Professional Documents
Culture Documents
Governance Policy
December 2016
Corporate Governance Policy 2016 | Version 2.0 December 2016 1
POLICY STATEMENT
Corporate governance refers to the mechanisms, processes and relations by which ISS is
controlled and directed at every level from customer sites, country operations, country
management teams, regional management teams, Executive Group Management, Board
of Directors and ultimately the shareholders of the ISS Group.
Through our more than 115 years’ history ISS has placed great importance on governance
and accountability and today good corporate governance practices are an integral part of
our values and what we promise our customers, employees and stakeholders. You may ask
how this can be? A policy on governance may, after all, feel a long way from our sites, daily
operations and interactions with customers and employees. But the reality is that only when
our values and leadership principles are lived out on the site, we are truly living up to our
value proposition. We promise, among other things, to protect the brand of our customers
and safeguard their people and assets. Only by doing the right things, at the right time,
in the right way can we live up to this promise and our corporate governance policy is an
important guide in this regard. This way we also protect our own brand and ensure that we
have a strong business built on a solid and sustainable foundation
With the re-listing of ISS A/S on NASDAQ Copenhagen stock exchange in 2014, a renewed
focus on good corporate governance practices on all levels of the ISS Group has become
important to ensure that we can live up to the requirements of being a public listed company.
We have therefore decided to elevate the Corporate Governance Guidelines to a Corporate
Governance Policy (the “Policy”), building on and consolidating our experience with the
original guidelines.
The purpose of the Policy is to align throughout the Group the mandatory minimum
requirements for processes and procedures to be applied when operating our business,
with clearly defined responsibilities and authority levels for making decisions. The Policy also
provides a measure for accountability that enables us as managers of the business and our
stakeholders to monitor that we observe ethical and responsible business practices in ISS.
This document does not intend to and cannot answer all questions you may have,
so please consult local legal counsel or Group Legal (Tel: +45 38 17 00 00 or email:
legal@group.issworld.com) with questions or suggestions to improve the application of the
Policy.
Yours sincerely
Executive Group Management
1. INTRODUCTION 6
1.1 Fundamental rules 6
1.2 Adoption of Policy – compliance requirement – audit 8
1.3 How to read and use this Policy and the tools provided 8
1.4 Questions – Review of Policy 10
3.MANAGEMENT OF SUBSIDIARIES 15
3.1 ISS Policy 15
3.2 How we do things 15
3.2.1 Composition of Boards 15
3.2.2 Country Management responsibility for governance of Subsidiaries 18
3.2.3 Management of other Countries 18
3.2.4 Legal structure reporting, Disclosure & Litigation reporting and review
of key country risks and controls 18
3.2.5 Merging, dissolving, establishing and changing capital structure of
legal entities – Project Recommendation Paper and CCPC approval process 19
3.2.6 Business review meetings 19
3.2.7 Books and records – control requirements 20
3.3 Minimum requirements - Management of Subsidiaries 20
3.4 Available tools 21
Document version
Document version: Version 2.0 Approved by: EGM
Document location: Responsible for maintenance: Group Legal
governance.policies.group.issworld.com Next review/update: December 2017
Last updated: December 2016Governance Policy 2016 | Version 2.0 December 2016
Corporate 5
1. INTRODUCTION
Good corporate governance practices are an integral part of how we operate our business
and a key element in the value proposition we offer our customers, employees and stake-
holders. As an international group performing our services globally based on self-delivery
at the facilities of our customers, it is fundamental for ISS to always operate the business
responsibly and in compliance with laws and regulations.
This Policy, which is addressed to ISS managers (as defined in subsection 1.3 below), pro-
vides a solid foundation for ethical and responsible decision making throughout the ISS
Group.
Responsibility
We care
Quality
We deliver
10-11-2016 14:09:28
• In ISS we put the customer first ISS is a people business. Leadership The
ISS Way
- with a Human
Touch
The Policy shall be tabled for review and, to the extent possible, adoption by the highest
management board level of the top holding company in each country where ISS operates.
It is the responsibility of Country Management to ensure compliance with the Policy and the
minimum requirements.
The minimum requirements established in this Policy are mandatory. Deviations must be
agreed with Regional Management or, as applicable, with the EGM or Head of Group
Function and recorded in writing e.g. board resolutions or minutes of business review
meetings.
Country Management shall ensure that appropriate information and training sessions are
organised to support implementation of the Policy and changes to the local governance
structure that may follow from the Policy.
The minimum requirements described in this Policy are included in the Group Internal
Audit control catalogue and will form part of the audits performed by Group Internal
Audit. Coun tries and Regions are required to monitor compliance and maturity through the
Group Internal Audit Self-Assessment Form, see section 8.
1.3 How to read and use this Policy and the tools provided
• ISS Policy: A short description and background for the policy of ISS.
BRM: Business review meetings held at regular intervals between (i) EGM and
Regional Management, (ii) Regional Management and Country Management, and
(iii) Country Management and country business units, as applicable.
Country Management: For each ISS country, the Country Manager and all
managers directly reporting to the Country Manager, such as but not limited to, the
Country CFO, the People & Culture Director, the Commercial Director, Corporate
Affairs Director and the business segment directors.
EGMB: Executive Group Management Board of ISS A/S, which consists of the
executive officers of EGM registered with the Danish Business Authority.
ISS Group Policies: Policies and guidelines issued and updated by the ISS Group
from time to time, and located at governance.policies.group.issworld.com.
ISS Key Compliance Policies: The Corporate Governance Policy, the Code of
Conduct, the Anti-Corruption Policy, the Competition Law Policy, the Supplier Code
of Conduct, the Escalation Policy and the Speak Up Policy.
LCC: The Large Customer Contract Approval Policy and Procedures applicable to the
ISS Group.
Any questions you may have with respect to this Policy or with respect to a particular
topic or transaction should be addressed to Group Legal (Tel: +45 38 17 00 00 or email:
legal@group.issworld.com). If you are in doubt, always ask or seek guidance before
proceeding.
The Policy will be reviewed by the EGM as and when required and at least once annually.
Leadership and integrity start at the top. In ISS, we lead by example and the behaviour of us
as ISS Managers play an important role in guiding our 500,000 colleagues around the world
and in demonstrating our value-based culture to our customers and external stakeholders.
The basic rules for conducting our business in an ethical and responsible manner in line with
our values are outlined below. These rules are mandatory for all ISS Managers.
2.2 How we do things – Compliance with Law, ISS Values and Policies
2.2.1 Compliance with law, the ISS Values and Code of Conduct
ISS Managers must operate the business in accordance with the law and regulations of the
countries where we operate.
In a people intensive business like ISS the behaviours of our managers have a profound
impact on our employees, customers and stakeholders. ISS Managers must therefore follow
the ISS Values and adhere to the ISS Code of Conduct.
ISS Managers are expected to protect the good reputation of the ISS Group and refrain
from any behaviour or act that may bring the ISS Group, its country operations, customers
or themselves in disrepute. Acting in a manner compatible with the ISS Values and Code of
Conduct also applies when an ISS Manager is off duty.
It is the responsibility of each ISS Manager to comply with the ISS Group Polices and
guidelines, and Country Management shall ensure country compliance with ISS Group
Policies and guidelines.
ISS Managers must avoid any situation that involves or may involve a conflict between their
personal interest and the interest of ISS. The mere possibility or appearance that a conflict of
interest could exist is often sufficient to raise suspicion or cause others to lose confidence and
proper caution should be exercised to avoid situations that can be perceived as conflicts of
interest. Where a conflict of interest may exist, ISS Managers have an obligation to disclose
such conflict and all relevant circumstances to their superior.
The following situations and examples are considered a conflict of interest that has to be
disclosed by the ISS Manager:
(i) Situations where a manager has a personal (financial) interest, direct or indirect, in
a transaction or arrangement entered into by an ISS company or in an entity doing
business with ISS.
Examples
• A manager having a direct or indirect financial interest in or a financial relation-
ship with a supplier or customer (investment below 2 % of the share capital or
bonds of a public traded company is not considered a conflict).
• A manager taking part in any ISS business decision that involves a company that
employs or is owned by the spouse/partner, child or other close relative, or friend.
(ii) Situations where a manager has a direct or indirect financial interest in a competing
business or business activities outside ISS.
Examples
• A manager having an interest in a business competing with ISS (investment below
2 % of the share capital or bonds of a public traded company is not considered a
conflict).
Examples
• A manager using non-public ISS information for his/her (including his/her relatives,
partner or friends) personal gain or advantage.
(iv) Situations where a manager’s personal financial situation is mixed with the
company’s funds or assets.
Examples
• A manager obtaining, or taking part in a decision to obtain, loans or advances of
cash from an ISS company (except to cover reasonable business expenses).
• A manager using company equipment, property or other assets for private purposes
(without contractual entitlement or specific approval).
(v) Situations where personal relations between ISS employees may cause others to
lose confidence in their judgement or objectivity.
Examples
• A manager taking part in a decision by ISS to employ a close relative, partner or
friend.
With respect to the ISS Group Policies and conflicts of interest, the following minimum
compliance requirements apply:
(i) The ISS Key Compliance Policies shall be distributed to and included by
reference in employment agreements of all ISS Managers.
(ii) All ISS Managers shall receive training in the ISS Code of Conduct at on-
boarding and shall be retrained every second year.
(iv) Regional CEO and CFO as well as Country Manager and CFO shall sign
Management Representation letters in connection with the half-year and
full year HFM reporting of the results to Group Controlling confirming
compliance with the ISS Group Policies referred to in the Management
Representation letters and absence of undisclosed conflict of interest.
The ISS Group conducts business worldwide and operates locally via country-based
subsidiaries with dedicated country management teams. The Subsidiaries are established
and managed as independent legal entities, but they also form part of the ISS Group.
Consequently, the ability of the ISS Group to exercise its voting, managerial and financial
rights as a shareholder must take precedence in the way the Subsidiaries are established
and managed.
The governance of the Subsidiaries shall ensure local accountability and compliance with
the law and ISS Group Policies. The principles set out in section 3.2 below apply within
each country and it is the responsibility of Country Management to actively ensure that all
Subsidiaries are in compliance with legal requirements and operate in accordance with the
ISS Group Policies.
ISS considers a two-tier system of governing bodies to be the best management structure
for each company in the ISS Group. Where it is feasible under local law a two-tier system
of governing bodies shall be put in place with a board of directors (or similar body) having
supervisory and oversight responsibilities of a board of management (or similar body) with
responsibility for day-to-day matters.
The board of management, which shall be registered with the relevant local Companies
House/Business Authority, shall be composed of members of the Country Management, and
as a rule the Country Manager and the CFO shall be permanent members of the Subsidiary
Board of Directors.
Local laws and practices may prevent a two-tier system and require the use of a one-tier
system with one management body. In these situations, it can be decided to apply a different
management structure. Such deviation shall be approved by Regional Management in
consultation with Group Legal.
Board of Directors:
Regional CEO (chairman)
Regional CFO
Other regional or Group representative.
Management:
Country Manager and Country CFO
As a rule, the Regional CEO or the Regional CFO should be appointed as chairman
of the Board of Directors of the Top Holding Company. Where feasible, the
Chairman shall have a casting vote in case of split vote in the Board.
Deviation from the composition principles for the Board of Directors can be
necessary or desirable due to for example:
If local laws and practices prevent a two-tier system and require the use of a
one-tier system with one management body, a different management structure
and composition can be applied for the relevant Subsidiary with the approval of
Regional Management.
Clear reporting lines and signature rules need to be put in place in accordance with
section 5 below.
Board of Directors:
Regional CEO
Regional CFO
Other regional or Group representative.
Management:
Country Manager and Country CFO
Management: Management:
Country Manager and Country CFO Country Manager and Country CFO
To safeguard cover under the D&O policy any claims under the D&O Policy must be report-
ed to Group Risk as soon as possible and legal action may only be taken in consultation
with Group Risk. For more guidance on the D&O Policy consult with Group Risk and the ISS
Group Insurance Manual, see section 7.3 below.
(i) Ensure the proper governance of the Subsidiaries by putting in place an appropriate
system of decision-making bodies (executive body, business review meetings per
business line etc.) and ensure that regular meetings are held.
(ii) Facilitate the information flow towards the parent company and the ISS Group.
(iii) Ensure that appropriate documentation is drawn up and kept of all management
and board meetings and their decisions.
3.2.4 Legal structure reporting, Disclosure & Litigation reporting and review of key country
risks and controls
Legal structure reporting is an important part of the HFM reporting requirements as it
ensures transparency and enables ISS to fulfil its reporting requirements towards various
third parties. The reporting via the HFM reporting format shall therefore be kept up-to-
date at all times, which includes among other things legal entities, names of legal entities,
Country Management is responsible for ensuring that material claims and disputes are dis-
closed and reported quarterly in the HFM system in accordance with the Disclosure and
Litigation Reporting guidelines.
Bi-annually Country Management shall review the key country risks and related controls and
report the outcome to Group Risk Management in accordance with the Group Risk Policy.
3.2.5 Merging, dissolving, establishing and changing capital structure of legal entities –
Project Recommendation Paper and CCPC approval process
Change of the legal structure including capital structure in a country is not allowed unless
such change has been approved in accordance with the Project Recommendation procedure,
see subsection 7.2-7.3 below. Country Management is responsible for preparing the relevant
documentation and submitting this to the Regional CFO for approval in accordance the
Project Recommendation procedure.
Corporate Client Partnership Countries (CCPC) are defined as countries where there is no
established ISS country management team and where the operations of ISS are limited
to servicing one or more Corporate Clients/Global Operations contracts, typically via a
managed local subcontractor. To ensure that legal formalities are observed and that ISS
appropriately assesses commercial, legal and operational risks in establishing business in
such countries an approval process must be followed, whereby the EGM signs off before a
CCPC can be approved.
a. Regional level
BRMs between Regional Management and Country Management are generally to
be held on a monthly basis (holiday periods excluded), and conducted according
to the standard agenda and minute template.
b. Country level
Country Management shall ensure that business review meetings are conducted
Country Management shall ensure that the following control requirements are in place and
complied with in the relevant country:
(i) A separate, daily cash balance reporting (SWIFT MT940) from approved external
banks.
(ii) Local engagement of the Group auditor to ensure integrity of the local statutory
accounts and review of the reconciliation to HFM; these audits shall include
information on local finance arrangements (overdrafts, guarantees, factoring,
leasing etc.).
(iii) Filing with Group Finance of statutory accounts for consolidated local financial
statements or significant entities no later than six months following the end of the
financial year.
In addition Country Management shall comply with any additional requirements prescribed
in the ISS Group Accounting Manual and ISS Local Management Guide to Treasury as well
as local laws and regulations.
With respect to the composition of boards, legal reporting, business review meetings and
control requirements, the following minimum compliance requirements apply:
(ii) In the other Subsidiaries, the Country Manager and the Country CFO shall as a
rule be members of the Subsidiary Board of Directors.
(iii) Legal structure reporting to be kept updated in the required reporting format
of HFM, and reported every quarter.
(vi) Use of standard BRM agenda and written minutes for BRMs with Regional
Management and Country Management.
(viii) Annual reports filed with appropriate authorities at due date and no later than
six months after the end of the relevant financial year with Group Controlling.
(ix) Bi-annual review and update of key country risks and related controls as per the
Group Risk Policy.
The employment and service agreements for ISS Managers are not only important contracts
for the individual managers but also for the ISS Group. In recognition of their importance
and to ensure transparency and alignment of terms and conditions such agreements and
changes thereto have to be approved according to the “grandparent principle” as further
described below.
Furthermore, for certain managerial levels the templates and guidelines (set out below in
sub-section 4.2) on the content of employment agreements shall be followed.
Examples
• Service or employment agreements and any changes thereof for managers
reporting to a Country Manager’s direct report must be approved by the Country
Manager.
• Service or employment agreements and any changes thereof for managers reporting
directly to a Country Manager must be approved by Regional Management.
Note that in addition to an approval under the grandparent principle, approval of the hiring
or the dismissal of a head of a function (country or regional) within global functions such
as People & Culture, Global Operations, Commercial, Finance and Legal require approval of
the Head of the Global function, as applicable. As example, the employment or dismissal
of a People & Culture Officer in a country requires the approval of the Regional People &
Culture Officer.
The remuneration and nomination governance structures are set up to ensure adherence
to common standards and practices, empowerment at the right level of the organisation,
speed of decisionmaking, transparency and fairness.
The Board of Directors of ISS A/S has established a Remuneration Committee and a
Nomination Committee. The Remuneration Committee reviews and recommends the
remuneration of the EGM and above-country roles and the overall guidelines for senior
executive incentives and general remuneration policies. The Nomination Committee reviews
and recommends candidates for the Board of Directors of ISS A/S and the EGM as well as
succession plans.
To support this structure the EGM has established a remuneration committee (the EGM
Remuneration Committee), which comprises the Group CEO, Group CFO and Chief People
& Culture Officer (CPCO). The EGM Remuneration Committee reviews and determines the
remuneration for direct reports to EGM members and above-country roles and also reviews
and approves nomination and appointment of direct reports to EGM members and above-
country roles.
Regions and countries are required to set up regional/local remuneration committees that
mirror and cascade the principles of the Board and EGM Remuneration and Nomination
Committees.
4.2.3 Terms of employment or service agreements of Country Managers and Country CFOs
Employment terms and/or nominations of the Country Manager and the Country CFO must
follow the guidelines from Group People & Culture and the agreements must be based on
the templates developed or approved by Group People & Culture, subject to relevant adjust-
ments under local law or market practice.
Particular attention needs to be given to the appropriateness of (i) bonus agreements, (ii)
pension arrangements, (iii) termination provisions, including length of termination notice
and/or severance payments and (iv) non-compete obligations and other restrictive covenants.
Group People & Culture must be consulted on the employment terms to verify cost implications
and to ensure consistency with Group guidelines and best practice implementation. The
final terms of employment and any amendment, adjustment or waiver of employment
terms (including for the avoidance of doubt waiver in full or in part of restrictive covenants)
shall be approved according to the grandparent principle.
No manager can authorise a change of their own bonus agreement including any
advance payments before a written approval has been obtained in accordance with
the grandparent principle.
The Group Long-term Incentive Plan (LTIP or similar) is governed by terms and conditions
approved by the Board of Directors of ISS A/S pursuant to the Remuneration Policy
of ISS A/S. Participation in such plan(s) is subject to the discretionary approval by the
Board of Directors, and no promise to participate in such plan(s) can be made without
prior written authorisation by Group People & Culture.
On an ongoing basis the Country Manager shall review and approve business expenses
for his/her direct reports at a similar frequency.
In addition, the Country Manager shall provide Group People & Culture once every
calendar year with an accurate and updated overview of the employment terms
and full compensation and severance package of other members of the Country
Management.
In line with the matrix structure decisions to employ and dismiss members of Country
Management shall be aligned with Regional Management and the relevant Head of Group
Functions.
4.2.5 Terms of employment or service contracts for other senior managers in the country
It is the responsibility of Country Management to ensure that the employment terms of
other levels of management contain appropriate provisions relevant to the specific function
and level at the relevant ISS Company and that the full employment package (including any
bonus plan and termination costs by contract, law and collective bargaining) is approved in
line with the grandparent principle.
Certain managers are furthermore subject to the ISS rules on insider information and trading
in ISS financial instruments (ISS’s Internal Rules) and shall comply with these at all times.
Insiders will be included on an insider list and as such required to comply with the Internal
Rules of ISS A/S as communicated from time to time by Group Legal as well as relevant laws
applicable to trading in ISS financial instruments.
No manager of ISS shall, during or after their employment or service with the ISS Group, use
for his or her own benefit or for the benefit of any person or entity other than the ISS Group
itself, any confidential or proprietary information developed or received during employment
or service with ISS.
With respect to employment terms and service agreements for ISS Managers, the following
minimum compliance requirements apply:
(ii) Group People & Culture templates in English used for Country Manager and
direct reports’ employment or service agreements.
(iii) An updated copy of the Country Manager’s and the Country CFO’s employment
or services agreements (including all addenda and appendices) must be filed
with Group People & Culture whenever an update or change is made.
(vi) All employment agreements for ISS Managers shall include provisions on (i)
compliance with ISS Code of Conduct and ISS Key Compliance Policies, (ii)
conflict of interest, (iii) confidentiality obligations applicable during and after
employment as well as (iv) appropriate and enforceable restrictive (non-
compete, non-solicitation and/or non-interference, as applicable) covenants.
(vii) Succession plan implemented for all ISS managers and succession planning for
Country Management and Country Senior Managers reported in Performance
Page or such other tool designated by Group People & Culture.
Efficient and appropriate signature rules and approval procedures covering transactions at
Group, Regional and Country level mitigate risks and safeguard the interests of ISS and its
managers. Signature rules and approval procedures are key drivers of accountability and
provide an efficient risk management tool.
Country Management must therefore ensure that all material agreements and commitments
entered into on behalf of Subsidiaries are signed by two members of Country Management.
Further, Country Management must ensure that the double signature rule is applied in
a sensible way to all levels of activity in each Subsidiary with appropriate authority levels
embedded in the internal approval matrix. A risk-based approach may be applied in the
implementation.
Approval matrices will only add value if they are supported by a solid review and approval
process. Review and approval should always be carried out before execution of the contract
or transaction.
A copy of the country delegation and approval matrix shall be filed with Group Internal
Audit. The delegation and approval matrix shall be reviewed once every calendar year.
The approval thresholds agreed with Regional Management can be included in the country
approval matrix described in subsection 5.2.2 above.
A copy of the delegation and approval matrix agreed with Regional Management shall be
filed with Group Internal Audit.
The delegation and approval matrix shall be reviewed once every calendar year.
With respect to approval matrices, double signature and approval procedures, the following
minimum compliance requirements apply:
(i) A country delegation and approval matrix shall be in place covering all country
operations and reflecting the double signatory rule. Such delegation and approval
matrix shall include, as a minimum, thresholds for decisions or transactions
relating to (i) expenditure, procurement contracts including subcontractors,
investments, treasury & finance, litigation, insurance, (ii) specific contracts
such as lease agreements, sponsoring, agreements with consultants or agents
and (iii) with respect to customer contracts: revenue and contract contribution
thresholds, as well as key legal and commercial risks, see section 6 below.
(ii) A regional delegation and approval matrix shall be in place covering all applica-
ble thresholds for certain significant contracts or transactions that require ap-
proval from Regional Management. The regional approval thresholds can be
included in the overall country approval matrix if deemed preferable.
(iii) Copies of the delegation and approval matrix/matrices and the established
approval thresholds shall be filed with Group Internal Audit.
(iv) The delegation and approval matrix/matrices shall be reviewed once every
calendar year by Country Management and Regional Management.
6.1 Policy
Building a proper governance structure around the way ISS enters into contracts with its
customers does not only depend on having the right signatory rules and delegation &
approval matrix in place (see section 5 above). It also depends on how good we are at
assessing the risks contained in these contracts. It is important to note that a customer
contract approval process is not a matter of avoiding risk, but rather about identifying and
understanding the risks that we face in order for us to take appropriate mitigating actions
and provide decision makers with the relevant information to make informed decisions.
Ultimately, our goal is to support our customers in fulfilling their purpose and we do that
neither by blindly accepting risk nor by rejecting risk by default.
Specific approval and risk assessment tools and processes (CRAM@ISS and NPF Training
Programme and training materials) based on the main identified risks in ISS customer
contracts have been developed by ISS Group and made available for use in the countries.
For certain types of customer contracts (see below), the use of CRAM@ISS is mandatory.
Country Management shall ensure that a review and approval process with appropriate risk
assessment and bid committee sign-off procedure is established.
(i) Country specific or Cross-border contracts with an annual contract value above
DKK 75 million (€ 10 million) or with a value above DKK 300 million (€ 40 million)
over the term of the contract.
(ii) Contracts above DKK 40 million (€ 5 million) in annual revenue with no liability cap
and all Aviation contracts2 with no liability cap.
(iii) Private Finance Initiative (PFI)/Public Private Partnership (PPP) contracts (irrespective
of size).
For details on the use of the mandatory LCC including the use of CRAM@ISS please refer to
the link set out below under 6.4 Tools Available.
Note that the LCC, when applicable, takes precedence over any approval thresholds/matrices
applicable within the individual regions and countries. Regional Management may agree
with their respective countries that additional customer contracts (for example Regional and
Cross-border contracts – see subsection 6.2.6 below) below the minimum thresholds shall
also be subject to the LCC.
Also note that the LCC requires additional review and sign-off processes to be observed in
respect of (i) EGM approval for contracts above DKK 250 million (€ 33.5 million) in annual
revenue or DKK 1 billion (€ 134 million) over the term of the contract, and (ii) approval by
the Transaction Committee of the ISS A/S Board of Directors for contracts with an
annual revenue above DKK 750 million (€ 100 million).
(i) Lead country or lead region (typically the country or region where the main share
of the revenue and/or profit lies).
(ii) Bid/no bid process including Regional Management approval from all inscope
regions and decision on allocation of necessary resources and cost.
(iv) Negotiation mandate including mandate to agree price, rebates, penalties, savings
and risks identified via CRAM@ISS on behalf of each of the involved countries/
regions.
Note that larger regional and cross-border contracts (see 6.2.3 above) may be subject to the
LCC, which takes precedence.
The document retention policy shall ensure compliance with local law in respect of
the duration of document storage (minimum three years after contract termination is
recommended) and appropriate access rights in view of confidentiality and protection of
customer information and personal data.
As customer contracts develop and change over the term of the contract (as a result of
agreed variations, extended or reduced scope etc.) it is important to ensure that changes
are approved in accordance with the approval authority for such changes and properly
documented in writing. Country Management shall implement a contract change
management policy and procedure to ensure that changes are approved at the right level
and properly documented in writing.
(i) Standard contracts approved by Country Management are in place for the
various customer segments (Key Account, Specialised Services and Direct
(route-based customers) as agreed with Regional Management.
(ii) Standard contracts include the fundamental legal and commercial risks as
described in the NPF in a manner appropriate in the country and based on the
legal preferred position and confirmed by internal and/or external legal counsel.
It is recommended that positions are reviewed and updated every two years.
(iii) Standard contracts are easily accessible to relevant employees (e.g. on intranet)
and communication to and training of relevant employees regarding standard
contracts and legal positions, including new versions and updates, are made as
and when appropriate.
(v) Country Management shall ensure that a review and approval process with
appropriate risk assessment and bid committee sign-off procedure is estab-
lished.
(vi) Countries with annual revenue above DKK 1 billion must use CRAM@ISS for
contract review and risk assessment.
(vii) As a minimum, all customer contracts with an annual revenue higher than DKK
75 million (€ 10 million) must follow the LCC approval process including the use
of CRAM@ISS.
(viii) Contracts above DKK 40 million (€ 5 million) in annual revenue with no liability
cap and all Aviation contracts with no liability cap must be reported to Group
Risk, reviewed using CRAM@ISS and approved by Regional Management and
Group Risk.
(ix) Document retention policy and procedures are adopted and implemented.
(x) Contract change management policy and procedures are adopted and
implemented.
Certain transactions or contracts contain significant risks or may have an impact on the
obligations or financial position of the ISS Group as a whole. For those matters, specific
guidelines and approval requirements apply as set out below.
To the extent that these matters require board or shareholder approval under local law,
Country Management shall ensure that appropriate documentation is prepared, executed
and kept at a central location. All documents regarding transactions involving shares held
by ISS Global A/S or another Danish parent company (e.g. share transfer agreements, copies
of shareholders’ registers, etc.) are to be filed with Group Legal.
The following events and transactions require that specific polices and guidelines must be
followed and/or specific approvals must be obtained from ISS HQ:
Group Accounting Manual and Policy • Group Finance approval for all changes in
application of Group accounting policies
or change of auditors.
Claims and disputes - litigation reporting • Quarterly reporting via HFM of all claims
and disputes (i) with a value above
DKK 2 million per claim, (ii) with a
significant impact on the ISS business in a
jurisdiction, regardless of monetary value
or (iii) related to non-compliance with
business integrity matters such as anti-
trust rules, bribery or fraud, regardless of
their monetary value.
Large Customer Contracts Approval Policy • Specific approval process for certain
and Procedures customer contracts exceeding the
thresholds set out in the Policy (see
section 6.2.3 above).
The sound corporate governance principles of this Policy are valuable contributors to
operating our business in a prudent and trustworthy manner. However, they cannot stand
alone. Monitoring and auditing compliance with this Policy are important and necessary to
document accountability and ensure progress of implementation.
Country Management shall perform an annual maturity level self-assessment of this Policy
using the GIA Control Self-Assessment Form. The results shall be discussed annually with
Regional Management and goals shall be set for improvements of the maturity level.
With respect to monitoring and audit, the following minimum compliance requirements
apply:
(i) Annual control self-assessment of this Policy using GIA Control Self-Assessment.
(ii) Review of implementation of this Policy and goal setting for next year’s maturity
level (as determined by GIA Control Self-Assessment) to be discussed and
agreed with Regional Management annually.