Risk Management Strategy

Identification Of Risk

The Board is responsible for the oversight of the Group's risk management and control framework. Responsibility for control and risk management is delegated to the appropriate level of management within the Company with the Managing Director having ultimate responsibility to the Board for the risk management and control framework. The primary objectives of the risk management system at the Company are to ensure:

  • all major sources of potential opportunity for and harm to the Company
    (both existing and potential) are identified, analysed and treated
    appropriately;
  • business decisions throughout the Company appropriately balance the
    risk and reward trade off;
  • regulatory compliance and integrity in reporting is achieved; and
  • the Board and investors understand the risk profile of the Company.

In line with these objectives the risk management system covers:

  • Operations risk;
  • Financial reporting; and
  • Compliance / regulations
  • System/IT process risk

Arrangements put in place by the Board to monitor risk management include:

  • regular reporting to the Board in respect of operations and the financial
    position of the Company;
  • quarterly rolling forecasts prepared; and
  • circulate minutes of relevant Committees to the Board and provide a
    report to the Board on an annual basis.

A risk management model is also being developed and will provide a framework for systematically understanding and identifying the types of business risksthreatening Whinnen as a whole or specific business activities within the Company.

Integrity of Financial Reporting

Commencing in the year ending 30 June 2007, the Company's Managing Director and Company Secretary (or equivalent) report in writing to the Board that:

  • the financial statements of the Company and its controlled entities (where
    appropriate) for each half and full year present a true and fair view, in all
    material aspects, of the Company's financial condition and operational
    results and are in accordance with accounting standards;
  • the above statement is founded on a sound system of risk management
    and internal compliance and control which implements the policies
    adopted by the Board; and
  • the Company's risk management and internal compliance and control
    framework is operating efficiently and effectively in all material respects.

Role of Auditor

The Company's practice is to invite the auditor to attend the annual general meeting and be available to answer shareholder questions about the conduct of the audit and the preparation and content of the auditor's report.

Review of Risk Management Policy

Given the speculative nature of the Company's business it is subject to general risks and certain specific risks. A summary of the major risk factors were set out in the Company's Prospectus dated on or around 1 March 2007. These risk factors remain relevant to the Company.

The analysis and evaluation criteria are used to continually assess the impact of risks upon Whinnen's business objectives. Management is responsible for the development of risk mitigation plans and the implementation of risk reduction strategies. The annual business planning process includes careful consideration of internal and external risk profile of the company. Managers will report monthly to the board on the areas they are responsible for, including key business risks. Whinnen's business risk management process provides a comprehensive, integrated approach for carrying out risk management activities. This process willallow management to minimise the potential impact of business risks in achieving objectives to create and protect shareholder value.

Responsibilities Managing Director

The Managing Director ('MD') is accountable to the Board, for ensuring that the risk management system is implemented and maintained in accordance with the Risk Management Policy. Assignment of responsibilities in relation to risk management is the prerogative of the MD.

The MD is accountable for the implementation of the Risk Policy and for maintaining a programme of risk reassessment. The MD also provides advice to the relevant Senior Executives on risk management matters relevant to their responsibilities. The MD is to assist senior management and the Board in the effective discharge of their responsibilities with regard to Whinnen's internal control environment by ensuring the efficiency and effectiveness of Company processes and identifying opportunities to improve operating performances. At appropriate intervals, the MD shall determine the adequacy and effectiveness of the Company's system of internal accounting and operating controls and determine if the business unit/function are managing risks, in accordance with management instruction, policies and procedures, in a manner consistent with Company objectives.

Senior Executives

Senior Executives are accountable for strategic risk management within areas under their control including the dissemination of the risk management process to operational managers. Collectively the Senior Executive is responsible for:

  • The formal identification of strategic risks that impact upon Whinnen's
    business;
  • Allocation of priorities;
  • The development of strategic risk management plans;
  • The Senior Executive review progress against agreed risk management
    plans.

Review

This Policy will be formally reviewed by the Board each year.