BPCE - 2020 Universal Registration Document

RISK FACTORS & RISK MANAGEMENT

RISK MANAGEMENT SYSTEM

These activities are described in more detail below:

Group policy and standards

Monitoring and control

Coordination

present the Management Board and Supervisory • Board with a risk appetite framework for the Group and ensure its implementation and roll-out at each major entity; help draw up risk policies on a consolidated basis, • inform overall risk limits, contribute to discussions on capital allocation and ensure that portfolios are managed in accordance with these limits and allocations; define and implement standards and methods for • consolidated risk measurement, risk-taking approval, risk control and reporting, and compliance with risk regulations; oversee the risk information system, working closely • with the IS departments, while defining the standards to be applied for the measurement, control, reporting and management of risks.

carry out the annual macro-level risk mapping • exercise, factoring in the overall risk policy, risk appetite and annual permanent control plan, which is part of the internal control system; assess and control the level of risk across the Group; • conduct permanent monitoring of limit breaches and • their resolution, centralize risk data and prepare forward-looking risk reports on a consolidated basis; help the Groupe BPCE Management Board to • identify emerging risks, concentration of risk and other various developments, and to devise strategy and adjust risk appetite; perform stress tests with the goal of identifying • areas of risk and the Group’s resilience under various predetermined shock scenarios; conduct controls to ensure that the operations and • internal procedures of Group companies comply with legal, professional, or internal standards applicable to banking, financial and insurance activities; perform Level 2 controls of certain processes used to • prepare financial information, and implement a Group Level 2 permanent risk control system.

are functionally subordinate to the Risk and • Compliance functions, participating in the work of local Risk Committees or receiving the results of their work, coordinating the departments and approving the appointment or dismissal of all new Heads of Risk Management, Heads of Compliance, or Heads of Risk and Compliance meeting with the relevant managers and/or teams during national or local meetings and during checks on site or at BPCE; help disseminate risk and compliance awareness • and promote the sharing of best practices throughout the Group.

SPECIAL COMMITTEES Several committees are responsible either for defining Groupwide methodology standards for measuring, managing, reporting and consolidating all risks throughout the Group, or for making decisions about risk projects with an IS component.

Group Risk and Compliance Committee

The Group Risk and Compliance Committee is a decision-making and supervisory committee. It is an umbrella • committee for all the Group’s risks, set up in accordance with regulatory provisions, in particular Articles 223 to 232 of the French Ministerial Order of November 3, 2014. Several types of committees have been established to manage credit risk for the entire Group, meeting at varying • frequencies depending on their roles ( ex-post or decision-making analysis) and their scope of authority. The Group has also established decision-making and supervisory committees for both market and structural ALM • risks. The frequency of their meetings is tailored to the needs of the Group and its institutions. This committee meets quarterly and includes the various Groupe BPCE business lines affected by non-compliance • and operational risks. It examines information system security, business continuity and accounting review issues. Its objective is to validate action plans targeting these risks, which are included in the Groupe BPCE macro-level risk map. It also performs consolidated supervision of losses, incidents and alerts, including reports made to the ACPR under • Article 98 of Ministerial Order A-2014-11-03 in respect of non-financial risks. The Asset and Liability Management Committee is a decision-making and supervisory committee for asset and • liability management, interest rate risk and liquidity management.

Group Counterparty and Credit Risk Committees Group Market Risk Committees

Non-Financial Risk Committee

6

ALM Committee

At the same time, several committees are responsible either for defining Groupwide methodology standards for measuring, managing, reporting and consolidating all risks throughout the Group, or for making decisions about risk projects with an IS component.

609

UNIVERSAL REGISTRATION DOCUMENT 2020 | GROUPE BPCE