Nokia 2013 Annual Report Download - page 115

Download and view the complete annual report

Please find page 115 of the 2013 Nokia annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 146

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146

113
CORPORATE GOVERNANCE STATEMENT
The management conducts a yearly assessment of Nokia’s
internal controls over nancial reporting in accordance with
the Committee of Sponsoring Organizations (COSO) frame-
work and the Control Objectives for Information and related
Technology (CoBiT) of internal controls. For the year , the
assessment was performed based on a top down risk as-
sessment of Nokias nancial statements covering signi cant
accounts, processes and locations, corporate level controls,
control activities and information systems’ general controls.
As part of its assessment the management documented:
The corporate-level controls, which create the “tone from
the top” containing Nokia values and Code of Conduct and
provide discipline and structure to the decision making and
ways of working. Selected items from Nokia’s operational
mode and governance principles are separately document-
ed as corporate level controls.
The control activities, which consist of policies and proce-
dures to ensure the management’s directives are carried
out and the related documentation is stored according to
Nokia’s document retention practices and local statutory
requirements.
The information systems’ general controls to ensure that
su cient information technology general controls, includ-
ing change management, system development, computer
operations as well as access and authorizations, are in place.
The signi cant processes, including six nancial cycles and
underlying IT cycle identi ed by Nokia to address control
activities implementing a top down risk based approach.
These cycles include revenue cycle, delivery cycle, invest-
ment cycle, treasury cycle, human resources cycle, record to
report cycle and IT cycle. Financial cycles have been de-
signed to (i) give a complete end-to-end view to all nancial
processes (ii) identify key control points (iii) identify involved
organizations, (iv) ensure coverage for important accounts
and nancial statement assertions and (v) enable internal
control management within Nokia.
Further, the management also:
assessed the design of controls in place to mitigate the
nancial reporting risks;
tested operating e ectiveness of all key controls;
evaluated all noted de ciencies in internal controls over
nancial reporting as of year-end; and
performed a quality review on assessment documentation
and provided feedback for improvement.
Based on this evaluation, the management has assessed
the e ectiveness of Nokia’s internal control over nancial
reporting, as at December , , and concluded that such
internal control over nancial reporting is e ective.
Nokia also has an Internal Audit function that acts as an
independent appraisal function by examining and evaluating
the adequacy and e ectiveness of Nokia’s system of inter-
nal control. Internal Audit resides within the Chief Financial
O cer’s organization and reports to the Audit Committee of
the Board of Directors. The head of Internal Audit function
has at all times direct access to the Audit Committee, without
involvement of the management.
For more information on Nokia’s risk management, please
see Note  of Nokia’s consolidated nancial statements.