Internal Control

The Sumitomo Corporation Group has strengthened its internal controls to retain the trust of all its stakeholders.

Basic Principles and System

The Sumitomo Corporation Group comprises six business units, an initiative, regional organizations and Group companies in Japan and overseas. The Group collectively works together in a broad range of business fields.

In order to realize sustainable growth and development for the Sumitomo Corporation Group by enhancing the operational quality of each of the Group companies, we stipulate basic regulations for internal control, develop and conduct appropriate internal control, and access the effectiveness and take action to improve it.

To rationally ensure compliance with laws and regulations throughout the entire Group in relation to business activities, safeguarding assets against loss, effectiveness and efficiency of operations, and reliability of financial reporting, initiatives are being taken to improve group governance.

Financial Reporting

The Sumitomo Corporation Group creates financial reports in accordance with the Accounting Policy Manual that lays out the Group’s internal policies for accounting, and discloses information in a timely and appropriate manner and in compliance with relevant laws, regulations, and accounting standards.

For its financial reporting internal control system, the Company acts in accordance with the Internal Control Reporting System stipulated in the Financial Instruments and Exchange Act, by promoting internal control activities as required by the Act, and evaluating and improving its business processes.

Information Security

Led by the IT Strategy Committee, which is a companywide organization chaired by the Chief Information Officer (CIO), Sumitomo Corporation has established an Information Security Policy and other relevant regulations, and works to ensure information security and the appropriate management of information assets.

We also take steps to minimize the risk from unexpected situations involving information security, such as external attacks aimed for instance at theft or destruction of corporate information. In addition to system-based safeguards, these include continuous training and drills for officers and employees and system monitoring and upgrades covering our major subsidiaries and other group entities.

Internal Audits

The Internal Auditing Department, which reports directly to the President and Chief Executive Officer, is an independent organization that monitors the operations of the Group, and audits organizations and operating companies of the Group. As well as reporting the internal audit results directly to the President and Chief Executive Officer, in principle on a monthly basis, periodic reports are also made to the Board of Directors and the Audit & Supervisory Board. The department regularly conducts audits on all aspects of internal control, comprising asset and risk management, compliance, and business operations. It evaluates the effectiveness and adequacy of the internal controls of auditees, taking into account the significance of the inherent risks. At the same time, it provides appropriate advice for improvements and expedites improvement and maintenance on the auditee’s own initiative, thereby contributing to the improvement of governance and internal controls within the Sumitomo Corporation Group.