1.3.6 Internal Control and risk management system
The Group operates in a constantly changing environment. Like any company, L'Oréal is necessarily exposed to risks which, if they were to materialise, could have a negative impact on its business activities, its financial position and its assets, particularly in terms of reputation and image.
In order to ensure the sustainability of its development and the achievement of its objectives, the Group strives to anticipate and manage the risks to which it is exposed in its different areas of activity.
L'Oréal's risk management consists of identifying, assessing and controlling risks that may affect the smooth running of the Company. It also participates in the Group's development by promoting the effective use of resources to minimise the impact of negative events and maximise the realisation of opportunities.
By contributing to preventing and managing the risks to which the Group is exposed, the purpose of the Internal Control system is to enable the Group's manufacturing and economic development to take place in a steady and sustainable manner in a control environment appropriate for the Group's businesses.
Internal Control is a system that applies to the Company and its consolidated subsidiaries and aims to ensure that:
- economic and financial targets are achieved in compliance with the laws and regulations in force and the Group's Ethical Principles and standards;
- the orientations set by General Management are followed;
- the Group's assets and reputation are valued and protected; and
- the Group's financial and accounting information is reliable and provides a true and fair view.
The control environment, which is critical to the Internal Control system, good risk management and the application of procedures, is based on behaviour, the organisational structure and employees. At L'Oréal, it forms part of a culture of rigour and commitment communicated by senior management that is in line with the Group's strategic choices.
Risk management and Internal Control is everyone's business, from the governance bodies to all employees.
The Internal Control system is the subject of ongoing supervision in order to verify whether it is relevant and meets the Group's objectives and addresses its issues.
Chapter 3 provides detailed information on identifying and managing the most significant risks from the point of view of investment decision-making, within the meaning of the regulations. These risks are listed in the table below.
Major risks to which the Group believes it is exposed
| Residual importance | ||
|---|---|---|
| Business risks | Business risks
Geographic presence and economic and political environment* |
 |
Information systems and cybersecurity* |
|
|
Health crisis* |
|
|
Reputational crisis management |
 |
|
Data |
 |
|
Beauty market: Competition and Innovation |
|
|
Business Ethics |
|
|
Developments in sales channels |
|
|
Human resources and organisational risk |
|
|
Product quality and safety |
 |
|
Safety of people and property |
 |
|
| Industrial and environmental risks | Industrial and environmental risks
Product availability* |
|
Climate change |
|
|
Environment and safety |
|
|
| Legal and regulatory risks | Legal and regulatory risks
Non-compliance* |
|
Legal disputes |
|
|
Intellectual property: trademarks, designs & models, domain names, patents |
|
|
| Financial and market risks | Financial and market risks
Inflation and currency risk* |
|
Financial equity risk |
|
|
Risk relating to the impairment of intangible assets |
|