The business risk management in the EDP Brasil Group considers the following principles:
1.1. Internal Audit
The EDP Group takes on the commitment of transparency, trust and integrity of information, as well as compliance with internal legislation, policies, norms and procedures, ensuring a system of internal controls aligned with best practices in the market.
In order to monitor these commitments, independent evaluations of the processes and controls that support the business will be carried out to ensure an effective system of internal controls with mitigated risks.
Internal auditing uses a systematic and disciplined approach to assessing and improving process effectiveness, always focusing on relevant and material risks.
1.2. Corporate Risks
In order for all risks to be covered, the EDP Group promotes an integrated risk management program, which includes a comprehensive, disciplined, continuous and transparent process, where risks are identified, analyzed, managed, reported and accepted, provided they are In accordance with the appropriate levels of tolerance to all interested parties.
1.3. Compliance Risk
Compliance risks result from non-compliance with international and national legislation, internal policies and standards that regulate the execution of employees' daily activities. It is the responsibility of all employees to know the risks related in their area of operation. The EDP Group encourages all stakeholders not to be involved in situations that characterize their non-fulfillment of their obligations.
1.4. Financial Risks
The EDP Brasil Group has the following commitments:
1.5. Image and Communication Risk
The EDP Group recognizes communication as an essential item for interaction with its various stakeholders, aiming at strengthening its institutional image. Accordingly, the EDP Brasil Group undertakes to:
1.6. Credit Risk and Energy Risk
All customers and suppliers with whom we have operations are evaluated from the point of view of credit risk and / or energy risk. In credit risk, all operations follow deadlines and guarantees that generate the lowest risk exposure for the EDP Brasil Group. In energy risk, all operations have their simulated incremental risk, and the total portfolio must follow maximum exposure limits that guarantee the control of energy risk for the EDP Brasil Group.
1.7. Information Security Risk
The commitment of the EDP Group with the correct handling of physical or digital information and for all types of public is based on the following principles:
1.8. Asset Management Risk
The EDP Group adopts an asset management system that aims to acquire, maintain and operate physical assets of generation, distribution and electric energy services, meeting the needs of interested parties, seeking continuous improvement in processes and better allocation of investments, Considering:
1.9. Regulatory Risk
The EDP Brasil Group is committed to complying with regulations issued by regulatory agencies. Regulatory risk mitigation is accomplished by monitoring scenarios involving stakeholders in their business. The EDP Brasil Group acts in the discussion of the topics of its interest, providing studies, theses and experiences to public opinion makers.