Risk management is an essential part of Elisa's internal control system. It ensures that the risks affecting the company's business are identified, managed, and monitored. The company categorizes its business risks into strategic, operational, insurable, and financial risks.
Sustainability risks have been assessed as part of Elisa's double materiality assessment process, resulting in the identification of material risks from a sustainability perspective:
- risks related to information security and privacy, particularly the leakage of personal data or phishing or data breaches targeting personal data
- risks related to climate change management
- risks related to employee well-being, health, and safety
- risks related to the procurement and management of materials
- risks related to corruption or bribery, which is becoming more material with the internationalisation of both the supply chain and customer relationships