The company's risk management procedures include five major elements: risk identification, risk analysis, risk assessment, risk response, and supervision and review mechanism. The risks identified by the Company in 2023 and their response strategies are as follows:
| Risk category | Countermeasures |
|---|---|
| Strategy risk | In response to the differential changes in geo-economics, the company operates a multi-brand strategy to reduce revenue risks and certification transformation caused by economic stagnation in a single region. The Americas segment operates the A+Fine brand, the EU and German regions operate the Mütec brand, and Asia and other parts of the world operate the FineTek brand identity. |
| Business risk | The company regularly reviews the development of high-value industries (HVI) and establishes four main axes for marketing strategies: water resources industry, food industry, energy development and industrial internet of things and information security are combined into four quadrants, all internal and external the innovative activities and services are all related to these four themes. Promote measures such as PDCA supply chain inventory and warehouse age management, global factory production scheduling, exclusive supply chain inventory, active/passive component annual contracts, multi-skilled personnel, and factory-wide automation planning. Assist important supply chain workers and materials to reduce the inventory burden on suppliers. Understand customer needs in the next year and prepare safety stocks and second supply chain development in advance. |
| Financial risk | Including exchange rate and interest rate risks, the company's financial department evaluates exchange rate and interest rate differences at any time, and then takes hedging measures, such as natural hedging, to avoid causing the company to suffer heavy losses. |
| Information risk | The company has complied with ISO 27001:2013 information security environment education and training, including application service layer information security management and control training courses, and holds relevant courses regularly. The company has obtained ISO 27001 lead auditor qualification. We conduct a complete assessment of all information security risks and asset impacts, formulate risks and implement countermeasures, and provide a secure operating platform that is consistent for customers, users, and the supply chain. And establish a dual backup system for each factory area. The implementation of external project plans complies with 40/200 information security requirements for people's livelihood and public Internet of Things. |
| Compliance risk | The company strictly abides by relevant laws and regulations and laws related to the internal control system, including compliance with the listing laws and regulations of the Labor Bureau, etc., and hires legal consultants to provide necessary consultation and review basis to avoid the risk of damaging the company's goodwill and causing significant losses. |
| Other emerging risks | Due to the impact of the COVID-19 epidemic, the company promotes the use of remote digital management/operation teaching/on-site services on the client side. In addition, modular design of passive components and IC components reduces the customer maintenance burden, and FAE promotes on-site visit services for major customers. The company also promotes SDGs, enhances the corporate governance evaluation brand image, assists Southeast Asian customers with their southbound national certification needs (in response to manufacturers leaving China, European and American lockdowns, and manufacturing service foundations moving to Asia). In addition, it has also established work from home/home Management and training. |
