Driving change through conduct risk

In today’s fast-paced landscape where Environmental, Social and Governance (“ESG”) considerations are shaping investor perceptions, corporate reputation and sustainable business practices, the focus on Conduct Risk has never been more intense.

Whilst navigating the landscape of ethical conduct is complex, there are profound implications for an organisation’s ESG performance if prompt action is not taken. Our team explores why organisations need to adapt swiftly to stay ahead of the curve to manage and mitigate the drivers of poor conduct and culture.

The ‘E’ in ESG, which is widely recognised as environmental stewardship, has gained paramount significance in evaluating an organisation’s long-term viability and ethical standing. Beyond the traditional realm of corporate ethics, the escalating concerns around climate change and resource depletion have propelled environmental consideration into a critical factor. 

Environmental conduct risk can take many different forms, such as: 

• Unsustainable resource management: Consuming resources in excess or modelling them in an ineffective way can lead to higher environmental costs including fines or penalties and will also raise concerns amongst stakeholders. 
• Environmental incidents: Business actions which unintentionally or purposely cause harm to the environment can have negative effects on the environment, including biological or ecological damage, reputational damage to the organisation, and severe financial and legal penalties. 
• Environmental regulation non-compliance: Violations of the substance and spirit of environmental laws and regulations may result in fines, penalties and harm to the reputation of the organisation. 

Organisations aiming to exhibit proficient corporate conduct risk management should contemplate integrating: 

• Environmental impact assessments: To identify possible environmental hazards and create mitigation plans, environmental impact assessments are to be carried out as part of the project of product approval procedure. 
• Environmental compliance review: In order to ensure that the organisation is detecting possible non-compliance concerns and putting remedial steps in place, ESG analysis should be undertaken whenever an issue or investigation is conducted. 
• Environmental training and awareness programmes: Employee training and awareness programmes on the environment should be put in place in order to inform staff members at all levels about best practices and environmental regulations as well as to ensure that the organisation’s environmental protection policy is ingrained in the organisation’s culture and core values. 
• Environmental due diligence: To identify and evaluate any environmental liabilities and hazards, a thorough environmental due diligence procedure should be carried out during the product review and approval process. 
• Proactive Mindset: To ensure that your products continue to meet the demands, attributes and goals of the specified ESG targets for that product, as well as legal requirements, it is imperative that you monitor and review them on a regular basis, along with the policies that support them. 

The ‘G’ in ESG encompasses the principles of governance excellence, covering an organisation’s corporate leadership, risk management, and transparency practices. A robust culture of corporate governance extends beyond mere compliance with regulations or formalities in the boardroom; it serves as the cornerstone upon which an organisation’s long-term success is constructed. Effective governance ensures responsible, ethical management in the best interests of all stakeholders.

The role of corporate conduct risk and culture is vital in shaping an organisation’s governance performance. Conduct risk pertains to the potential for financial or reputational damage arising from unethical or non-compliant behaviour, while corporate culture encompasses the shared values, norms, and beliefs shaping employee behaviour and decision-making. 

The CSRD introduces a new level of transparency on organisational governance, disclosing board composition, including a specific focus on gender, as well as the level of competency and knowledge on ESG topics. 

Risk related to governance conduct can take many different forms, such as: 

• Bribery and corruption: Taking part in or being suspected of taking part in kickbacks, bribes, or other corrupt activities can result in criminal charges as well as serious harm to one’s image. 
• Boardroom misconduct: Financial losses, legal liabilities, and reputational harm can result from board members’ breaches of fiduciary duty, conflicts of interest, or other unethical actions. 
• Absence of responsibility and supervision: The probability of wrongdoing and risk can be raised by weak corporate governance frameworks, insufficient internal controls, or a failure to hold management accountable. Inadequate managerial information frequently makes this easier. 

Governance factors such as the following should be taken into account for corporate behaviour risk management to be effective: 

• Evaluation of Board Effectiveness: Evaluations of the board’s efficacy should be carried out on a regular basis to determine the makeup, level of experience, and capacity of the board to carry out its oversight duties. 
• Whistle-blower protection policies: Strict rules protecting whistle-blowers should be in place to encourage staff members to disclose environmental issues without worrying about facing consequences 
• Management Reporting Reviews: To guarantee proper monitoring of the company’s actions and culture, organisations should examine the efficacy of their management reporting. 
• Review of Internal Controls: In-depth analyses of internal controls should be carried out to make sure they are sufficient to stop and identify fraud, corruption, and other wrongdoing. 
• Governance risk assessments: To detect and analyse possible governance risks and conduct threats, conflicts of interest, and regulatory compliance difficulties, as well as other causes of bad behaviour, regular governance evaluations should be carried out. 
• Ethics and compliance training: Employees should undergo ethics and compliance training on a regular basis to help them understand their roles, make moral decisions, and report misbehaviour. 

KPMG is at the forefront of this effort and has a multidisciplinary team working with organisations and supporting them to manage conduct risk and drive their ESG agenda. By combining our expertise in conduct and product remediations, culture change and ESG Transformation, we can provide a holistic and integrated approach to manage ESG risk by helping organisations achieve their ESG goals, enhance their reputation, and create a more sustainable future. 

KPMG has developed tailormade Product Assurance frameworks that integrate assurance roles to gain competitive advantage.

Our experience extends to enhancing various aspects of clients’ Risk Frameworks, by contributing to a comprehensive and proactive approach that addresses environmental concerns tailored to the organisation. 

KPMG advises organisations on the interlock between Culture, Conduct Risk and ESG via scenario based learning. These tailored sessions go beyond regulatory compliance and emphasise ethical behaviour and sustainability practices using hypothetical scenarios.

By educating employees on the importance of sustainable conduct, an organisation can fostering a corporate culture aligned with broader societal goals. 

KPMG helps to prepare organisations to integrate ESG factors into their core business conduct. Recognising the interconnectedness of conduct risk and sustainability, we support organisations in assessing how conduct risk aligns with their sustainability goals.

This involves identifying opportunities to enhance organisational resilience through sustainable practices, contributing to improved Governance.