arrow-right angle-down-sx angle-down-dx menu-hamburger search YouTube Facebook Twitter Instagram LinkedIn Flickr Scribd Info Tooltip

Risk factors Management

Anticipating, mitigating and managing risk for future profitability



The policy of value creation that motivates Prysmian Group has always been based on effective risk management. Since 2012, by adopting the provisions on risk management introduced by the "Italian Stock Exchange Corporate Governance Code for Listed Companies" (Corporate Governance Code), Prysmian has taken the opportunity to strengthen its governance model and implement an advanced system of Risk Management that promotes proactive management of risks using a structured and systematic tool to support the main business decision-making processes. In fact, this Enterprise Risk Management (ERM) model, developed in line with internationally recognised models and best practices, allows the Board of Directors and management to consciously evaluate those risk scenarios that might compromise the achievement of strategic objectives, and to adopt additional tools able to anticipate, mitigate or manage significant exposures.

The ERM model in practice


The Group Chief Risk Officer (CRO), designated to govern the ERM process, is responsible for ensuring, together with management, that the main risks facing Prysmian and its subsidiaries are promptly identified, evaluated and monitored over time. A special Internal Risk Management Committee (consisting of the Group's Senior Management) also ensures, through the CRO, that the ERM process develops dynamically, by taking account of changes in the business, of needs and of events that have an impact on the Group over time. The CRO reports periodically (at least twice a year) on such developments to the top management.
Reference should be made to the "Corporate Governance" section of this report for a discussion of the governance structure adopted and the responsibilities designated to the bodies involved.


The ERM model adopted (and formalised within the Group ERM Policy which incorporates the guidelines for the Internal Control and Risk Management System approved by the Board of Directors back in 2014) follows a top-down approach, whereby it is steered by Senior Management and by medium to long-term business objectives and strategies. It extends to all the types of risk/opportunity for the Group, represented in the Risk Model that uses five categories to classify the risks of an internal or external nature characterising the Prysmian business model:

  • Strategic Risks: risks arising from external or internal factors such as changes in the market environment, from bad and/or improperly implemented corporate decisions and from failure to react position and achievement of its strategic objectives;

  • Financial Risks: risks associated with the amount of financial resources available, with the ability tomanage currency and interest rate volatility efficiently;

  • Operational Risks: risks arising from the occurrence of events or situations that, by limiting the effectiveness and efficiency of key processes, affect the Group's ability to create value;

  • Legal and Compliance Risks: risks related to violations of national, international and industry-specific legal and regulatory requirements, to unprofessional conduct in conflict with company ethical policies, exposing the Group to possible penalties and undermining its reputation in the marketplace;

  • Planning and Reporting Risks: risks related to the adverse effects of incomplete, incorrect and/or untimely information with possible impacts on the Group's strategic, operational and financial decisions.

In compliance with the amendments to the Corporate Governance Code published in July 2015, the Group Risk Model has been revised to include, as part of strategic risks, the issue of Corporate Social Responsibility with the purpose of identifying more precisely the Group's economic, environmental and social sustainability risks which, over time, could jeopardise value creation for its shareholders and stakeholders. The Board of Directors has also given the Compensation, Nominations and Sustainability Committee responsibility, with effect from 1 January 2016, for supervising the issues of sustainability associated with the Group's business, as described in the Corporate Governance Report.

Members of management involved in the ERM process are required to use a clearly defined common method to measure and assess specific risk events in terms of Impact, Probability of occurrence and adequacy of the existing Level of Risk Management, meaning:

  • economic-financial impact on expected EBITDA or cash flow, net of any insurance cover and countermeasures in place, and/or qualitative type of impact on reputation and/or efficiency and/or business continuity, measured using a scale that goes from negligible (1) to critical (4);

  • probability that a particular event may occur within the specific planning period, measured using a scale that goes from remote (1) to high (4);

  • level of control, meaning the maturity and efficiency of existing risk management systems and processes, measured using a scale that goes from adequate (green) to inadequate (red).

The overall assessment must also take into account the future outlook for risk, or the possibility that in the period considered the exposure is increasing, constant or decreasing.

The results of measuring exposure to the risks analysed are then represented on a 4x4 heat map diagram, which, by combining the variables in question, provides an immediate overview of the risk events considered most significant.

This overall picture of the Group's risks allows the Board of Directors and Management to reflect upon the level of the Group's risk appetite, and so identify the risk management strategies to adopt, or assess which risks and with what priority it is thought necessary to improve and optimise mitigation actions or simply to monitor the exposure over time. The adoption of a particular risk management strategy, however, depends on the nature of the risk event identified, so in the case of:

  • external risks outside the Group's control, it will be possible to implement tools that support the assessment of scenarios should the risk materialise, by defining the possible action plans to mitigate impacts (e.g. continuous monitoring activities, stress testing of the business plan, insurance cover, disaster recovery plans, and so on);

  • risks partially addressable by the Group, it will be possible to intervene through systems of risk transfer, monitoring of specific indicators of risk, hedging activities, and so on;

  • internal risks addressable by the Group, it will be possible, as risks inherent in the business, to take targeted actions to prevent risk and minimise impacts by implementing an adequate system of internal controls and related monitoring and auditing.


ERM is a continuous process that, as stated in the ERM Policy, forms part of the Group's three-year strategic and business planning process, by identifying potential events that could affect its sustainability, and is updated annually with the involvement of key members of management.

In 2018 this process involved the main business/function managers of the Group, allowing the most significant risk factors to be identified, assessed and managed; this process also covered factors related to the Group's economic, environmental and social sustainability, to ensure lasting value creation for shareholders and stakeholders, about which more details can be found in the annual Sustainability Report, available on the Company's website at in the section media/medialibrary/
sustainability-report The main risk factors to which the Group's particular type of business model is exposed will now be presented according to the classification used in the Risk Model described earlier, and describing the strategies adopted to mitigate these risks.

Financial risks are discussed in detail in the Explanatory Notes to the Consolidated Financial Statements in Section D (Financial Risk Management). As stated in the Explanatory Notes to the Consolidated Financial Statements (Section B.1 Basis of preparation), the Directors have assessed that there are no financial, operating or other kind of indicators that might provide evidence of the Group's inability to meet its obligations in the foreseeable future and particularly in the next 12 months. In particular, based on its financial performance and cash generation in recent years, as well as its available financial resources at 31 December 2018, the Directors believe that, barring any unforeseeable extraordinary events, there are no material uncertainties, such as to cast significant doubts upon the business's ability to continue as a going concern.


It should be noted that, in line with the Group's ERM process, the risks described below have beenreassessed, particularly taking into consideration any effects arising from completion of the General Cable acquisition.



Risk associated with the competitive environment


Many of the products offered by Prysmian Group, primarily in the Trade & Installers and Power Distribution businesses, are made in conformity with specific industrial standards and so are interchangeable with those offered by major competitors. Price is therefore a key factor in customer choice of supplier. The entry into mature markets (e.g. Europe) of non-traditional competitors, meaning small to medium manufacturing companies with low production costs, and the need to saturate production capacity, together with the possible occurrence of a contraction in market demand, translate into strong competitive pressure on prices, with possible consequences for the Group's expected margins.
In addition, high value-added segments - like High Voltage underground cables, Optical Cables and Submarine cables - are seeing an escalation in competition from both existing operators and new market entrants with leaner more flexible organisation models, with potentially negative impacts on both sales volumes and selling prices. With particular reference to the Submarine cables business, the high barriers to entry, linked to difficult-to-replicate ownership of technology, know-how and track record, are driving large market players to compete not so much on the product as on the related services.
The strategy of rationalising production facilities currently in progress, the consequent optimisation of cost structure, the policy of geographical diversification and, last but not least, the ongoing pursuit of innovative technological solutions, all help the Group to address the potential effects arising from the competitive environment.

Factors such as trends in GDP and interest rates, the ease of getting credit, the cost of raw materials, and the general level of energy consumption, significantly affect the energy demand of countries which, in the face of persistent economic difficulties, then reduce investments that would otherwise develop the market. Government incentives for alternative energy sources and for developing telecom networks also face reduction for the same reason. The Prysmian Group's transmission business (high voltage submarine cables) and Power Distribution and Telecom businesses, all highly concentrated in the European market, are being affected by fluctuating contractions of demand in this market caused by the region's prolonged economic downturn.
To counter this risk, the Group is pursuing, on the one hand, a policy of geographical diversification in non-European countries (e.g. Vietnam, Philippines, etc.) and, on the other, a strategy to reduce costs by rationalising its production structure globally in order to mitigate possible negative effects on the Group's performance in terms of lower sales and shrinking margins.
In addition, the Group constantly monitors developments in the global geopolitical environment which, as a result - for example - of the introduction of specific industrial policies by individual countries, could require it to revise existing business strategies and/or adopt mechanisms to safeguard the Group's competitive position.

In the Offshore Specialties business, the Prysmian Group has a significant business relationship with Petrobras, a Brazilian oil company, for the supply of umbilical cables, developed and manufactured at the factory in Vila Velha, Brazil. In light of the country's continuing economic difficulties causing the local market for umbilical cables to contract and of growing competitive pressures on product technological innovation, the sustainability, even partial, of the business in Brazil could be impacted.
While committed to maintaining and strengthening its business relationship with this customer over time, the Group has started to gradually reorganise the business unit to make its processes more efficient and to concentrate increasingly on developing new products whose technical and economic solutions can lower production costs.

The Prysmian Group operates and has production facilities and/or companies in Asia, Latin America, the Middle East and Eastern Europe. The Group's operations in these countries are exposed to different risks linked to local regulatory and legal systems, the imposition of tariffs or taxes, exchange rate volatility, and political and economic instability affecting the ability of business and financial partners to meet their obligations.
Significant changes in the macroeconomic, political, tax or legislative environment of such countries could have an adverse impact on the Group's business, results of operations and financial condition; consequently, as already mentioned in an earlier paragraph, the Group constantly monitors developments in the global geopolitical environment which could require it to revise existing business strategies and/or adopt mechanisms to safeguard its competitive position.



The Prysmian Group's risk management strategy focuses on the unpredictability of markets and aims to minimise the potentially negative impact on the Group's financial performance. Some types of risk are mitigated by using financial instruments (including derivatives). Financial risk management is centralised with the Group Finance department which identifies, assesses and hedges financial risks in close cooperation with the Group's operating companies.
The Group Finance, Administration and Control department provides guidelines on risk management, with particular attention to exchange rate risk, interest rate risk, credit risk, the use of derivative and nonderivative instruments, and on how to invest excess liquidity. Such financial instruments are used solely to hedge risks and not for speculative purposes.

The volatility of the international banking and financial system could be a potential risk factor in terms of raising finance and its associated cost. In addition, non-compliance with the financial and non-financial covenants contained in the Group's credit agreements could restrict its ability to increase its net indebtedness, other conditions remaining equal. In fact, should it fail to satisfy one of these covenants, this would trigger a default event which, unless resolved under the terms of the respective agreements, could
lead to their termination and/or an early repayment of any credit drawn down. In such an eventuality, the Group might be unable to repay the amounts demanded early, in turn giving rise to a liquidity risk.
At present, given its balance of cash and cash equivalents and undrawn committed credit lines, totalling more than Euro 1 billion at 31 December 2018, and six-monthly monitoring2 of financial covenant compliance (fully satisfied at 31 December 2018), the Group is of the opinion that this risk is significantly mitigated and that it is able to raise sufficient financial resources and at a competitive cost. A more detailed analysis of the risk in question, including a description of the Group's principal sources of finance, can be found in the Explanatory Notes to the Consolidated Financial Statements.


2 The financial covenants are measured at the half-year close on 30 June and at the full-year close on 31 December.



The Prysmian Group operates internationally and is therefore exposed to exchange rate risk for the various currencies in which it operates (principally the US Dollar, British Pound, Brazilian Real, Turkish Lira and Chinese Renminbi). Exchange rate risk occurs when future transactions or assets and liabilities recognised in the statement of financial position are denominated in a currency other than the functional currency of the company which undertakes the transaction.
To manage exchange rate risk arising from future trade transactions and from the recognition of foreign currency assets and liabilities, most Prysmian Group companies use forward contracts arranged by Group Treasury, which manages the various positions in each currency.
However, since Prysmian prepares its consolidated financial statements in Euro, fluctuations in the exchange rates used to translate the financial statements of subsidiaries, originally expressed in a foreign currency, could affect the Group's results of operations and financial condition. Exchange rate volatility is monitored both locally and centrally, by the Group Finance department, also using specific indicators designed to intercept potential risk situations which, when thought to exceed the defined tolerance limits, will
trigger immediate mitigating actions.
A more detailed analysis of the risk in question can nonetheless be found in the "Financial Risk Management" section of the Explanatory Notes to the Consolidated Financial Statements.

Changes in interest rates affect the market value of the Prysmian Group's financial assets and liabilities as well as its net finance costs. The interest rate risk to which the Group is exposed is mainly on long-term financial liabilities, carrying both fixed and variable rates. Fixed rate debt exposes the Group to a fair value risk. The Group does not operate any particular hedging policies in relation to the risk arising from such contracts since it considers this risk to be immaterial. Variable rate debt exposes the Group to a rate volatility risk (cash flow risk). The Group can use interest rate swaps (IRS) to hedge this risk, which transform variable rates into fixed ones, thus reducing the rate volatility risk. IRS contracts make it possible to exchange on specified dates the difference between contracted fixed rates and the variable rate calculated with reference to the loan's notional value. A potential rise in interest rates, from the record lows reached in recent years, could represent a risk factor in coming quarters.
A more detailed analysis of the risk in question can nonetheless be found in the "Financial Risk Management" section of the Explanatory Notes to the Consolidated Financial Statements.

Credit risk is represented by Prysmian Group's exposure to potential losses arising from the failure of business or financial partners to discharge their obligations. This risk is monitored centrally by the Group Finance department, while customer-related credit risk is managed operationally by the individual subsidiaries. The Group does not have any excessive concentrations of credit risk, but given the economic and social difficulties faced by some countries in which it operates, the exposure could undergo a
deterioration that would require closer monitoring. Accordingly, the Group has procedures in place to ensure that its business partners are of recognised reliability and that its financial partners have high credit ratings.
In addition, in mitigation of credit risk, the Group has a global trade credit insurance program covering almost all its operating companies; this is managed centrally by the Risk Management department, which monitors, with the assistance of the Group's Credit Management function, the level of exposure to risk and intervenes when tolerance limits are exceeded due to difficulty in finding coverage on the market.
A more detailed analysis of the risk in question can nonetheless be found in the "Financial Risk Management" section of the Explanatory Notes to the Consolidated Financial Statements.

Liquidity risk indicates the sufficiency of an entity's financial resources to meet its obligations to business or financial partners on the agreed due dates. With regard to the Prysmian Group's working capital cash requirements, these increase significantly during
the first half of the year when it commences production in anticipation of order intake, with a consequent temporary increase in net financial debt.
Prudent management of liquidity risk involves the maintenance of adequate levels of cash, cash equivalents and short-term securities, the maintenance of an adequate amount of committed credit lines, and timely renegotiation of loans before their maturity. Due to the dynamic nature of the business in which the Prysmian Group operates, the Group Finance department favours flexible arrangements for sourcing funds in the form of committed credit lines.
As at 31 December 2018, the Group's total financial resources, comprising cash and cash equivalents and undrawn committed credit lines, came to in excess of Euro 1 billion.
A more detailed analysis of the risk in question can nonetheless be found in the "Financial Risk Management" section of the Explanatory Notes to the Consolidated Financial Statements.

The main commodities purchased by the Prysmian Group are copper and aluminium, accounting for more than 50% of the total raw materials used to manufacture its products. The Group neutralises the impact of possible rises in the price of copper and its other principal raw materials through hedging activities and automatic sales price adjustment mechanisms. Hedging activities are based on sales contracts or sales forecasts, which if not met, could expose the Group to commodity price volatility risk.
A dedicated team within the Group Purchasing department monitors and coordinates centrally those sales transactions requiring the purchase of raw materials and the related hedging activities carried out by each subsidiary, ensuring that the level of exposure to risk is kept within defined tolerance limits.
A more detailed analysis of the risk in question can nonetheless be found in the "Financial Risk Management" section of the Explanatory Notes to the Consolidated Financial Statements.



Liability for product quality/defects


Any defects in the design and manufacture of the Prysmian Group's products could give rise to civil or criminal liability in relation to customers or third parties. Therefore, the Group, like other companies in the industry, is exposed to the risk of legal action for product liability in the countries where it operates. In line with the practice followed by many industry operators, the Group has taken out insurance which it considers provides adequate protection against the risks arising from such liability. Should such insurance coverage prove insufficient, the Group's results of operations and financial condition could be adversely affected.
In addition, the Group's involvement in this kind of legal action and any resulting liability could expose it to reputational damage, with potential additional adverse consequences for its results of operations and financial condition.

Projects for high/medium voltage submarine or underground connections are characterised by contractual forms entailing a "turnkey" type of project management that therefore demands compliance with deadlines and quality standards, guaranteed by penalties calculated as an agreed percentage of the contract value and that can even result in contract termination.
The application of such penalties, the obligation to compensate any damages as well as indirect effects on the supply chain in the event of late delivery or production problems, could significantly affect project performance and hence the Group's margins. Possible damage to market reputation cannot be ruled out. Given the complexity of "turnkey" projects, Prysmian has implemented a quality management process involving extensive testing of cables and accessories before delivery and installation, as well as specific ad hoc insurance coverage, often through insurance syndicates, able to mitigate exposure to risks arising from production through to delivery.
Moreover, the ERM assessments for this particular risk have led the Risk Management department, with the support of the Commercial area, to implement a systematic process of Project Risk Assessment for "turnkey" projects, involving the assignment of a Project Risk Manager, right from the bidding stage, with the aim of identifying, assessing and monitoring over time the Group's exposure to specific risks and of taking the necessary mitigation actions. The decision to present a bid proposal to the customer therefore also depends on the results of risk assessment.
With regard to the events involving Western Link, an electrical transmission cable between Scotland, Wales and England, please refer to the sections on Significant Events in the Year and Significant Events after the Reporting Period within the Explanatory Notes to the Consolidated Financial Statements.

The submarine cables business is heavily dependent on certain key assets, such as the Arco Felice plant in Italy for the production of a particular type of cable and one of its cable-laying vessels (the "Giulio Verne"), some of whose technical capabilities are hard to find on the market. The loss of one of these assets due to unforeseen natural disasters (e.g. earthquakes, storms, etc.) or other accidents (e.g. fire, terrorist attacks, etc.) and the consequent prolonged business interruption could have a critical economic impact on the Group's performance.
The construction of a new cable-laying vessel began in 2018, with a best-in-class specification. As a result, the risk of dependence on the "Giulio Verne" cable-laying vessel has been significantly reduced.
Prysmian addresses this risk through:

  • a systematic Loss Prevention program, managed centrally by the Risk Management department, which, through periodic on-site inspections, allows the adequacy of existing systems of protection to be assessed and any necessary remedial actions decided to mitigate the estimated residual risk. As at 31 December 2018, the Group's operating plants were sufficiently protected and no significant exposures to risk were noted. All the plants have been classified as "Excellent Highly Protected Rated (HPR)", "Good HPR" or "Good not HPR", in accordance with the methodology defined by internationally recognised best practices in the field of Risk Engineering & Loss Prevention;
  • specific disaster recovery & business continuity plans which allow appropriate countermeasures to be activated as soon as possible in order to minimise the impact of a catastrophic event and to manage any consequent crisis;
  • specific insurance programs for coverage against any damage to assets and loss of associated contribution margin due to business interruption, such as to minimise the financial impact of this risk on cash flow.

The Group's production activities in Italy and abroad are subject to specific environmental regulations, amongst which those concerning soil and subsoil and the presence/use of hazardous materials and substances, including for human health. Such regulations are enforcing increasingly strict standards on companies, which are therefore obliged to incur significant compliance costs.
Considering the large number of the Group's plants, the probability of an accident with consequences for the environment, as well as for continuity of production, cannot be ignored or the resulting potentially significant economic and reputational impact. Accordingly, Prysmian adopts a series of controls that keep the risk at an acceptable level. In fact, environmental issues are managed centrally by the HQ Health Safety & Environment (HSE) department which oversees local HSE departments and is responsible for organising specific training activities, for adopting systems to ensure strict adherence to regulations in accordance with best practices, as well as for monitoring risk exposures using specific indicators and internal and external auditing activities.
With reference to just the production sites within the pre-acquisition Prysmian Group, the certified percentage has remained relatively stable, with 95% certified under ISO 14001 and 78% certified under OHSAS 18001; in addition, specific other Organisations have also been certified (R&D, installation activities, kitting and distribution centres, etc.), for a total of four OHSAS 18001 certificates and two ISO 14001 certificates.
The overall situation has been changed by the acquisition of General Cable, about a third of whose plants (not counted in the above percentages) are currently certified under the standards in question (ISO 14001 and OHSAS 18001).
Therefore, following the acquisition, the programme of certifications at Group level has been duly revised, with the intent of certifying all the production units (except for specific cases) in the future.

The growing spread of web-based technologies and business models allowing the transfer and sharing of sensitive information through virtual spaces (i.e. social media, cloud computing, etc.) carries computing vulnerability risks which Prysmian Group cannot ignore in the conduct of its business. Exposure to potential cyberattacks could be due to several factors such as the necessary distribution of IT systems around the world, and the possession of high value-added information such as patents, technological innovation projects, as well as financial projections and strategic plans not yet disclosed to the market, unauthorised access to which could damage a company's results, financial situation and image. In partnership with the Risk Management department, the Group's IT Security function periodically performs specific assessments to identify any vulnerabilities in IT systems locally and centrally that could compromise business continuity.
Furthermore, since 2016 Prysmian Group has started to implement a structured and integrated process for managing cyber security-related risks which, under the leadership of the Group IT Security function, in partnership with the Risk Management department, aims to strengthen the Group's IT systems and platforms and introduce robust mechanisms to prevent and control any cyberattacks. A cogent Information Security strategy has been defined in this regard that clarifies the governance structure adopted by the Group and the guidelines for managing cyber risk in connection with IT architectures and business processes. A special Information Security Committee, consisting of the key figures involved in managing cyber risk3, has been appointed with the mission of defining the strategic and operational Cyber Security objectives, of coordinating the main initiatives undertaken, and of examining and approving policies, operating procedures and instructions. The Committee is convened on a periodic basis (twice a year) and in any case upon the occurrence of any extraordinary events or crises. Lastly, specific e-learning training sessions have been provided to all the Group's IT staff with the aim of increasing their awareness of this issue.


3 The following sit, as permanent members, on the Information Security Committee: the Chief Operating Officer, the Vicepresident
HR&Organization, the Chief Security Officer, the Chief Information Officer, the Chief Risk Officer, the Chief Audit & Compliance Officer
and the Group's IT Security Manager.

Legal and compliance


Compliance risks associated Code of Ethics, Policies and Procedures


Compliance risk generically represents the possibility of incurring legal or administrative sanctions, material financial losses or reputational damage as a result of violations of prevailing laws and regulations.
Prysmian Group deploys a series of organisational procedures designed to define the principles of legality, transparency, fairness and honesty through which to operate. In particular, since its inception, the Group has adopted a Code of Ethics, a document which contains the ethical standards and the behavioural guidelines that all those engaged in activities on behalf of Prysmian or its subsidiaries (including managers, officers, employees, agents, representatives, contractors, suppliers and consultants) are required to observe. The Group undertakes, through its Internal Audit & Compliance department, to constantly monitor compliance and actual application of these rules, with no type of violation tolerated.
However, despite this ongoing endeavour, assiduous vigilance and periodic information campaigns, it is not possible to rule out future episodes of improper conduct in breach of policy, procedures or the Code of Ethics, and hence of current legislation and regulations, by those engaged in performing activities on Prysmian's behalf, which could result in legal sanctions, fines or reputational damage, even on a material scale.

In the current context, featuring a continuous globalisation of business, a proliferation of channels, information access and an increase in volume and types of data managed, Prysmian has the chance to create new opportunities and new services; at the same time, however, it is experiencing a time of great complexity concerning the governance of data and its compliance with international regulations, as well as the growth of potential threats to the confidentiality, integrity and availability of information.
It is therefore essential to address the issue of how to manage information and data considered confidential or sensitive, not solely as a compliance problem but also as a security problem and a business priority. Furthermore, the coming into force, in May 2018, of the new European Regulation (EU) 2016/679 (GDPR – General Data Protection Regulation) is one of the driving forces behind a renewed commitment to data protection, particularly personal data.
The personal data protection programme adopted by Prysmian is based on three fundamental elements impacting the entire corporate structure:


  • Development of a "data-centric" model by mapping the relevant personal data processed by the company functions and establishing a data processing register;
  • Definition of a new updated governance model, designed to meet the requirements of the GDPR and based on the following pillars:

                         -A new organisational structure that includes the appointment of a Data Protection Officer, serving in an advisory and monitoring capacity, with the appropriate duties and responsibilities delegated to Internal Data Supervisors, who are                                        responsible for the   more substantial processing of data and supervise the activities of persons who process the data;

                         -A series of new policies and standard appointment documents.


  •  Implementation of adequate technical, organisational measures to guarantee a level of security appropriate to the risk.

The programme also includes communication and training materials to raise user awareness of the GDPR and of the measures adopted by Prysmian to ensure compliance with this Regulation.
Following the acquisition of General Cable, the personal data protection programme has been updated and extended to General Cable.
In fact, during the course of 2018, General Cable implemented the new European rules of the GDPR throughout its group and also carried out training for about 800 employees.

In recent years, legislators and regulators have devoted much attention to the fight against bribery and corruption, with a growing tendency to extend responsibility to legal entities as well as to natural persons. With growing internationalisation, organisations more and more often find themselves operating in contexts exposed to the risk of bribery and having to comply with the many related regulations, such as Italian Legislative Decree 231/2001, Italy's Anti-bribery Law (Law 190/2012), the Foreign Corrupt Practices Act, the UK Bribery Act etc., all with a common objective: to counteract and repress corruption.
The Group's business model, with a global presence in over 50 countries and a wide array of applications for its products, brings it into constant contact with multiple third parties (suppliers, intermediaries, agents and customers). In particular, in the Energy (submarine and high voltage) and Oil & Gas businesses, the management of large international projects involves having commercial relations even in countries with a potential risk of bribery (as per the Corruption Perception Index4), often through local commercial agents and public officials.
Prysmian Group has therefore implemented a series of actions designed to manage bribery and corruption on a preventive basis; foremost amongst these is the adoption of an Anti-Bribery Policy which prohibits the bribery of both public officials and private individuals and requires employees to abide by it and to observe and comply with all anti-bribery legislation in the countries in which they are employed or active, if this is more restrictive. In addition, specific e-learning activities (training and testing) for all Group personnel are periodically conducted to raise awareness about compliance with this legislation.
In continuity with the previous year, Prysmian Group moved forward in 2018 with the activities defined in its Anti-Bribery Compliance Program, inspired by the ISO 37001 guidelines for Anti-bribery management systems, published on 15 October 2016 and intended to strengthen its monitoring of and focus on compliance issues. This program, in addition to giving greater control over management of the bribery risk, also aims to minimise the risk of punishment if crimes related to corruption are committed by employees or third parties. The core of the ISO 37001 standard is the control of third parties (suppliers, intermediaries, agents and customers) through a due diligence system designed to reveal any critical or negative events that undermine the reputation of third parties with whom Prysmian Group deals. Following the acquisition of General Cable, Prysmian Group's Anti-Bribery Compliance Program has been updated and expanded to include the additional activities in this area envisaged by the General Cable Compliance Program.
Further details about the actions taken by the Group to prevent corrupt practices can be found in the specific section of the annual Sustainability Report.


4 The Corruption Perception Index (CPI) is an indicator published annually by Transparency International, used to measure the perception of public
sector corruption in various countries around the world.

Competition rules, covering restrictive agreements and abuse of dominant position, now play a central role in governing business activities in all sectors of economic life. Its extensive international presence in more than 50 countries means the Group is subject to antitrust law in Europe and every other country in the world in which it operates, each with more or less strict rules on the civil, administrative and criminal liability of parties that violate the applicable legislation. In the last decade, local Antitrust Authorities have paid increasing attention to commercial activities by market players, also involving a tendency for international collaboration between authorities themselves. Prysmian aspires to operate on the market in compliance with the competition rules.
In keeping with the priorities identified by the ERM process, the Board of Directors has adopted an Antitrust Code of Conduct that all Group employees, directors and managers are required to know and observe in the conduct of their duties and in their dealings with third parties. The Antitrust Code of Conduct was updated during 2018; the new version, published on the company intranet and made available to all the Group's employees, contains the general principles of antitrust law generally found in industry regulations applying in the various jurisdictions in which the Group operates. In addition, other more detailed documents are currently being prepared, each focusing on the antitrust legislation specifically applicable in the main countries in which the Group operates. The Antitrust Code of Conduct forms an integral part of the training program and is intended to provide a framework for the issues concerning application of EU and Italian competition law concerning collusive practices and abuse of dominant position, within which specific situations are assessed on a case-by-case basis. These activities represent a further step in establishing an "antitrust culture" within the Group by promoting knowledge and heightening individual accountability for professional duties arising under antitrust legislation. In this context, specific classroom training sessions were held in 2017 and 2018 mostly for the Group's sales force and organised in collaboration with external lecturers and legal consultants. In addition, E-learning modules were launched on the company intranet during 2018 with the aim of continuously supporting and raising awareness of and attention to this issue.
With regard to the antitrust investigations still in progress, details of which can be found in Note 14. Provisions for risks and charges in the Explanatory Notes to the Consolidated Financial Statements, the Group has a provision for risks and charges as at 31 December 2018 of approximately Euro 233 million. Despite the uncertainty of the outcome of the investigations in progress and potential legal action by customers as a result of the European Commission's decision adopted in April 2014, as described in the
Explanatory Notes (Note 14. Provisions for risks and charges), the amount of this provision is considered to represent the best estimate of the liability based on the information now available.

Sensitivity analysis
arrow-right arrow-right-strong

Planning and reporting risks


Planning and reporting risks are related to the adverse effects that irrelevant, untimely or incorrect information might have on the Group's strategic, operational and financial decisions. At present, in view of the reliability and effectiveness of internal procedures for reporting and planning, the Group does not consider these risks to be relevant.