Worldline - 2019 Universal Registration Document

RISK ANALYSIS Internal Control

Internal Control [GRI 102-16] [GRI 102-17] [GRI 102-25] F.5 [GRI 102-33] [GRI 102-34] [GRI 103-3 Social economic compliance]

The internal control system whose definition is stated in Section F.5.1 below relies on the internal control reference framework prescribed by the AMF ( Autorité des Marchés Financiers ). The “general principles” section of the AMF framework has been used to describe in a structured manner the components of the internal control system – Section F.5.3 “Components of

the internal control system”. Specific attention has been given to the internal control system relating to accounting and financial information, in compliance with the application guide of the AMF - see Section F.5.4 “Systems related to accounting and financial information”. Internal control players are described in Section F.5.2 “Internal control system players”.

F.5.1

Internal control definition and objectives

Internal control system put in place by the Company aims to ensure: Compliance with applicable laws and regulations; ● Application of instructions, policies and guidelines ● approved by general management; Correct functioning of Company’s internal processes in ● order to establish the operational effectiveness efficiency, the safeguarding of its assets; and

Reliability of financial information.

●

One of the objectives of internal control procedures is to prevent and control risks of error and fraud. As for any internal control system, this mechanism can only provide reasonable assurance and not an absolute guarantee against these risks.

Internal control system players F.5.2

Audit, Risk and Compliance (ARC) Committee The Audit, Risks and Compliance Committee has been setup under the supervision of Group Internal Audit, in order to strengthen the local supervision of Internal Control topics. Its purpose is to share the main audit conclusions with local management, and to review action plans related to identified weaknesses or potential risks. Group Internal Control The Group Internal Control function ensures the development, coordination, implementation and maintenance of the internal control system, throughout the Group. This includes the definition of processes, tools and methodologies for Internal Control, the ownership of the Group Control Framework (Book of Internal Controls) and driving the monitoring of Internal Control activities. Group Internal Control relies on local Internal Control Process Coordinators in managerial units. Internal Audit The Group Internal Audit department consists of mutualized teams consisting of Worldline and EquensWorldline auditors. The team operates in accordance to the same consistent methodology and approach. In addition, single point of contacts are foreseen for regulated entities.

The main bodies involved in the implementation of internal control procedures are as follows:

F

Board of Directors supported by Audit Committee

The Board of Directors prepares governance rules detailing the Board’s role supported by its Committees. Those Committees enlighten the Board as to the quality of the internal control system. The Audit Committee, in particular, is informed of the content and the implementation of internal control procedures used to ensure the reliability and accuracy of financial information and operations and stays informed about the proper implementation of the Internal Control System. General management and Management Committees General management is responsible for the management of the Group’s business and focuses on strategic aspects to develop the Group as well as the operational management. Management Committees, at different levels, are responsible for implementing and monitoring the internal control system within their respective areas of responsibility.

345 Universal Registration Document 2019