Overview of the Status of Internal Control System

The following is an overview of the status of implementation of the system to ensure the appropriate performance of the business operations.

1. Internal Control System as a Whole

• In order to ensure the effective functioning of the Group’s internal control, the Company has established various basic policies to control the Group, and checks the development and implementation status of these policies in a timely manner by the Board of Directors, while analyzing events occurring both inside and outside of the Group and seeking continually to improve, enhance and strengthen the internal control system.
• In the system, the heads of each business segment are delegated authority as business owners for business strategy proposals, investment decisions and talent deployment, to implement agile decision-making and operational strategy proposals. The Company also introduced a system supervised by Group CEO and Group COO (only by Group CEO after April, 2024) whereby Group Chief Officers are deployed as chief officers responsible for each functional area to exercise functions laterally across the Group including execution of strategies and important issues of the entire Group.
• The Company established the Global Executive Committee (“Global ExCo”) and the Managerial Administrative Committee (“MAC”) to enhance the decision-making function and create a management structure capable of overseeing diverse businesses based on the business owner system while flexibly responding to the changing environment.
• Furthermore, a framework is being developed for promoting the initiatives for providing solutions to medium- to long-term social issues towards materializing SOMPO’s Purpose primarily by the Group Sustainable Management Committee whose members comprise of CSuO (including the officer in charge of sustainability) of each of the Domestic P&C Insurance Business, Overseas Insurance and Reinsurance Business, Domestic Life Insurance Business and Nursing Care & Seniors Business as well as CSO, and is chaired by Group CSuO who serves as the chief executive of the sustainability domain.
• As of April 1, 2024, the business owner was renamed the business CEO, the business owner system was renamed the business classification system, and the Global ExCo and the Managerial Administrative Committee (“MAC”) were reorganized as the Group Executive Committee.

2. System to Control the Group Companies

• The Company carries out management of Group companies in order to enhance the corporate value of the Group as a whole by way of approving important matters such as management plans for the Group companies, receiving reports from each company of the Group including the progress of the plan and occurrence of risk events, and taking effective measures as needed in accordance with the approval and reporting system based on the business owner system.
• The Company strives to ensure appropriate business operations of the Group by verifying the status on the development and implementation of the systems for each of the Group companies that are established based on various basic policies of the Group, and providing guidance to each company of the Group as needed.
• As of April 1, 2024, we will clarify and make more specific the criteria for approval and reporting matters raised by group companies to our Company, and we will establish a system to ensure that important information from Group companies is reported to our Company without omission.
• In addition, on April 1, 2024, we will establish a Financial Planning & Analysis Office to take charge of financial planning and analysis functions, and we will strengthen our ability to confirm and verify the probability and validity of each plan by grasping and analyzing the management situation of each Group company, considering both quantitative as well as qualitative aspects.
• Furthermore, in order to enhance the effectiveness of group governance, we will present a common governance policy to our main domestic companies, and with regard to the Sompo Japan Board of Directors, we will strengthen the segregation from execution and supervision by increasing the number of our officers dispatched to the board, thereby strengthening the supervisory structure. In addition, Sompo Japan has transitioned to a company with a Audit and Supervisory Committee as of April 1, 2024, and has appointed an outside director. This will enhance the fairness of the Board of Directors and strengthen the Board of Directors' supervisory function over the executive department.

3. Compliance System

• The Company sets out policies for promoting the Group’s compliance annually, and makes each company of the Group to be thoroughly aware of such policies. Each company of the Group takes its own initiatives to enhance compliance in a systematic manner based on the established policies. The progress of compliance promotion is checked by the Managerial Administrative Committee ("MAC") to verify the appropriateness of the measures being taken. The Company and each company of the Group have set their sights on the promotion of more effective compliance and work to prevent the materialization of risks, including the formulation of a structure to cope with the risk of extra territorial applications of foreign laws.
• The Company makes the basic action pertaining to the compliance of the Group’s officers and employees thoroughly aware as the Group Compliance Code of Conduct.
• The Company and Group companies endeavor to detect legal violations and other inappropriate events at an early stage by developing structures such as the internal reporting system and internal audit system. We have established internal and external contact points for whistleblowing, and we are working to improve the effectiveness of the whistleblowing system by making employees aware of how to use it and by prohibiting any disadvantageous treatment of whistleblowers.
• Furthermore, the Company will establish an officer in charge of compliance and the Compliance Office as of April 1, 2024, and will develop the necessary systems to ensure that our Group complies with laws and regulations and operates in the best interests of its customers, while also strengthening its monitoring functions for major compliance issues, etc., to identify potential issues within the Group and resolve them, and to further develop a sound internal control system.

4. System Regarding Strategic Risk Management (ERM)

• The Company makes each company of the Group to be thoroughly aware of its management strategies and Group Basic Policy on ERM in order to facilitate progress of ERM and dissemination of its culture throughout the overall Group. Each company of the Group establishes strategic risk management systems suitable for the nature of its operation, corporate scale and characteristic, such as developing rules pursuant to the Group Basic Policy on ERM in order to facilitate progress of ERM and dissemination of its culture throughout the overall Group.
• The Company formulates business plans that are consistent with the Sompo Group Risk Appetite Statement through deliberations by the Global ExCo and allocates its capital to each business unit based on the growth potential and profitability. Each business unit takes risks within the range of allocated capital in an attempt to achieve profit objectives established in the business plan. The Company carries out ERM based on the principle of the PDCA cycle, in which changes in the operating environment and progress in plans are periodically reviewed and the plans and capital allocations are revised as needed.
• The Company comprehensively identifies significant risks surrounding the Group based upon the fundamental of risk assessment, builds and operates risk control processes which performs analysis, evaluation and control. As part of our measures to actively obtain important information from our Group companies, we are reviewing our evaluation methods in order to appropriately identify and assess the risk of reputational damage from our customers and other stakeholders. For especially significant risks, the Group CRO gains insight into and examines such risks comprehensively. Business owners, etc. subsequently develop and implement response measures against risks that require a reinforced system to manage them through a discussion by the Managerial Administrative Committee (MAC), etc. in order to improve the effectiveness of risk control. The Company also appropriately controls “emerging risks” that may materialize or transform in the wake of environmental and other changes, and thus possibly have a significant impact on the Group going forward, by keeping an eye on signs of evolving into serious risks.
• The Company promotes the development of the function to ensure the appropriateness of the matters related to actuary of the entire Group (the Group's actuarial functions) by managing Group companies based on the Actuarial Basic Policy.
• The Company has established the Group ERM Committee as a subordinate organization of the Global ExCo. The Group ERM Committee discusses on a Group-wide basis the important issues concerning the strategic risk management as well as material risks surrounding the Group.

5. Structure for the Execution of Duties

• The Company sets out mid-term management plans and fiscal year plans for the Group, which are shared by each company of the Group. Each company of the Group sets out its own mid-term management plans and fiscal year plans that are consistent with plans made on a Group basis, so as to ensure the Group-wide cohesiveness. In addition, the Group promotes enhancement in its IT governance, which is at the base, to develop and promote various measures that contribute to business operation with high reliability, convenience and efficiency for Group companies.
• Matters that may significantly affect the Group management, such as mid-term management plan and decisions on policies for M&A, are duly deliberated at the Global ExCo and the Managerial Administrative Committee (MAC) in order to enhance the efficiency and effectiveness of resolutions by the Board of Directors.

6. Audit System by the Audit Committee

• In order to ensure the effectiveness of audit by the Audit Committee, the Company establishes an Audit Committee Office that is independent from commands and orders given by executive officers, and appoints exclusive staff.
• The Company formulates rules concerning the reporting to the Audit Committee, who receive reports from officers and employees on primarily the status of their duty execution periodically. In addition, reports are made promptly on matters requested by the Audit Committee. Furthermore, from April 2024 onwards, the Audit Committee will receive reports from the Group CRO and the officer in charge of compliance on a quarterly basis (and whenever necessary) on the overall internal control system, the status of responses to major risks in the Group, the status of the occurrence of misconduct and major incidents at subsidiaries, and the status of implementation of measures to prevent recurrence, etc., in order to improve the effectiveness of audits from an independent perspective from the execution of operations.
• The Company ensures opportunities for the members of the Audit Committee selected by the Audit Committee to express opinions by attending important meetings.
• The Company ensures opportunities for the members of the Audit Committee or the Audit Committee to exchange information with the independent accounting auditor and internal audit sections on the audit results, etc.
• The Company convenes periodic meetings where the members of the Audit Committee meet with representative executive officers to exchange opinions regarding the recognition of the Group’s important issues. The members of the Audit Committee also perform onsite audit, etc. at the Group companies, and exchange information with the representative, etc. and the members of the Audit Committee of the respective companies.