Group risk management is led by the Chief Executive Officer, together with the Executive Management Committee, and facilitated by the Head of Risk and Internal Audit. Risk registers are compiled, and periodically updated, which map the nature of the risks relative to their likelihood of occurrence and severity and associated trends. Individual management committee members are assigned responsibility for devising risk treatment plans to eliminate, minimise or transfer risks. The Chief Executive Officer and Executive Management Committee undertake regular reviews of the risk register and progress with risk management plans.
Overall responsibility for the risk management process adopted by the Group lies with the Board. The Audit Committee reviews the effectiveness of the Group's risk management processes and other internal controls. The Head of Risk and Internal Audit provides the Audit Committee with a quarterly update of risk management activity and the risk register.
The principal risks that could have a material effect on the the Group's business activities are detailed in the Group's Annual Report.