Interim Report - 18A of 26
Appendix - Risk policies and practices
This appendix describes the significant policies and practices employed by HSBC in managing our credit risk, liquidity and funding, market risk, operational risk, reputational risk and insurance risk.
Managing risk
HSBC's approach to risk is encapsulated within our risk appetite framework. It is approved by the Group Risk Committee and the Board. For further details of activities of the Group Risk Committee see pages 197 to 201 of the Annual Report and Accounts 2010.
The framework is maintained at Group, regional, global business and customer group levels, operating through governance bodies, processes and metrics designed to assist in risk management. Risk appetite statements define, at various levels of the business, the qualitative and quantitative expressions of the risks which HSBC is prepared to embrace in alignment with its strategy and business plans. Quantitative metrics are assigned to five key categories: earnings, capital and liquidity, impairments and expected losses, risk category and diversification and scenario stress testing. Measurement against the metrics serves to:
· guide underlying business activity, ensuring it is aligned to risk appetite statements;
· determine risk-adjusted remuneration;
· enable the key underlying assumptions to be monitored and, where necessary, adjusted through subsequent business planning cycles; and
· promptly identify business decisions needed to mitigate risk.
Risk governance
Our strong risk governance reflects the importance placed by the Board on shaping the Group's risk strategy and managing risks effectively. It is supported by a clear policy framework of risk ownership, by the cascading from the Group Management Board ('GMB') of balanced scorecards that align business and risk objectives, and by the accountability of all staff for identifying, assessing and managing risks within the scope of their assigned responsibilities. This personal accountability, reinforced by the governance structure, experience and mandatory learning, helps to foster a disciplined and constructive culture of risk management and control throughout HSBC.
During the period we developed a new operating model for the global risk function. The new model integrates Compliance within Global Risk, establishes risk roles for RBWM and CMB in alignment with other global businesses and broadens the responsibility of Fraud and Security Risk. The new model is designed to enable the end-to-end management of risk in a consistent manner.
Scenario stress testing
We conduct a range of Group stress testing scenarios including, but not limited to, severe global economic downturn, country, sector and counterparty failures and a variety of projected major operational risk events. The outcomes of the stress scenarios are used to assess the potential impact on demand for regulatory capital against its supply. We also participate, where appropriate, in scenario analyses requested by regulatory bodies.
In addition to the suite of risk scenarios considered for the Group, each major HSBC subsidiary conducts regular macro-economic and event-driven scenario analyses specific to its region.
Stress testing is also used by the market risk discipline to evaluate the potential impact on portfolio values of events or movements in a set of financial variables.
Credit risk
Credit risk management
The Credit Risk department fulfils the role of an independent credit control unit as part of the Global Risk function in GMO. Its risk management and internal control procedures are designed for all stages of the economic and financial cycles, including the current environment, and there were no significant changes during the first half of 2011. Full details of the roles and responsibilities of the Credit Risk management function and the policies and procedures for managing credit risk are set out on page 197 of the Annual Report and Accounts 2010.
Principal objectives of our credit risk management
· to maintain across HSBC a strong culture of responsible lending and a robust risk policy and control framework;
· to both partner and challenge our businesses in defining, implementing and continually re-evaluating our risk appetite under actual and scenario conditions; and
· to ensure there is independent, expert scrutiny of credit risks, their costs and their mitigation.
Collateral and other credit enhancements
Collateral held against financial instruments is described in more detail below.
Loans and advances
Although collateral can be an important mitigant of credit risk, it is our policy to lend on the basis of the customer's capacity to repay rather than to rely on the value of security offered. Depending on the customer's standing and the type of product, facilities may be provided unsecured.
We employ the following principal collateral types:
· in the personal sector, mortgages over residential properties;
· in the commercial and industrial sector, charges over business assets such as premises, stock and debtors;
· in the commercial real estate sector, charges over the properties being financed; and
· in the financial sector, charges over financial instruments such as cash, debt securities and equities in support of trading facilities.
In addition, credit derivatives and securitisation structures are used to hedge or transfer credit risk within our loan portfolio.
Derivatives
The International Swaps and Derivatives Association ('ISDA') Master Agreement is our preferred agreement for documenting derivatives activity. It provides the contractual framework within which dealing activity across a full range of OTC products is conducted, and contractually binds both parties to apply close-out netting across all outstanding transactions covered by an agreement if either party defaults or another pre-agreed termination event occurs. It is common, and our preferred practice, for the parties to execute a Credit Support Annex ('CSA') in conjunction with the ISDA Master Agreement. Under a CSA, collateral is passed between the parties to mitigate the counterparty risk inherent in outstanding positions. The majority of our CSAs are with financial institutional clients.
Treasury, other eligible bills and debt securities
Debt securities, treasury and other eligible bills are generally unsecured except for ABSs and similar instruments, which are secured by pools of financial assets.
Items in the course of collection from other banks
Settlement risk arises in any situation where a payment in cash, securities or equities is made in the expectation of a corresponding receipt of cash, securities or equities. Daily settlement limits are established for counterparties to cover the aggregate of our transactions with each one on any single day. We substantially mitigate settlement risk on many transactions, particularly those involving securities and equities, by settling through assured payment systems or on a delivery-versus-payment basis.
Concentration of exposure
Concentrations of credit risk arise when a number of counterparties or exposures have comparable economic characteristics, or such counterparties are engaged in similar activities or operate in the same geographical areas or industry sectors, so that their collective ability to meet contractual obligations is uniformly affected by changes in economic, political or other conditions. We use a number of controls and measures to minimise undue concentration of exposure in our portfolios across industry, country and customer groups. These include portfolio and counterparty limits, approval and review controls, and stress testing.
Wrong-way risk is an aggravated form of concentration risk and arises when there is a strong correlation between the counterparty's probability of default and the mark-to-market value of the underlying transaction. We use a range of procedures to monitor and control wrong-way risk, including requiring entities to obtain prior approval before undertaking wrong-way risk transactions outside pre-agreed guidelines.
Forbearance strategies and renegotiated loans
A range of forbearance strategies are employed in order to improve the management of customer relationships, maximise collection opportunities and, if possible, avoid foreclosure or repossession. Our policies and practices are based on criteria which, in the judgement of local management, indicate that repayment is likely to continue.
Forbearance arrangements include extended payment terms, a reduction in interest or principal repayments, approved external debt management plans, debt consolidations, the deferral of foreclosures, other modifications, and loan restructures. These management policies and practices typically provide the customer with terms and conditions that are more favourable than those provided initially. Such arrangements could include cases where an account is reset as up-to-date without full repayment of all the arrears. In the US, this is referred to as a 're-age'. Loans that have been reset as up-to-date are not disclosed as past due unless the account subsequently experiences further payment defaults.
Loan restructures are our most common forbearance arrangements, the majority of which are loan modifications and re-ages applied to real estate loans within consumer finance portfolios in the US. Modification occurs when the terms of a loan are changed either temporarily or permanently. Modification may also lead to a re-ageing of the account, although an account may be re-aged without any modification to the original terms and conditions of the loan. It is our practice in the US to defer past due interest on re-aged real estate and personal non-credit card accounts to the end of the loan period. We do not accrue interest on these past due interest payments.
Our credit risk management policy sets out restrictions on the number and frequency of restructures, the minimum period an account must have been opened before any restructure can be considered, and the number of qualifying payments that must be received before an account may be considered restructured and up-to-date. The application of this policy varies according to the nature of the market, the product and the management of customer relationships through the occurrence of exceptional events.
Loans that are subject to restructuring may only be classified as restructured and up-to-date once a specified number and/or amount of qualifying payments have been received. These qualifying payments are set at a level appropriate to the nature of the loan and the customer's ability to make the repayment going forward. Typically the receipt of two or more qualifying payments is required within a certain period, generally 60 days (in the case of HSBC Finance, in certain circumstances, for example where debt has been restructured in bankruptcy proceedings, fewer or no payments may be required). Loans that have been restructured and would otherwise have been past due or impaired are classified as renegotiated.
Renegotiated loans are segregated from other parts of the loan portfolio for collective impairment assessment, to reflect the higher rates of losses often encountered in this segment of the portfolio. When empirical evidence indicates an increased propensity to default and higher losses on such accounts, such as for re-aged loans in the US, the use of roll-rate methodology ensures these factors are taken into account when calculating impairment allowances.
The carrying amount of loans that have been classified as renegotiated retain this classification until maturity or derecognition. Where a loan is restructured as part of a forbearance strategy and the restructuring results in derecognition of the existing loan, such as in some debt consolidations, the new loan is disclosed as renegotiated. Interest is recorded on renegotiated loans on the basis of new contractual terms following renegotiation.
Credit quality of financial instruments
The five credit quality classifications defined on page 114 of the Annual Report and Accounts 2010 describe the credit quality of our lending, debt securities portfolios and derivatives. These classifications each encompass a range of more granular, internal credit rating grades assigned to wholesale and retail lending business, as well as the external ratings attributed by external agencies to debt securities.
There is no direct correlation between the internal and external ratings at granular level, except to the extent each falls within a single quality classification.
Credit quality classification
|
|
Debt securities and other bills |
|
Wholesale lending and derivatives |
|
Retail lending |
||||
|
|
External credit rating |
|
Internal credit rating |
|
Probability of default % |
|
Internal credit rating23 |
|
Expected loss % |
|
|
|
|
|
|
|
|
|
|
|
|
Quality classification |
|
|
|
|
|
|
|
|
|
|
Strong .............. |
A- and above |
|
CRR1 to CRR2 |
|
0 - 0.169 |
|
EL1 to EL2 |
|
0 - 0.999 |
|
Good ................ |
BBB+ to BBB- |
|
CRR3 |
|
0.170 - 0.740 |
|
EL3 |
|
1.000 - 4.999 |
|
Satisfactory ...... |
BB+ to B+ and unrated |
|
CRR4 to CRR5 |
|
0.741 - 4.914 |
|
EL4 to EL5 |
|
5.000- 19.999 |
|
Sub-standard ..... |
B and below |
|
CRR6 to CRR8 |
|
4.915 - 99.999 |
|
EL6 to EL8 |
|
20.000 - 99.999 |
|
Impaired ........... |
Impaired |
|
CRR9 to CRR10 |
|
100 |
|
EL9 to EL10 |
|
100+ or defaulted24 |
For footnotes, see page 146.
Nature of HSBC's securitisation and other structured exposures
MBSs are securities that represent interests in groups of mortgages and provide investors with the right to receive cash from future mortgage payments (interest and/or principal). An MBS, which references mortgages with different risk profiles, is classified according to the highest risk class.
CDOs are securities backed by a pool of bonds, loans or other assets such as ABSs. CDOs may include exposure to sub-prime or Alt-A mortgage assets where these are part of the underlying assets or reference assets. As there is often uncertainty surrounding the precise nature of the underlying collateral supporting CDOs, all CDOs supported by residential mortgage-related assets are classified as sub-prime. Our holdings of ABSs and CDOs and direct lending positions, and the categories of mortgage collateral and lending activity, are described below.
|
Categories of |
|
Definition |
|
Classification |
|
|
|
|
|
|
|
Sub-prime |
|
Loans to customers who have limited credit histories, modest incomes or high debt-to-income ratios or have experienced credit problems caused by occasional delinquencies, prior charge-offs, bankruptcy or other credit-related actions. |
|
For US mortgages, standard US credit scores are primarily used to determine whether a loan is sub-prime; for non-US mortgages, management judgement is used. |
|
|
|
|
|
|
|
US Home Equity Lines of Credit ('HELoC's) |
|
A form of revolving credit facility provided to customers, which is supported by a first or second lien charge over residential property. |
|
Holdings of HELoCs are classified as sub-prime. |
|
|
|
|
|
|
|
US Alt-A |
|
Lower risk loans than sub-prime, but they share higher risk characteristics than lending under fully conforming standard criteria. |
|
US credit scores and the completeness of documentation held (such as proof of income), are considered when determining whether an Alt-A classification is appropriate. Non sub-prime mortgages in the US are classified as Alt-A if they are not eligible for sale to the major US Government mortgage agencies or sponsored entities. |
|
|
|
|
|
|
|
US Government agency and sponsored enterprises mortgage-related assets |
|
Securities that are guaranteed by US Government agencies such as the Government National Mortgage Association ('Ginnie Mae'), or by US Government sponsored entities including the Federal National Mortgage Association ('Fannie Mae') and the Federal Home Loan Mortgage Corporation ('Freddie Mac'). |
|
Holdings of US Government agency and US Government sponsored enterprises' mortgage-related assets are classified as prime exposures. |
|
|
|
|
|
|
|
UK non-conforming mortgages |
|
UK mortgages that do not meet normal lending criteria. Examples include mortgages where the expected level of documentation is not provided (such as income with self-certification), or where poor credit history increases risk and results in pricing at a higher than normal lending rate. |
|
UK non-conforming mortgages are treated as sub-prime exposures. |
|
|
|
|
|
|
|
Other mortgages |
|
Residential mortgages, including prime mortgages, that do not meet any of the classifications described above. |
|
Prime residential mortgage-related assets are included in this category. |
Our exposure to non-residential mortgage-related ABSs and direct lending includes securities with collateral relating to:
· commercial property mortgages;
· leveraged finance loans;
· student loans; and
· other assets, such as securities with other receivable-related collateral.
Liquidity and funding
The management of liquidity and funding is primarily undertaken locally in our operating entities in compliance with practices and limits set by the Risk Management Meeting. These limits vary according to the depth and the liquidity of the markets in which the entities operate. Our general policy is that each banking entity should be self-sufficient in funding its own operations.
Primary sources of funding
Current accounts and savings deposits payable on demand or at short notice form a significant part of our funding, and we place considerable importance on maintaining their stability. For deposits, stability depends upon preserving depositor confidence in our capital strength and liquidity, and on competitive and transparent pricing.
We also access professional markets in order to obtain funding for non-banking subsidiaries that do not accept deposits, to align asset and liability maturities and currencies and to maintain a presence in local money markets. In aggregate, our banking entities are liquidity providers to the interbank market, placing significantly more funds with other banks than they borrow.
The main operating subsidiary that does not accept deposits is HSBC Finance, which is funded principally by taking term funding in the professional markets.
The management of liquidity risk
We use a number of principal measures to manage liquidity risk, as described below.
Advances to core funding ratio
We emphasise the importance of core customer deposits as a source of funds to finance lending to customers, and discourage reliance on short-term professional funding. This is achieved by placing limits on banking entities which restrict their ability to increase loans and advances to customers without corresponding growth in core customer deposits or long term debt funding; this measure is referred to as the 'advances to core funding' ratio.
Advances to core funding ratio limits are set by the Risk Management Meeting and monitored by Group Finance. The ratio describes current loans and advances to customers as a percentage of the total of core customer deposits and term funding with a remaining term to maturity in excess of one year. Loans and advances to customers which are part of reverse repurchase arrangements, and where we receive securities which are deemed to be liquid, are excluded from the advances to core funding ratio.
Stressed one month coverage ratio
The stressed one month coverage ratios are derived from projected cash flow scenario analyses, and express the stressed cash inflows as a percentage of stressed cash outflows over a one month time horizon. Group sites are required to target a ratio of 100% or greater.
Projected cash flow scenario analysis
We use a number of standard projected cash flow scenarios designed to model both Group-specific and market-wide liquidity crises in which the rate and timing of deposit withdrawals and drawdowns on committed lending facilities are varied, and the ability to access interbank funding and term debt markets and to generate funds from asset portfolios are restricted. The scenarios are modelled by all Group banking entities and by HSBC Finance. The appropriateness of the assumptions under each scenario is regularly reviewed. In addition to our standard projected cash flow scenarios, individual entities are required to design their own scenarios to reflect specific local market conditions, products and funding bases.
Limits for cumulative net cash flows under stress scenarios are set for each banking entity and for HSBC Finance. Both ratio and cash flow limits reflect the local market place, the diversity of funding sources available and the concentration risk from large depositors. Compliance with entity level limits is monitored centrally by Group Finance and reported regularly to the Risk Management Meeting.
Contingent liquidity risk
In the normal course of business, we provide customers with committed facilities, including committed backstop lines to conduit vehicles we sponsor and standby facilities to corporate customers. These facilities increase our funding requirements when customers choose to raise drawdown levels above their normal utilisation rates. The liquidity risk consequences of increased levels of drawdown are analysed in the form of projected cash flows under different stress scenarios. The Risk Management Meeting also sets limits for non-cancellable contingent funding commitments by entity after due consideration of each entity's ability to fund them. The limits are split according to the borrower, the liquidity of the underlying assets and the size of the committed line.
Market risk
Monitoring and limiting market risk exposures
The management of market risk is principally undertaken in Global Markets using risk limits approved by the GMB. Limits are set for portfolios, products and risk types, with market liquidity being a primary factor in determining the level of limits set. Group Risk, an independent unit within GMO, is responsible for our market risk management policies and measurement techniques. Each major operating entity has an independent market risk management and control function which is responsible for measuring market risk exposures in accordance with the policies defined by Group Risk, and monitoring and reporting these exposures against the prescribed limits on a daily basis.
Each operating entity is required to assess the market risks arising on each product in its business and to transfer them to either its local Global Markets unit for management, or to separate books managed under the supervision of the local Asset and Liability Management Committee ('ALCO'). Our aim is to ensure that all market risks are consolidated within operations that have the necessary skills, tools, management and governance to manage them professionally. In certain cases where the market risks cannot be fully transferred, we use simulation modelling to identify the impact of varying scenarios on valuations and net interest income.
We employ a range of tools to monitor and limit market risk exposures. These include sensitivity analysis, value at risk and stress testing.
Sensitivity analysis
We use sensitivity measures to monitor the market risk positions within each risk type, for example, the present value of a basis point movement in interest rates for interest rate risk. Sensitivity limits are set for portfolios, products and risk types, with the depth of the market being one of the principal factors in determining the level of limits set.
Value at risk
VAR is a technique that estimates the potential losses that could occur on risk positions as a result of movements in market rates and prices over a specified time horizon and to a given level of confidence.
The VAR models we use are based predominantly on historical simulation. These models derive plausible future scenarios from past series of recorded market rates and prices, taking account of inter-relationships between different markets and rates such as interest rates and foreign exchange rates. The models also incorporate the effect of option features on the underlying exposures.
Our historical simulation models assess potential market movements with reference to data from the past two years and calculate VAR to a 99% confidence level and for a one-day holding period.
We routinely validate the accuracy of our VAR models by back-testing the actual daily profit and loss results, adjusted to remove non-modelled items such as fees and commissions, against the corresponding VAR numbers. Statistically, we would expect to see losses in excess of VAR only 1% of the time over a one-year period. The actual number of excesses over this period can therefore be used to gauge how well the models are performing.
Although a valuable guide to risk, VAR should always be viewed in the context of its limitations. For example:
· the use of historical data as a proxy for estimating future events may not encompass all potential events, particularly those which are extreme in nature;
· the use of a one-day holding period assumes that all positions can be liquidated or the risks offset in one day. This may not fully reflect the market risk arising at times of severe illiquidity, when a one-day holding period may be insufficient to liquidate or hedge all positions fully;
· the use of a 99% confidence level, by definition, does not take into account losses that might occur beyond this level of confidence;
· VAR is calculated on the basis of exposures outstanding at the close of business and therefore does not necessarily reflect intra-day exposures; and
· VAR is unlikely to reflect loss potential on exposures that only arise under significant market moves.
Stress testing
In recognition of the limitations of VAR, we augment it with stress testing to evaluate the potential impact on portfolio values of more extreme, although plausible, events or movements in a set of financial variables.
The process is governed by the Stress Testing Review Group forum which, in conjunction with regional risk managers, determines the scenarios to be applied at portfolio and consolidated levels, as follows:
· sensitivity scenarios, consider the impact of any single risk factor or set of factors that are unlikely to be captured within the VAR models, such as the break of a currency peg;
· technical scenarios, consider the largest move in each risk factor, without consideration of any underlying market correlation;
· hypothetical scenarios, consider potential macro economic events, for example, a global flu pandemic; and
· historical scenarios, which incorporate historical observations of market movements during previous periods of stress which would not be captured within VAR.
Stress testing results provide senior management with an assessment of the financial effect such events would have on our profit.
Trading portfolios
Credit spread risk
The risk associated with movements in credit spreads is primarily managed through sensitivity limits, stress testing and VAR.
Credit spread risk also arises on credit derivative transactions entered into by Global Banking in order to manage the risk concentrations within the corporate loan portfolio and so enhance capital efficiency. The mark-to-market of these transactions is reflected in the income statement.
Gap risk
Even for transactions that are structured to render the risk to HSBC negligible under a wide range of market conditions or events, there exists a remote possibility that a significant gap event could lead to loss. A gap event could arise from a significant change in market price with no accompanying trading opportunity, with the result that the threshold is breached beyond which the risk profile changes from no risk to full exposure to the underlying structure. Such movements may occur, for example, when, in reaction to an adverse event or unexpected news announcement, the market for a specific investment becomes illiquid, making hedging impossible.
Given their characteristics, these transactions make little or no contribution to VAR or to traditional market risk sensitivity measures. We capture their risks within our stress testing scenarios and monitor gap risk on an ongoing basis. We regularly consider the probability of gap loss, and fair value adjustments are booked against this risk.
ABS/MBS exposures
The ABS/MBS exposures within the trading portfolios are managed within sensitivity and VAR limits as described on page 145 in the Annual Report and Accounts 2010, and are included within the stress testing scenarios described above.
Non-trading portfolios
The principal objective of market risk management of non-trading portfolios is to optimise net interest income.
Interest rate risk in non-trading portfolios arises principally from mismatches between the future yield on assets and their funding cost, as a result of interest rate changes. Analysis of this risk is complicated by having to make assumptions on embedded optionality within certain product areas such as the incidence of mortgage prepayments, and from behavioural assumptions regarding the economic duration of liabilities which are contractually repayable on demand such as current accounts.
Our control of market risk in the non-trading portfolios is based on transferring the risks to the books managed by Global Markets or the local ALCO. The net exposure is typically managed through the use of interest rate swaps within agreed limits. The VAR for these portfolios is included within the Group VAR.
Sensitivity of net interest income
A principal part of our management of market risk in non-trading portfolios is to monitor the sensitivity of projected net interest income under varying interest rate scenarios (simulation modelling). We aim, through our management of market risk in non-trading portfolios, to mitigate the effect of prospective interest rate movements which could reduce future net interest income, while balancing the cost of such hedging activities on the current net revenue stream.
For simulation modelling, entities use a combination of scenarios relevant to their local businesses and markets and standard scenarios which are required throughout HSBC. The latter are consolidated to illustrate the combined pro forma effect on our consolidated portfolio valuations and net interest income.
Projected net interest income sensitivity figures represent the effect of the pro forma movements in net interest income based on the projected yield curve scenarios and the Group's current interest rate risk profile. This effect, however, does not incorporate actions which would probably be taken by Global Markets or in the business units to mitigate the effect of interest rate risk. In reality, Global Markets seeks proactively to change the interest rate risk profile to minimise losses and optimise net revenues. The projections also assume that interest rates of all maturities move by the same amount (although rates are not assumed to become negative in the falling rates scenario) and, therefore, do not reflect the potential impact on net interest income of some rates changing while others remain unchanged. In addition, the projections take account of the effect on net interest income of anticipated differences in changes between interbank interest rates and interest rates linked to other bases (such as Central Bank rates or product rates over which the entity has discretion in terms of the timing and extent of rate changes). The projections make other simplifying assumptions, including that all positions run to maturity.
Projecting the movement in net interest income from prospective changes in interest rates is a complex interaction of structural and managed exposures. Our exposure to the effect of movements in interest rates on our net interest income arises in two main areas: core deposit franchises and Global Markets. This is described more fully in the Annual Report and Accounts 2010.
Defined benefit pension schemes
Market risk arises within our defined benefit pension schemes to the extent that the obligations of the schemes are not fully matched by assets with determinable cash flows. Pension scheme obligations fluctuate with changes in long-term interest rates, inflation, salary levels and the longevity of scheme members. Pension scheme assets include equities and debt securities, the cash flows of which change as equity prices and interest rates vary. There is a risk that market movements in equity prices and interest rates could result in asset values which, taken together with regular ongoing contributions, are insufficient over time to cover the level of projected obligations and these, in turn, could increase with a rise in inflation and members living longer. Management, together with the trustees who act on behalf of the pension scheme beneficiaries, assess these risks using reports prepared by independent external actuaries, take action and, where appropriate, adjust investment strategies and contribution levels accordingly.
Operational risk
The objective of our operational risk management is to manage and control operational risk in a cost effective manner within targeted levels of operational risk consistent with our risk appetite, as defined by the GMB.
A formal governance structure provides oversight over the management of operational risk. A Global Operational Risk and Control Committee, which reports to the Risk Management Meeting, meets at least quarterly to discuss key risk issues and review the effective implementation of our operational risk management framework.
In each of our subsidiaries, business managers are responsible for maintaining an acceptable level of internal control, commensurate with the scale and nature of operations. They are responsible for identifying and assessing risks, designing controls and monitoring the effectiveness of these controls. The operational risk management framework helps managers to fulfil these responsibilities by defining a standard risk assessment methodology and providing a tool for the systematic reporting of operational loss data.
A centralised database is used to record the results of the operational risk management process. Operational risk self-assessments are input and maintained by business units. To ensure that operational risk losses are consistently reported and monitored at Group level, all Group companies are required to report individual losses when the net loss is expected to exceed US$10,000.
Further details of our approach to operational risk management can be found in the Annual Report and Accounts 2010, supplemented by the Capital and Risk Management Pillar 3 Disclosures as at 31 December 2010.
Legal risk
Each operating company is required to have processes and procedures in place to manage legal risk that conform to our standards.
Legal risk falls within the definition of operational risk and includes:
· contractual risk, which is the risk that the rights and/or obligations of an HSBC company within a contractual relationship are defective;
· dispute risk, which is made up of the risks that an HSBC company is subject to when it is involved in or managing a potential or actual dispute;
· legislative risk, which is the risk that an HSBC company fails to adhere to the laws of the jurisdictions in which it operates; and
· non-contractual rights risk, which is the risk that an HSBC company's assets are not properly owned or are infringed by others, or an HSBC company infringes another party's rights.
We have a global legal function to assist management in controlling legal risk. The function provides legal advice and support. The GMO Legal department oversees the global legal function and is headed by a Group General Counsel. There are legal departments in 58 of the countries in which we operate. There are also regional legal functions in each of Europe, North America, Latin America, the Middle East and North Africa and Asia‑Pacific headed by Regional General Counsels.
Compliance risk
All Group companies are required to observe the letter and spirit of all relevant laws, codes, rules, regulations and standards of good market practice. These rules, regulations, other standards and Group policies include those relating to anti-money laundering, counter terrorist financing and sanctions compliance.
The Group Compliance function supports line management in ensuring that there are adequate policies and procedures, and is responsible for maintaining adequate resources to mitigate compliance risk. The GMO Compliance department oversees the global compliance function and is headed by the Head of Group Compliance who in turn reports to the Group Chief Risk Officer. There are compliance teams in all of the countries where we operate. These compliance teams are principally overseen by Regional Compliance Officers located in Europe, North America, Latin America, the Middle East and North Africa and Asia-Pacific.
Group Compliance policies and procedures require the prompt identification and escalation to GMO Compliance of all actual or suspected breaches of any law, rule, regulation, Group policy or other relevant requirement. These escalation procedures are supplemented by a requirement for the submission of compliance certificates at the half-year and year-end by all Group companies detailing any known breaches as above. The contents of these escalation and certification processes are used for reporting to the Risk Management Meeting, the Group Risk Committee and the Board and disclosure in the Annual Report and Accounts and Interim Report, if appropriate.
Global security and fraud risk
Security and fraud risk issues are managed at Group level by Global Security and Fraud Risk. This unit, which has responsibility for physical risk, fraud, information and contingency risk, and security and business intelligence is fully integrated within the central GMO Risk function. This enables management to identify and mitigate the permutations of these and other non-financial risks to its business lines across the jurisdictions in which we operate.
Reputational risk
Reputational risks can arise from a wide variety of causes, including environmental, social and governance risks and operational risk events. As a banking group, our good reputation depends upon the way in which we conduct our business, but it can also be affected by the way in which our clients conduct themselves in such areas.
A Group Reputational Risk Committee ('GRRC') has been established to bring focus to activities that could attract reputational risk. The primary role of the GRRC is to consider areas and activities presenting significant reputational risk and, where appropriate, to make recommendations to the Risk Management Meeting and the GMB for policy or procedural changes to mitigate such risk. Reputational Risk Committees have also been established in each of our geographical regions. These committees ensure that reputational risks are considered at a regional as well as Group level. Minutes from the regional committees are tabled at GRRC. A wider description of HSBC's management of reputational risk is provided on page 172 in the Annual Report and Accounts 2010.
Insurance risk
Overview of insurance products
The main contracts we manufacture are listed below:
Life insurance business
· life insurance contracts with DPF;
· credit life insurance business;
· annuities;
· term assurance and critical illness policies;
· linked life insurance;
· investment contracts with DPF;
· unit-linked investment contracts; and
· other investment contracts (including pension contracts written in Hong Kong).
Non-life insurance business
Non-life insurance contracts include motor, fire and other damage to property, accident and health, repayment protection and commercial insurance.
The management of insurance risk
Life and non-life business insurance risks are controlled by high-level policies and procedures set centrally, taking into account where appropriate local market conditions and regulatory requirements. Formal underwriting, reinsurance and claims-handling procedures designed to ensure compliance with regulations are applied, supplemented with stress testing.
As well as exercising underwriting controls, we use reinsurance as a means of mitigating exposure to insurance risk, in particular to aggregations of catastrophe risk. When we manage our exposure to insurance risk through the use of third-party reinsurers, the associated revenue and manufacturing profit is ceded to them. Although reinsurance provides a means of managing insurance risk, such contracts expose us to credit risk, the risk of default by the reinsurer.
HSBC's management of insurance risk, including the risks relating to different life and non-life products, is described on page 156 in the Annual Report and Accounts 2010.
This information is provided by RNS
Latest directors dealings
- 12 hours ago Centrica
- 13 hours ago On The Beach Group
- 13 hours ago SThree
- 13 hours ago Zigup
- 13 hours ago Zigup