Stater complies with laws and regulations, internal guidelines, codes of conduct and policies, and we manage risks in a controlled and demonstrable manner with our '3 lines of defence' model. With this model, we show that we control the main risks well. This model consists of the following elements:
All activities required for our services, such as setting interest rates or paying construction deposits, document management activities, complaint management and Platform as a Service (PaaS).
These are staff functions, such as Risk Management, Compliance, Information Security and Legal. They are the sparring partner, second opinion and support for the 1st line, such as during checks on the ISAE statement. This shows the extent to which Stater is in control of the activities outsourced to it.
Corporate Audit is independent and a Stater-wide 'extra safety net' in risk management. Corporate Audit reports to the Executive Board and the Supervisory Board.