The Board of Directors of Supalai Public Company Limited has been committed and has attached importance to risk management by adopting the risk management process covering Strategic, Operational, Financial, Liquidity, Legal and Regulatory, Corruption, Information Technology, Marketing, Social Network, Consumer Protection, Human Rights and Social and Environmental issues as well as external situations that have an impact on the Company. This is to enable the risk management to be in a systematic manner, while reducing the likelihood of damage which might affect the achievement of the Company’s objectives to an acceptable level and be consistent with the strategic plan of the Company, which covers;

  • causes of risks affecting the Company in financial and non-financial aspects, and provide a review of the risks every time there is a change of various factors affecting the capital fund of the Company;

  • categories of risks and determine the risk appetite to be used as a basis for responding to the risks of the Company;

  • assessment of risks by adding measures for risk assessment to achieve greater accuracy in terms of both quantitative and / or qualitative aspects;

  • management of risks and monitoring each category of risk according to the priority by arranging for monitoring of risks at least on a quarterly basis.

The above-mentioned policy covers the operations of its subsidiaries, associated companies and other companies under the Company’s control. The fifth amendment was done in accordance with the resolution of the Board of Directors’ Meeting No.12/2019 held on 17 December 2019, of which the guidelines are as follows:

  1. To set the same standard of the risk management process.

  2. To implement integrated risk management systematically and continuously in harmonization with the KPI (KPI : Key Performance Indicators) and strategic plan.

  3. To encourage and develop all levels of staff to gain knowledge and understanding and participate in the process so as to realize its importance of risk management.

  4. To focus on employees from all levels to proactively manage risks and set up the Business Continuity Plan for material issues in businesses.

  5. To set up the internal control system, with a coverage of all aspects including, strategic, operational, financial, liquidity, legal and regulatory, corruption, marketing, information technology, social network, consumer protection, human rights, social and environmental, in order for the Company to have a proper and efficient internal control system.

  6. All employees are responsible for identifying risks, assessing risks by considering the potential risks and impacts of such risks, and proposer ways or means to amend the risk under their responsibility. They shall also comply with the risk management plan to ensure that the risk is at acceptable level and immediately report on results of the risk management plan implementation according to the risk management process undertaken by the Company.

  7. To identify and manage risks that affect the Company's plan, direction and strategy systematically to ensure that the risk is at acceptable level; whereby, if the risk is medium, high or very high, the risk management plan, and acceptable risk levels must be reported to the Risk Management Committee.

  8. When employees see or acknowledge the risks that may have impact on the Company, the subordinated risk must be reported to the management of the Company, and the Risk Management Committee acknowledges the risks in order to determine the best method to manage risks under appropriate circumstances or report to

  9. To provide a follow-up, assessment, and prepare a report on the risk management results to be submitted to the Risk Management Committee and the Company’s Board of Directors to further provide approval or recommendations and to acknowledge, review, improve and report on potential new risks to minimize the impact on the Company's achievement of its objectives

  10. ส่Encouraging employees to participate in risk management and resource management for corporate risk management so that the business can provide the support plan by continuously developing business, social and environmental innovations in order to create diverse values to the business and all stakeholders that cover economic, social and environmental aspects.