The COSO models form the basis for the risk management system and the internal control system used in the Zumtobel Group. Consequently, these systems overlap and influence each other during their daily application.

Risk management is viewed as an independent strategic process, which focuses on the interaction with risks and opportunities. The more risk management deals with the global risks to which companies are exposed, the more it becomes an independent process. The more it deals with the risks arising from individual corporate processes, the more it merges with the internal control system.

In accordance with § 243a (2) of the Austrian Corporate Code as well as Rules 69 and 70, the management report must disclose the major elements of the internal control system and risk management system related to accounting processes. The relevant information can be found in the Group Management Report under sections 1.12 (Risk Management) and 1.13 (System of Internal Controls). In accordance with Rule 83, the risk management system was examined by the auditor.