4. Main aspects of corporate governance

Question 1

What is corporate governance?

Answer 1

A system by which organisations are
directed and controlled.

Question 2

What are the 2 most important elements of good corporate governance?

Answer 2

Transparency and accountability

Question 3

What is a corporate governance framework?

Answer 3

Rules and practices through which a board of directors ensures accountability, fairness, and transparency in a company’s relationship with all its stakeholders.

Question 4

How is corporate governance operated through legislation?

Answer 4

By the Companies Act 2006

Question 5

How is corporate governance operated through regulation?

Answer 5

By the London Stock Exchange (LSE) listed companies, and the FCAs Listing Rules

Question 6

What is the UK Corporate Governance Code?

Answer 6

general principles and more detailed
provisions relating to the corporate governance of all companies listed on the LSE.

Question 7

Who manages the UK Corporate Governance Code?

Answer 7

The Financial Reporting Council (FRC)

Question 8

What are the 5 key sections to the UK Corporate Governance Code?

Answer 8

1. Board Leadership and Company Purpose
2. Division of Responsibilities
3. Composition, Succession, and Evaluation
4. Audit, Risk, and Internal Control
5. Remuneration

Question 9

Is compliance with the UK Corporate Governance Code legally required?

Answer 9

No, but it is a part of the Stock Exchange Listing Rules.

Question 10

Who are the Financial Reporting Council (FRC)?

Answer 10

The UK’s independent regulator responsible for overseeing corporate governance, financial reporting, and audit practices.

Question 11

Who provided corporate governance guidance to mutual companies?

Answer 11

The Association of Financial Mutuals (AFM)

Question 12

According to the FRC, what are the responsibilities of Audit Committees?

Answer 12

1. Ensure fair auditor selection and support market diversity.
2. Oversee auditor appointments, fees, and terms.
3. Engage shareholders on audit scope.
4. Ensure auditors access staff and records.
5. Address auditor feedback and adjust statements.
6. Monitor auditor independence and objectivity.

Question 13

What are Listing Rules?

Answer 13

The Listing Rules require quoted companies to produce half-yearly financial reports as well as annual reports.

Question 14

What legislation covers limited companies?

Answer 14

The Companies Act 2006

Question 15

What 4 areas does the The Companies Act 2006 affect?

Answer 15

1. Company formation
2. Statutory reporting
3. Company meetings
4. Responsibilities of a company’s directors and officers

Question 16

What is ‘Companies House’?

Answer 16

The public records of companies registered in the UK

Question 17

What are the 3 functions of ‘Companies House’?

Answer 17

• Incorporate and dissolve limited companies
• Examine and store company information delivered under the Companies Act and related legislation
• Make this information available to the public.

Question 18

If a company wants to issue shares to the public what is it required to do?

Answer 18

It must register as a public company and
comply with certain additional rules such as having allotted share capital of at least £50,000.

Question 19

Provide 7 company registration documents.

Answer 19

1. Company name.
2. Private or public status.
3. Member liability type.
4. Registered office location (country).
5. Registered office address.
6. Proposed officers.
7. Articles of Association.

Question 20

What is a confirmation statement (annual return)?

Answer 20

A statement includes the company’s registered office address, principal business activities, details of its directors, company secretary (if applicable), shareholders, and share capital.

Question 21

How often should companies deliver a confirmation statement to Companies House?

Answer 21

Companies must deliver a confirmation statement to Companies House at least once every 12 months, within 28 days of the ‘made-up date,’ which is the anniversary of the previous statement or the company’s incorporation.

Question 22

What must a company’s accounting records be sufficient to do?

Answer 22

1. Show and explain the company’s transactions.
2. Disclose the company’s financial position with reasonable accuracy at any time.
3. Enable directors to ensure compliance with the Act when preparing accounts.

Question 23

By Law what should a companies annual accounts give?

Answer 23

A true and fair view of it economic state.

Question 24

What should most companies annual accounts include?

Answer 24

• an income statement (profit and loss)
• a balance sheet signed by a director
• a directors’ report signed by a director or the company secretary

Question 25

What is a director report?

Answer 25

A required fair review of the company’s business and a description of the principal risks and uncertainties facing the company

Question 26

What must be included in a director's report?

Answer 26

- Key trends and factors likely to influence the company’s future development, performance, and position. - Information on environmental matters - Information on employees - Information on social and community issues - Essential contractual arrangements

Question 27

What is a directors' remuneration report?

Answer 27

A report detailing the company’s policy on directors’ pay, including performance conditions, salaries, bonuses, share options, pensions, and other benefits. It must be approved at the annual general meeting.

Question 28

What is the chairman's statement?

Answer 28

An optional broad statement about the company’s activities attributed to the company’s chairman

Question 29

When do companies have to submit annual accounts to Companies House?

Answer 29

- Private companies: Within 9 months of the year-end. - Public companies: Within 6 months of the year-end. - Quoted companies: Must also make their report and accounts available on a website.

Question 30

Do private companies need a company secretary?

Answer 30

No

Question 31

Give 8 responsibilities of the company secretary.

Answer 31

1. Advise the board on responsibilities and compliance. 2. Support the chairman and board operations. 3. Manage information flow and professional development. 4. Maintain shareholder relations and update the board. 5. Ensure legal and regulatory compliance. 6. Monitor and act on relevant changes. 7. Handle administration, records, and meetings. 8. Oversee facilities, HR, and investor relations.

Question 32

According to the FRC who is responsible for risk management and internal control?

Answer 32

The Board

Question 33

What are the 3 lines of defence of risk management in corporate governance?

Answer 33

1. Front line of defence: Managers identify and control risks, supported by risk specialists, with control assigned to those closest to the activity. 2. Second line of defence: The risk management department advises, but operational managers remain accountable for controls. 3. Third line of defence: Internal audit reviews risk processes, and external bodies provide feedback on risk management.

Question 34

Give 4 risk management controls for underwriting

Answer 34

- Limits on individual underwriter authority. - Senior underwriter reviews quotations. - Regularly reviewing pricing schedules. - Monitoring risk accumulation practices.

Question 35

Give 3 risk management controls for claims

Answer 35

- Second staff member reviews all claim payments. - Claim validity is checked. - Senior management reviews reinsurance coverage.

Question 36

Give 3 risk management controls for finance

Answer 36

- Daily reconciliation of ledgers and bank accounts. - Limited authority for approving accounts payable. - Anti-money laundering measures in place.

Question 37

Give 4 risk management controls for HR

Answer 37

- Reference checks for new hires. - Regular staff training and development. - Audit of expense claims. - Monitoring of absences.

Question 38

Give 4 risk management controls for IT

Answer 38

- Daily back-up of records. - Relocation contingency plans. - Anti-virus and security software. - Data security and quality management.

Question 39

What are the 6 key risks for insurance companies?

Answer 39

1. Strategic 2. Underwriting and Reserving 3. Investment/Market 4. Credit 5. Operational 6. Group

Question 40

What is the role of the risk committee?

Answer 40

TO scrutinise the robustness of the control framework and to assess its application in practice. The

Question 41

Who should a risk committee consist of according to the UK Corporate Governance Code?

Answer 41

A minimum of three directors, with independent directors forming a majority.

Question 42

What are the requirements for a company to have a full statutory audit?

Answer 42

The company must meet two of the following criteria: - Turnover exceeding £10.2m - Net assets exceeding £5.1m - More than 50 employees

Question 43

What must the external auditor's report clearly state about the annual accounts?

Answer 43

The report must state if, in the auditor's opinion: - The accounts give a true and fair view of the company's or group's financial position and performance. - The accounts are properly prepared according to financial reporting standards. - The accounts comply with legal requirements and, if applicable, the IAS Regulation.

Question 44

How can an internal audit assist directors with implementing good corporate governance?

Answer 44

- Reviewing risk management and internal controls. - Ensuring clear and balanced board reports. - Keeping directors updated on accounting and auditing issues. - Coordinating with external auditors. - Ensuring the board receives key information from auditors.

Question 45

What is the purpose of a compliance function?

Answer 45

To ensure that processes and activities carried out in the firm are in compliance with established operational procedures and meet the requirements of the regulator.

Question 46

Which companies are required to report on climate risk in the UK?

Answer 46

Companies with more than 500 employees and more than £500m annual turnover.

Question 47

What 4 things should climate-related disclosures include?

Answer 47

1. Climate risks and opportunities. 2. Management through targets and KPIs. 3. Climate change in corporate governance. 4. Impact of climate risk on strategy.

Question 48

What strategy, processes, and due diligence are companies required to discuss under ESG?

Answer 48

* The environment * The company's employees * Social matters * Respect for human rights * Anti-corruption and anti-bribery

Question 49

How should confidential paper records be handled and disposed of?

Answer 49

Marked as "private and confidential," stored securely, and restricted access. Shred or disposed of with confidential waste contractors and never left in general waste bins.

Question 50

What is 'insider dealing' and 'improper discloser'?

Answer 50

* Insider dealing – when an insider deals, or tries to deal, based on inside information. * Improper disclosure – where an insider improperly discloses inside information to another person.

Question 51

What are 2 data protection legislations?

Answer 51

UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA 2018)

Question 52

Who do UK GDPR and DPA 2018 apply to?

Answer 52

All persons in the UK who process personal data other than for domestic purposes.

Question 53

What information do UK GDPR and DPA 2028 apply to?

Answer 53

Personal Data - Information from which a living individual can be identified, either directly or indirectly.

Question 54

Give 9 categories of sensitive data.

Answer 54

1. Race or ethnic origin 2. Political opinions 3. Religious or philosophical beliefs 4. Trade union membership 5. Genetic data 6. Biometrics (where used for ID purposes) 7. Health information 8. Information about sex life 9. Sexual orientation

Question 55

Personal data must be processed in accordance with the six Data Protection Principles. What are they?

Answer 55

1. Lawfulness, fairness, and transparency 2. Purpose limitation 3. Data minimisation 4. Accuracy 5. Storage limitation 6. Integrity and confidentiality

Question 56

What are the legal bases for the lawful processing of personal data?

Answer 56

1. Consent – Freely given, specific, and opt-in. 2. Contract – Necessary to fulfil or pre-contractual steps. 3. Legal obligation – Required by law. 4. Vital interests – To protect life. 5. Public task – For public authorities or public interest. 6. Legitimate interests – For business purposes, after balancing with individual rights.

Question 57

Wha 8 rights to individuals have under data protection legislation?

Answer 57

1. Right to be informed 2. Right of access 3. Right to rectification 4. Right to erasure 5. Right to restrict processing 6. Right to data portability 7. Right to object 8. Rights in relation to automated decision-making and profiling

Question 58

If an organisation experiences a breach who must they inform?

Answer 58

The Information Commissioner's Office (ICO)

Question 59

Who oversees data protection legislation in the UK?

Answer 59

The Information Commissioner's Office (ICO)

Question 60

What powers does the ICO have to regulate and enforce data protection laws?

Answer 60

-Impose fines of up to £17.5 million or 4% of annual global turnover for serious data breaches. - Bring criminal proceedings against data controllers or processors who alter records following a SAR to prevent disclosure.