Internal control

 

In the rules of procedure for the board of directors, the instructions for the CEO and the instructions for financial reporting, all of which have been adopted by the board of directors, the allocation of the roles and responsibilities have been stated to contribute to an effective management of the company’s risks. The board of directors has also established an audit committee whose tasks mainly include to monitor the effectiveness of the company’s internal control, internal audit and risk management, to be informed about the audit of the annual report and consolidated financial statements, and to review and monitor the auditor’s impartiality and independence.

In addition to the above-mentioned controls, the company has standard operating procedures that govern the control and quality of its drug development (including requirement to its partners participating in drug development). With regards to risk assessments, these are carried out in connection with strategic planning and forecasting work and specific risk sessions are held to identify and quantify as well as evaluate and decide how the identified risks can be managed and, if possible, be eliminated. The presentation of the identified risks shall, as a minimum, be submitted to the board of directors once per year.  Within the board of directors, the Audit Committee is responsible for continuously assessing the company’s risks.

 

The board of directors has also adopted a special set of signatory rules and a financial policy. The company also as a manual containing principles, guidelines and process specifications for accounting and financial reporting. The audit committee within the board of directors ensures that the approved principles for financial reporting and internal control are complied with and that regular contact with the company’s auditor is maintained. The responsibility for maintaining an effective control environment and for the day-to-day work on internal control over financial reporting rests with the CEO with assistance from the CFO. The CEO and CFO reports to the board of directors on a regular basis in accordance with the instruction to the CEO and the terms of reference for financial reporting. The board of directors also receives reports from the company’s auditor. Based on Ascelia’s current size and operations, the board of directors has decided not to set up a separate internal audit function.

 

The risk assessment work also includes identification of risks that may impact the basic requirements for the financial reporting of the company. The risk assessment results in a number of control targets supporting the basic requirements for financial reporting. These control targets aim to ensure that the company meets its objectives for financial reporting. The financial reporting shall be correct and complete, and meet all applicable laws, rules and recommendations, provide a fair description of the company’s business and support a rational and informed valuation of the business. In addition to these three objectives, internal financial reporting shall support proper business decision-making at all levels.

 

Control activities also comprise a review and follow-up of the company’s governing documents relating to risk management and analysing complex transactions or valuation of assets or liabilities encompassing a significant element of judgement. The board of directors is responsible for internal control and monitoring of the company’s management. This is done primarily by examining the company’s steering documents and identified risk factors.

 

For example by making corporate governance documents such as internal policies, guidelines and instructions regarding the financial reporting available and known for employees. The board of directors has also adopted an information policy that governs Ascelia’s provision of information.

 

The CEO also reports on these issues at each board meeting. The audit committee supports the board of directors by preparing activities that assure the quality of the company’s financial reporting. This is partly achieved by the audit committee checking the financial information and the company’s financial controls.