Assessment Process Owner Internal Audit Function (Compliance Assurance) Compliance Function (Monitor compliance) Governance Owner (Inform new laws and regulations) Process Owner (Ensure compliance) Compliance UEM Edgenta adopts a structured and enterprise-wide approach to compliance management to ensure adherence to applicable laws and regulations, thereby safeguarding the Group’s reputation and operational integrity. The following Group’s Compliance Framework provides a systematic methodology to identify and assess regulatory obligations, monitor and report compliance performance and mitigate compliance risks:
RkJQdWJsaXNoZXIy NDgzMzc=