Breakout Session 3 QHSE Strategic Risk Management

Managing QHSE risk in your supply chain Gemma Archibald Head of Operations Seonaid Culliford Head of Account Management

3 Why is contractor verification key? ► Legal obligation/compliance ► Risk ► Cost ► Reputation ► Supply chain consistency ► Audit

4 SafeContractor Introduction ► Alcumus SafeContractor is the UK’s fastest growing health and safety assessment scheme ► More than 270 of the UK’s leading businesses are among its client base ► Contractor member base of 25,000, growing 400+ a month...

5 What we do: ► Outsource pre-qualification requirements ► Maintain a compliant supply chain ► Provide a full audit trail ► Help you to meet your legal requirements

6 What is the Alcumus SafeContractor product? It also offers our clients the ability to mandate additional question sets to be included in the assessment process: ► Client specific questions – code of conduct, Bribery Act etc ► SafeContractorPlus – includes environmental, quality and equality question sets, meeting compliance with PAS91 The core SafeContractor product ensures compliance against: ► Core criteria level H&S assessment – SSiP level ► Work categories H&S assessment – above SSiP level ► Insurance validation

7 What are the key benefits of using SafeContractor? Contractor benefits: SafeContractor buying power means: ► Huge membership benefits package including trade discounts and free legal advice (approx. value £1000) ► Potential to win more work from client database ► Adhering to H&S legal requirements Client benefits: ► Ease of use ► Cost savings ► Industry best practice ► Additional supplier visibility ► Expert knowledge and experience of use Cost savings

8 Click here to view

Prioritising Risk Managing Compliance Data Toby South Alcumus Info Exchange Director

10 ► Business risk ► The challenges ► How technology can help ► Case study scenarios ► 1: John Lewis Partnership ► 2: Royal Bank of Scotland ► 3: Capita Agenda

11 ► Environmental ► Health & safety ► Security ► Occupational health ► Inspections ► Construction projects ► Legal documentation ► Assets ► ……………….. Aspects of Compliance

12 Types of Business Risk Strategic Risk Reputational Risk Financial Risk Environmental Risk Compliance Risk All it takes is a single incident ! Operational Risk

13 What role can technology play in managing and mitigating compliance risk?

14 ► Create and protect value ► Form part of all processes ► Be part of decision making ► Be used to handle uncertainty ► Be systematic and timely ► Be based on the best data Technology is central to living and breathing compliance risk management ► Be tailored to the environment ► Consider human factors ► Be transparent and inclusive ► Be responsive and interactive ► Support continual improvement

15 NO Data management is a critical control point in managing risk effectively Audits/ Inspections Incident Reporting Occupational Health Security & Loss Prevention SH&E Supply Chain Management

16 The challenge

17 The output

18 ► Bring people and groups together – integrate ► Provide transparency across an organisation ► Facilitate Best Practice – Do It One Way – Our Way ► Control ‘process’ through assigned ownership/workflow ► Ensure data integrity – no duplication ► Identify issues and notify/alert accordingly ► Build a knowledge base of risk related data ► Inform decision making based on fact/data ► Provide full audit trail who/what/when Good technology will be mapped to your process! Technology can:

19 Consolidating data and processes providing a single view…

Client Implementations

21 Case study 1: How a major retailer identifies, predicts and therefore mitigates loss prevention risk

547 Stores Security Incidents Health & Safety Incidents Insurance Claims Enforcement Contact Manage CAPA to meet regulatory obligations Association analysis to support loss mitigation Process claims effectively Benchmark & set objectives for H&S KPIs “A pan-partnership incident management system that links related pieces of information, tracks trends over time and predicts potential issues and outcomes.”

23 Case study 2: How a major UK retailing bank ensures compliance

9000 properties globally Statutory property Inspections & remedial actions (input by outsourced supplier) Compliance risk processes (input by contractors) Analyse & improve all aspects of risk related to refurbishments and construction Maintain legislative compliance - Asbestos, Legionella, etc. The integrated interface imports property, inspection and action data from internal and external systems (Cost control system, SAP) enabling compliance risk management of all properties from asset acquisition to disposal Cost Control (External)

25 Case study 3: How a global business process outsourcer manages compliance and extends its risk management process to its customer base

10 large council clients – 9000 sites, 70,000 compliance aspects Accident & Incident Reporting Statutory Property Compliance inspections, actions, certificates, Maintain legislative compliance Manage safety performance A centralised web based technology platform accessible by the organisation, their Clients and Supply Chains to manage compliance. SHE Audits Insurance Claims Waste Management SHE continual improvement Stand up to litigation Reduce waste, maintain compliance 500 locations, 18 countries, 50,000 employees

27 In summary ► Whichever risk management framework you use, or what risk based process you are managing, technology can underpin it ► Consistently captured and consolidated data is essential for deciding on risk management objectives ► Technology must be mapped around your own processes, be accessible by all stakeholders and work with other business systems

Tel: