Service objectives

The following list represents the Key Service Objectives (KSO) for the Appleton Greene Risk Analysis service.

Appleton Greene & Co Global 1

Legal Assessment

 This process involves to: improve the company’s governance system; organize a structured and organic prevention and control aimed at reducing the risk of commission of related crimes business activities, with particular regard to the elimination or reduction any unlawful behavior; determine all those who operate in the name and on behalf of the company in “areas at risk”, the confidence to run in to infringements of the provisions, in an offense punishable by penalties, on legal or administrative nature, not only personally but also in the towards the company. Legal assessment includes the following activities: identification of activities of the business areas exposed to the committee a more offenses (risk analysis); the definition of appropriate procedures for the prevention of offenses (Control protocols) and the effective monitoring of the process operation. Risk Analysis – The risk analysis is done by analyzing business processes in order to identify areas and activities where it is possible to commit the offenses and measuring, for each of them, the level of risk (in terms of “probability” and “impact”). This activity of “risk assessment”, risk assessment, focuses on the corporate structure, the specific business risks and internal regulatory system entity (company procedures). The risks are identified through a structured process of risk assessment (Risk assessment), generally carried out by means of: interviewing managers; workshop with the resources of one or more business functions and surveys. In performing this preliminary analysis assumes a fundamental role the Internal Audit. The Internal Audit is an independent activity and objective assurance and consultancy, aimed at improving the effectiveness and efficiency Organization. We assist the organization in pursuit of its objectives through a systematic professional approach that generates value added since it is aimed at evaluating and improving the control processes, risk management and corporate governance. This function can support the Supervisory Board in the operation of the process verification, checking the design and operation of parking control protocols in place to mitigate the risk of committing crimes.

Appleton Greene & Co Global 2

Risk Evaluation

 The objective of risk management is to understand what and how to prevent in relation to possible cases of damage, but also what and how to mitigate in terms of consequences and what to possibly transfer to other entities by means of, for example, appropriate insurance coverage. Identify, analyze, evaluate, communicate, monitor and eliminate the risks associated with any activity, or process in order to make the organization able to minimize losses and maximize opportunities. All this in a perspective of business continuity, that continuity of the production process or service delivery. Elements of the process considered are: setting the context of the risk assessment (identification, analysis, increase) of the risk treatment across which we highlight the following activities: communication and consultation, monitoring and review. Establish the context and politics (external context: social, cultural, political, cogent, financial, technology, internal context: governance, organizational structure, responsibilities, policies, information systems and flows; for risk management policy). Risk Identification (sources of risk, impact areas, events, circumstances, consequences, goal and full list of events that may affect the achievement of objectives). Analysis and risk weight; the analysis (determination of the consequences and attributes as the verisimilitude) provides inputs to the phase weighting, as the level of risk. Increase: comparison between the level of risk and risk criteria. Risk Treatment: deciding not to start or continue activities that result in the onset of risk; hiring or increase the risk in order to pursue an opportunity; remove the source of risk; to change the probability; edit their consequences; share the risk with other / and part / s (including financial control) and to consider the risk by informed decision.

Appleton Greene & Co Global 3

Quality Implementation

 The implementation of the management system for quality plans a project of organization and training that must permeate the structure in all its parts, with the objective of defining the processes aimed at continually improving and optimizing the efficiency. The project follows the following steps: Verify the organization and the existing documentation; Definition of quality policy and objectives; Definition and preparation of quality documents; Risk assessment; Audit Verification and Assistance during the Inspection Visit. During the first operation will be carried out a detailed verification of the organizational status and will define the objectives and stakeholders. This phase involves the actual analysis of the organization and the collection of all the existing documentation (possible forms and operating instructions) on the subject of the certification processes. This in order to check the current state of the art and to manage the integration with the quality system that must be implemented and with the documentation to be drawn. At each stage, and especially in the initial phase, it will be essential that the involvement of both the direction of the function managers, coordinated by the consultant, to define what the norm called “quality policy”, namely the objectives that the Company intends to pursue, to meet the needs of customers, external / internal. Risk assessment plans to identify, analyze, evaluate, communicate, monitor and eliminate the risks associated with any activity, or process in order to make the organization able to minimize losses and maximize opportunities. It must necessarily be an ongoing process aimed at improving since, over time, external factors or internal risk may change and should include an estimate of the costs of risk management, in terms of economic resources, capacity and means. The next step in setting the objectives will be to detect processes, responsibilities by assigning specific tasks and responsibilities. In this phase it will be crucial the involvement of both the function Officers that their collaborators, coordinated by a consultant, to obtain maximum involvement and dissemination of the Quality System. In order to verify the correct and full implementation of the quality system set up during the last month of the project, before by the inspection of the chosen certification, it will be carried out thorough auditing activities on all subjects to the certification process.

Appleton Greene & Co Global 4

Environmental Implementation

 Initial Environmental Assessment that identifies the significant environmental aspects typical of every company. The Environmental Analysis allows to: Identify the legal requirements applicable to an organization; Identify all environmental aspects with a significant environmental impact; Locate the appropriate criteria for evaluating the environmental impacts; Review all existing management practices and procedures relating to the environment and Evaluate the teaching from the investigation of previous incidents and environmental emergencies. The Environmental Analysis is designed to identify: the direct and indirect aspects (environmental aspect: element of an activity, product or service of an organization that can interact with the environment) and the significant impacts (environmental impact: any change to the environment, whether adverse or beneficial, wholly or partially resulting from activities, products or services of an organization). The Environmental Analysis is the tool that allows the organization to: Acquire a complete knowledge, thorough and documented related environmental aspects of its activities, its products and services; find out what are the most significant environmental aspects and the environmental performance indicators by which to measure the environmental performance; the realization of a control system with instruments such as procedures and control plans; support and assistance in the implementation of the environmental system; monitoring of activities and internal audit for the verification of the proper functioning. A systematic check carried out by the internal audit is to minimize the risks, to provide assurance to stakeholders (shareholders, employees, management, customers) and to define clear priorities for action to achieve compliance, for risk reduction and for the process improvement and periodic definition of improvement plans.

Appleton Greene & Co Global 5

SS Implementation

 Occupational Health and Safety Assessment Series allows the business issues related to security management, through the identification of hazards, assessment of risks and their reduction. A continuous improvement plan allows the identification and subsequent implementation of control measures. The consulting services to obtain OHSAS 18001 certification enables you to create an “active prevention” corporate policy that allows you to: Ensure compliance with legal requirements; Ensure the company an advantage in participating in tenders by public or private entities; Reduce workplace accidents both in terms of frequency and in terms of severity and the related costs “indirect”; Reduce the possibility of incurring administrative sanctions and / or criminal proceedings; Reduce image risks from accidents at work; Increase employee motivation and thus the working efficiency; Continuously monitor and verify safe working conditions and Design and implement an integrated system for quality, environment and safety. This process Involves: Definition of the SSL policy; Formulation of a plan for the introduction and development of a SSL management system; Drafting of the full SSL Manual of the procedures required by the regulations; Organization of a registration system; Specific personnel training than is the policy; System implementation and testing agreed through internal audits; Planning and development of corrective measures applications; Selection of the certification and Tiling constant during audits to ensure a technical support to the customer. The benefits derived from it are the bureaucratic / administrative simplifications, decision support in investment operations or technological change, greater protection of company assets and a better image towards its customers.