Governance

In line with our goal of being the first choice for customers, we place great emphasis on creating a trustworthy and reliable relationship with them, which strengthens us in fulfilling our role in the most efficient way possible. 

We believe that good corporate governance is key to providing a broad and diverse range of services to clients from different industries. By adhering to our values, we show honesty and responsibility in our day-to-day work, thus striving to have a positive impact on the community.

In line with our values, we adhere to KPMG’s Global Code of Conduct. Each year, the company's employees and shareholders affirm their obligation to operate according to the established code of conduct. As 

in previous years, all employees have received training and reaffirmed their compliance with the company’s code of conduct.

Suspicion of possible misconduct in KPMG’s operations can be reported through the company's global reporting system. Such notifications can be made anonymously and all whistleblowers enjoy protection.

We ensure that every project we undertake is carried out with integrity, taking particular care to ensure that there are no conflicts of interest. As an audit firm, we comply with high standards of quality, independence and ethics. These requirements are set forth in the KPMG Global Code of Conduct, which is based, among other things, on the IFAC’s International Code of Ethics for Professional Accountants. In 2024, we met the minimum criteria of the International Standard on Quality Management (ISQM) 1, which covers goals, risks and responses in quality management. For more information about ISQM 1, please refer to the company's Transparency Report.

The operation of our IT systems is based on a clear information security policy and a structured information security management system based on the standards ISO 27001 and ISO 27002, among other things.

The system is subject to regular internal control, both in-house and by KPMG Global. To strengthen this framework, we have a dedicated Information Security Committee, Information Security Manager, and Data Protection Officer.

The company followed the same procedures as before. In the autumn, the usual courses in network and information security were conducted, as well as education in privacy practices. In the spring, the Terms of Use were made available to employees with the aim of explaining policies and rules in these areas, and to provide education and training to combat phishing. In addition, reports were sent to employees as needed, and if specific risks arose that required increased alertness or response.

Through these reports, we want to highlight recent trends and discuss the opportunities, challenges and risks that we face in our operations.

As a reporting entity, we comply with all legal requirements for anti-money laundering and due diligence on our customers. We are required to report all suspected corruption, bribery or other violations of law to the relevant authorities. Through clear procedures and actions, we strive to prevent unlawful transactions. All personnel is encouraged to report any suspicion of suspicious or abnormal activities.

Managers and project controllers are also obliged to register their shareholdings in the KPMG Independence Compliance System (KICS), which guarantees independence in our services and protects the interests of all stakeholders.