The objective of compliance risk management is to ensure the Group’s compliance with provisions of the law and adopted standards of conduct and also the Bank’s acting as an entity that is reliable, fair and honest.
Compliance risk is defined as the risk of legal sanctions, incurring financial losses or losing reputation or reliability due to failure of the Group, its employees or entities acting on its behalf to comply with the provisions of the law, internal regulations and standards of conduct adopted by the Group, including ethical standards.
The objective of compliance risk management is to ensure the Group’s compliance with provisions of the law and adopted standards of conduct and also the Bank’s acting as an entity that is reliable, fair and honest, through mitigating compliance risk, mitigation the possibility of losing the Group’s reputation or credibility and mitigating the risk of occurring of financial losses or legal sanctions resulting from breach of provisions of the law and ethical standards.
Compliance risk management in the Group involves in particular the following:
- preventing involvement of the Bank in illegal activities,
- ensuring data protection,
- promoting ethical standards and monitoring their functioning,
- conflict of interest management,
- preventing situations where the Bank’s employees could be perceived as pursuing their own interest in the professional context,
- professional, fair and transparent formulation of product offers, advertising and marketing messages,
- prompt, fair and professional consideration of complaints, requests and claims of clients.
Consistent principles of compliance risk management exist in all entities in the PKO Bank Polski SA Group.
The Group entities have adopted a zero tolerance policy against compliance risk, which means that the Group entities focus their actions towards preventing cases of materialisation of that risk.