Approach


Philsophy: Turn Risk into a choice

The assessment and prevention of the risks that could affect the Group’s values and objectives has always been an integral part of the innovative spirit and professional excellence on which Pirelli’s historical identity was founded.
Risk is a fact of business life: a preventive analysis of risk factors and an assessment of their impact on a company performance are essential prerequisites for value creation. On these bases, decision-makers are allowed to make choices knowingly.

Mission

Considering that risks represent a key component of business, the new integrated risk governance model (Enterprise Risk Management) has the following mission:

  • “to manage” risks in terms of prevention and mitigation;
  • “to seize” proactively the opportunity factors;
  • to disseminate the “culture” of the value of risk within the Company, in particular, in the strategic planning and operating processes and in the most significant business choices;
  • to assure transparency in relation to the risk profile assumed and the management strategies implemented, based on periodic and structured reporting to the Board of Directors and to the Top Management and adequate information to the shareholders, and more in general, to the so-called stakeholders.

Pillars

In harmony with these aims, Pirelli’s Enterprise Risk Management is:

  • enterprise-wide: extended to all types of potentially significant risks/opportunities;
  • value-driven: focused on the more significant risks/opportunities in relation to their capacity to prejudice the achievement of Pirelli’s strategic objectives or to erode critical corporate assets (so-called Key Value Drivers);
  • top-down: the Top Management identifies the priority risk areas and the events of greatest impact for the business;
  • quantitative; where possible, based on an accurate measurement of the impacts caused by the risks on the expected economic/financial results in relation to their probable occurrence;
  • integrated in the decision-making/business processes and, in particular, in the strategic planning and operational process.


Pirelli’s Enterprise Risk Management model forms part of three key phases in the decision making process:

  • strategic planning (medium/long term);
  • operational planning (annual and quarterly);
  • new investment projects.

It is worthwhile noting that the Enterprise Risk Management model goes beyond the strategic, operative planning and analysis of investment projects through a continuous monitoring and management of operational risks.



Risk analysis and risk measurement accompany the medium/long term planning process that is concluded with the presentation of the three-year plan to the investors.

The methodology adopted is structured into three macro-phases:

(i) identification of priority risk events;

(ii) risk analysis;

(iii) risk management.


The Strategic Risks Committee defines the risk analysis methods and establishes the metrics to measure the risk events, in particular:

  • the economic and financial reference parameters to measure the risks and their impacts (PBIT, Cash Flow);
  • the probability scales;
  • the references to assess the maturity level of the existing risk management systems (referred to the level of protection from risk in relation to the existence of management and control procedures/processes, monitoring/reporting tools and the responsibility and "ownership" of the defined risk).

The identification of the priority risk areas and the respective assessment in terms of the potential impact and the probability of occurrence are guided by the Region based on the objectives and the business plan's strategic guidelines (key value driver). The central functions coordinate the analysis of the risks which are monitored centrally, for example: raw materials and exchange rates; statistical inference techniques are applied to some risk events which are especially significant for Pirelli to build possible development scenarios as an alternative to the scenarios considered when the industrial plan was defined in order to evaluate the "strength" of its assumptions and the possible impacts on the expected results.

The use of quantitative metrics to measure the impact permits an aggregation of the risks and a representation of the Group's overall exposure to risk (so-called Profit@Risk).

The Strategic Risks Committee assures that the following aspects are defined in relation to the so-called Profit@risk:

  • the target levels of exposure to priority risks;
  • the risk management strategies, in line with the existing risk appetite (transfer, reduce, eliminate, mitigate the risk);
  • the plans of action and the "management" policies to maintain the levels of exposure within the "target" limits.

The Board of Directors takes into account the quantified risks and opportunities during the phase to approve the plan and verifies that the volatility of the economic and financial results falls within the defined tolerance threshold.

The causes of risk and the existing risk management structure are analysed in relation to the most significant risk events, in terms of the following aspects:

  • the target levels of exposure to priority risks;
  • the risk management strategies, in line with the existing risk appetite (transfer, reduce, eliminate, mitigate the risk);
  • the plans of action and the “management” policies to maintain the levels of exposure within the “target” limits.

The Board of Directors takes into account the quantified risks and opportunities during the phase to approve the three-year plan and verifies that the volatility of the economic and financial results falls within the defined tolerance threshold.

The causes of risk and the existing risk management structure are analysed in relation to the most significant risk events, in terms of the following aspects:

  • risk management strategies, policies and processes;
  • organisational protections;
  • supporting monitoring/reporting tools and information systems in order to define targeted risk mitigation plans.

The three-year plan targets and the strategic choices which the plan reflects are also submitted to "stress tests" to verify the Group's economic, financial and equity "capacity" at the occurrence of uncertainty phenomena which cannot be readily "weighed" using probabilistic factors.
The Group's overall exposure to priority risks and the respective mitigation strategies and actions are contained in the Annual Risk Assessment and Management Plan.
The Risk Officer assures the implementation of the agreed mitigation plans and the on-going monitoring of the exposure to priority risks and the Risk Officer can also propose a redefinition of the current recovery plans (if they are inadequate) and an analysis of any possible emerging risks.

Last Revised: 15 Nov 2013