Risk Management
The Obayashi Group will improve its corporate value and fulfill its social responsibilities to its stakeholders by accurately grasping and preventing risks associated with corporate activities and minimizing the impact of their occurrence. We have established a risk management system that encompasses the entire group.
Risk Management System
Important decisions are referred to the Board of Directors and Management Meeting for discussion. These bodies determine and evaluate the risks of each agenda item. They discuss whether we have found a response that would be appropriate in case a risk is manifested, and then a decision is made on the item.
Moreover, each department assesses the risks inherent to its business processes. It builds the necessary avoidance and mitigation measures into those processes before performing them. Meanwhile, Internal Control Audit Department, which is Obayashi's internal audit arm, audits each department's risk management efforts.
Information Security
Obayashi established an information security policy in FY2002.3 and has put security measures in place since then, but with advances in digital technology and work style reform, the ways in which people use information systems are changing. Added to that, outside attacks on information systems are becoming more sophisticated. We revised our policy into the Obayashi Group Information Security Policy in March 2021 in response to the growing information security risk. The revision expanded the scope of application to the entire Obayashi Group and brings the policy into conformity with the unified standards of the National center of Incident readiness and Strategy for Cybersecurity (NISC). It adds measures to deal with new information technologies and devices that did not exist when the policy was first established.
Information Security System Chart
Under this unified framework, we conform to Japanese and overseas laws, regulations, standards, and other rules on information security frameworks including computer security incident response teams (CSIRT), training, auditing, and safety management measures. The new policy sets concrete measure standards with which Obayashi Group companies need to comply. We will work to raise the level of information security throughout the Group by implementing these practices.
In addition, we provide trainings on information security to all employees and subcontractor staff twice a year. These trainings are to reaffirm rules related to information security and privacy, and to cultivate a sense of awareness of the users and managers of information assets. We also have a Personal Information Protection Policy (Obayashi Corporation Privacy Policy), established in 2005 as information was becoming a big part of society.
Business Continuity Plan Initiatives
We formulated our business continuity plan (BCP) to anticipate risks from disasters like large earthquakes. Under it, we draft and implement measures to prevent business interruptions and recover quickly in case of occurrence.
For example, in addition to setting a target recovery time for resuming operations, we draft establishment of recovery support bases and emergency communication network, securing emergency communication methods. Cooperation with suppliers is prepared as well. In addition to disaster prevention drills, the effectiveness of BCP is continuously verified through regular safety check drills by all employees.
In preparation for the occurrence of an earthquake disaster, which is judged to have a particularly high risk of occurring for several years, we have set up a disaster task force in accordance with the degree of damage, and we carry out earthquake drills for various situations twice a year by all executives and employees at main offices and all branches.
For customers, we provide consistent services ranging from diagnosis of business continuity management (BCM) achievement to proposals for specific disaster risk reduction measures.
Risk Evaluation
Obayashi's internal audit department conducts a company-wide survey and interviews each year. The department identifies economic, social, and environmental risks and reviews the effectiveness of the risk management process. The contents of that assessment are discussed by the Board of Directors.
As for the financial auditor, we review its structure and quality every year, and select an appropriate company. Obayashi also communicates important information concerning the company to stakeholders in a fair and timely manner on the TDnet system provided by the stock exchange for timely disclosure.
Business Risks
Below business risks are listed on the 119th Securities Report, Section 3 [Business Risks*] (Available only in Japanese). These are information that is judged to have the potential to affect the Group's business performance or corporate evaluation. The forward-looking statements in the text are the judgments of the Obayashi Group as of the end of consolidated fiscal year ending March 31, 2023.
| (1)Legal regulations on business | Amendment, establishment, or change of applicable standards of laws and regulations, such as the Construction Business Act, Building Standards Act, Real Estate Brokerage Act, Antimonopoly Act, and Industrial Safety and Health Act and the expenses associated with complying with such laws and regulations would be reflected in business income and expenses and could impact business results. The Obayashi Group continually monitors trends in the establishment, amendment, and abolition of legal regulations in each business division and the Legal Department, and works to accurately reflect the accompanying costs in income and expenditure forecasts for estimating costs and making decisions on business feasibility. |
|---|---|
| (2)Construction market trends | If an economic recession in Japan and/or overseas significantly shrinks the construction market, this could cause a decline in orders received and impact the performance of the Obayashi Group in construction business, the core business of the Group. To address such risks, the Obayashi Group formulates human resources plans that anticipate medium and long-term market trends, and is also working to further strengthen sales and procurement capabilities, and improve productivity and expand construction capabilities through development of next-generation production systems. The Obayashi Group is also working to diversify earnings sources through expansion of business domains while building a strong financial structure. |
| (3)Construction work problems and serious accidents | If a major defect occurs in any aspect of design, construction, etc., or a serious accident involving a person, structure, etc. occurs, this could result in the expense of a large payment for compensation and affect the performance and corporate value of the Obayashi Group. To address these risks, the Obayashi Group acquired ISO 9001 certification, an international standard for quality management systems, and built a strict quality management system. The Group also established the Safety, Quality & Environment Division and established a comprehensive system for managing safety and quality. The Group also hedges such risks by enrolling in construction insurance, liability insurance, and other types of insurance. |
| (4)Customer/vendor credit risk | If the credit of a customer, subcontractor, or joint construction company becomes unstable and funds cannot be collected or construction is delayed, this could affect the performance of the Obayashi Group. To address such risks, the Obayashi Group conducts thorough credit checks before and during transactions and secures transactions terms for receipt of payments for construction and payment for construction according to the degree of completion in its construction business, which is the core business of the Group. |
| (5)Changes in construction material prices and labor unit prices | A sudden rise in construction material prices, difficulty in procurement, rise in labor costs, or shortage of skilled workers, could cause a decline in profitability due to an increase in construction costs or payment of damages due to delays in the construction period, etc. in the construction business, which is the core business of the Obayashi Group. This could affect Group performance. To address such risks, the Obayashi Group continually ascertains the future construction capacity of the Group based on assessment of excess construction capacity of subcontractors, etc., and strives to maintain the level of orders received in line with this. The Group also works conscientiously to purchase early, ascertain accurate costs, including future predictions, and calculate appropriate cost estimates. The Group also formed the Rin-yu-kai, an organization of suppliers that provide mutual support, in each region and is working to build a safe supply chain, while also working to develop labor-saving technologies, machinery, and other equipment. |
| (6)Price fluctuation of assets | If the market value of real estate for sale, business real estate, investment securities, etc. held by the Group declines significantly, this could result in the recognition of valuation losses or impairment losses and affect the performance and financial base of the Obayashi Group. To address such risks, the Obayashi Group formulates investment plans that balance investments with consideration of the financial base in its medium to long-term business plans. The Group also sets decision-making and screening standards for individual investments and investments are strictly screened in advance by the Investment Committee, etc. After acquisition, the management of the entity acquired, business conditions, and market price of investments are checked regularly. |
| (7)Long-term business risks | If a significant change occurs in the business environment during a PPP project or renewable energy project that has a long project term, or a serious accident occurs during the course of a project, this could result in deterioration in the profitability of the project in question and the posting of losses due to the cost of the response, and could affect the performance and corporate value of the Obayashi Group. To address such risks, the Obayashi Group prepares in advance by formulating medium to long-term investment plans that take the balance with the financial base of the Group into consideration and strictly screens investments, as stated above in "Price fluctuation of assets." The Group also hedges risks through appropriate allocation of risk with business partners and subcontractors, enrolling in insurance, and taking other steps to mitigate risk according to the business scheme. Moreover, the Investment Committee and related divisions also monitor a project as needed after it begins, and endeavor to prevent the expansion of losses by exiting projects, depending on the profit conditions. |
| (8)Risks in overseas business | In Asia, the U.S. and other countries where the Obayashi Group operates its business, a significant change in the business environment, such as political instability due to terrorism or conflict, fluctuation in economic conditions, sudden fluctuations in exchange rates, change in legal system, or other significant change could affect the performance of the Obayashi Group. To address such risks, the Obayashi Group operates its business in countries and regions having relative stable political climates and works to accurately ascertain conditions in the supervised region and respond in a timely manner in the Asia and North America Group branches (located in Singapore and the U.S.). To mitigate currency risk, the Group also receives payment for contracted work in the local currency and pays subcontractors in the local currency and uses the same currency for net sales and costs, in principle. When procuring materials overseas for domestic construction, the Group enters forward exchange contracts as needed to hedge exchange rate risk. |
| (9)Confidential information leaks | If personal information or confidential information is leaked due to external attacks, employee fraud, etc., this could result in a loss of social trust, or compensation for damages, etc., and could affect the performance and corporate value of the Obayashi Group. To address such risks, the Obayashi Group formulated the Rules on Protection of Personal Information and the Information Security Policy and established an information management system. Also, to respond to new risks associated with the increase in opportunities for external access to business systems and taking computers outside the company due to the normalization of telework, and the diversification and sophistication of cyber-attacks, the Group also regularly evaluates risks and continually responds to changes in risk through technical measures and human management through education, training, etc. to manage personal information and confidential information appropriately. |
| (10)Risks associated with large-scale natural disasters and infectious diseases | In the event of a large-scale natural disaster such as an earthquake, tsunami, windstorm, or flood, or an outbreak of a highly contagious infectious disease, the Obayashi Group's business activities and performance may be affected due to damage to ongoing construction or paralysis of the head office or main branch functions.
As a countermeasure against such risks, the Obayashi Group has formulated a Business Continuity Plan (BCP) for each type of risk, continues to provide education and training, and periodically reviews the BCP to prepare for emergencies. In the BCP for large-scale natural disasters, we promptly confirm the safety of employees, etc., and damage to construction sites in the event of a disaster, and secure restoration personnel, response bases, supplies, and distribution routes, to establish a system that enables us not only to restore sites, but also to promptly restore and support reconstruction efforts for our customers' business facilities, infrastructure, and local communities. In the BCP for infectious diseases, the basic policy is to identify and implement measures necessary to ensure the safety of employees and other personnel and business continuity in accordance with the characteristics of infectious diseases, and to reduce the impact on the business by establishing in advance the organizational structure necessary for information gathering and decision making. In addition, the Obayashi Group has secured the financial base necessary for business continuity even in the event of a major natural disaster or an epidemic of infectious diseases that seriously affects its business activities for a certain period of time. |
| (11)Climate Change Risks | If a carbon tax is introduced to transition to a carbon-free society, it may affect the business performance of the Obayashi Group. Furthermore, if the temperature in the summer rises or if natural disasters become more severe as physical risk, it may affect the business activities and business performance of the Obayashi Group. The Obayashi Group proclaimed decarbonization as a target for 2040 to 2050 in the Obayashi Sustainability Vision 2050 that we revised in June 2019 as a measure against those risks. In addition, we set the establishment of an environmentally responsible society (e.g., reduction of CO2 emissions) as ESG materialities and are working to reduce the environmental impact of the Obayashi Group and our entire supply chain. Moreover, we announced our support for the recommendations of the Task Force on Climate-related Financial Disclosures (TCFD) in July 2020. We are identifying and assessing climate change-related risks and opportunities and then conducting scenario analysis. Together with this, we are taking measures based on the analysis results. The natural disaster risks and measures against them are as described in (10) above. |