1.1 The Audit & Risk Committee is a committee of the Board of directors of Opticomm Ltd (Company).
1.2 The Board established the Audit & Risk Committee under the Company’s constitution.
1.3 This charter sets out the scope of the Audit & Risk Committee’s responsibilities in relation to the Company and its controlled entities (Group).
1.4 The role of the Audit & Risk Committee is not an executive role.
2.1 assist the Board achieve its objectives in relation to:
(a) the integrity and reliability of the Group’s financial reporting;
(b) the application of accounting principles, policies, controls and procedures;
(c) the adequacy of practices and procedures in respect of achieving legal and regulatory compliance; and
(d) the effectiveness of internal control and risk management systems;
2.2 maintain and improve the quality, credibility and objectivity of the financial reporting process;
2.3 promote a culture of compliance;
2.4 maintain effective communication between the Board and the committee;
2.5 oversee the relationship with the external auditor and assess the auditor’s independence; and
2.6 monitor compliance strategies and the effectiveness of the compliance function.
The Audit & Risk Committee is responsible for:
3.1 assessing the appropriateness and application of the Group’s accounting policies and principles and any changes to them, so that they accord with the applicable financial reporting framework and accounting standards;
3.2 obtaining an independent judgment from the external auditor about:
(a) the acceptability and appropriateness of accounting policies and principles put forward by management; and
(b) the clarity of current or proposed financial disclosure practices as put forward by management;
3.3 assessing any significant estimates or judgments made by management and included in the financial reports, and the basis on which they have been made;
3.4 reviewing compliance with all related party disclosures required (where applicable) by accounting standards and the Corporations Act
3.5 reviewing the half-yearly and annual financial reports, including corporate (ASIC, ASX etc) filings, with management, advisers and the external auditor (as appropriate) to assess (among other things):
(a) the compliance of financial reports with accounting standards and the Corporations Act; and
(b) the nature and impact of any changes in accounting policies and/or accounting standards during the applicable period;
3.6 discussing any draft audit opinion letter with the external auditor before it is finalised;
3.7 reviewing the management letter from the external auditor;
3.8 recommending for adoption by the Board half year and full year financial reports; and
3.9 following up on any matter raised by the Board regarding financial reports, audit opinions and management letters.
The Audit & Risk Committee is responsible for the oversight of risk management and internal compliance and control systems
4.1 overseeing the establishment, implementation and effectiveness of strategic risk management and internal compliance and control systems and assessing the effectiveness of those systems; and
4.2 approving and recommending to the Board for adoption policies and procedures on risk oversight and management to establish an effective system for:
(a) identifying, assessing, monitoring and managing risk; and
(b) disclosing any material change to the risk profile;
4.3 regularly reviewing and updating the risk profile and risk appetite of the Group;
4.4 assessing whether the risk management system takes into account all material risks, including risks arising from:
(a) implementing strategies (strategic risk);
(b) operations or external events (operational risk);
(c) legal and regulatory compliance (legal risk);
(d) changes in community expectation of corporate behaviour (reputation risk);
(e) a counterparty’s financial obligations within a contract (credit risk);
(f) changes in financial and physical market prices (market risk);
(g) being unable to fund operations or convert assets into cash (liquidity risk); and
(h) requirements of loan / finance lease documentation (financing risk)
4.5 assessing if management has controls in place for unusual transactions and any potential transactions that may carry more than an acceptable degree of risk;
4.6 receiving and reviewing reports from the senior compliance manager/risk officer.
4.7 reporting to the Board on the Committee’s qualitative assessment of the risk management process.
4.8 receive reports from management of any actual or suspected fraud, theft or other breach of the law.
4.9 Receive copies of significant correspondence from regulators (ASIC, ATO, ASX) and consider a response.
The Audit & Risk Committee is responsible for:
5.1 assessing and recommending to the Board for approval, the terms of engagement with the external auditor at the beginning of each year;
5.2 regularly reviewing with the external auditor:
(a) the scope of the external audit;
(b) identified risk areas; and
(c) any other agreed procedures;
5.3 monitoring the policies and procedures for appointing or removing an external auditor, including criteria for:
(a) technical and professional competency;
(b) adequacy of resources;
(c) experience, integrity, objectivity and independence; and
(d) lead audit partner rotation every five years
5.4 reviewing and assessing on a regular basis the compliance of the external auditor with criteria referred to in paragraph 5.3;
5.5 recommending to the Board for approval, the appointment or removal of an external auditor;
5.6 recommending to the Board for approval the types of non-audit services that the external auditor may provide without impairing or appearing to impair the external auditor’s independence; pre-approving any non-audit service assignments proposed by management;
5.7 meeting periodically with the external auditor and inviting the auditor to attend Audit & Risk Committee meetings to:
(a) review their plans for carrying out internal control reviews;
(b) consider any comments made in the external auditor’s management letter, particularly, any comments about material weaknesses in internal controls and management’s response to those matters; and
(c) to elicit any other relevant advice;
5.8 resolving any disagreements in respect of the financial reports between the external auditor and management which remain outstanding;
5.9 monitoring and reporting to the Board on management’s response to the external auditor’s findings and recommendations;
5.10 reviewing all representation letters signed by management; and
5.11 receiving and reviewing the reports of the external auditor.
5.12 Recommend to the Board the appointment of an internal auditor if and when one is required.
6 Internal Audit
The Committee will:
6.1 Recommend to the Board the appointment of an internal auditor if and when one is required
6.2 If and when the appointment of an internal auditor is required:
a) Approve the appointment of an internal auditor and the audit fee (if externally contracted)
b) Ensure that no management restrictions are placed upon the internal audit function
c) Review the reporting lines to ensure that the internal audit function is adequately independent from management
d) Ensure that the internal audit function is sufficiently resourced to meet its responsibilities
e) Review the internal audit plan and its execution
f) Consider the major findings of internal audit investigations, the appropriateness of management’s response and the completion of agreed actions
g) Ensure co-ordination between the internal and external auditor
h) Review the performance of the internal auditor
i) Meet at least twice a year with the internal auditor independently of management
The Audit & Risk Committee is responsible for:
7.1 assessing and recommending to the Board for adoption the scope, cover and cost of insurance, including insurance relating to directors and officers liability, company reimbursement, professional indemnity, crime, special accident and trustees liability, cyber security and any other relevant insurance policies or requirements;
7.2 if it considers appropriate, investigating any complaint or allegation made to it;
7.3 review the appropriateness of the Company’s business continuity and disaster recovery plans;
7.4 receive an annual briefing from the Company’s Chief Information Officer (or equivalent) regarding dependence on critical IT systems and steps to ensure system robustness and integrity;
7.5 reviewing and monitoring any related party transaction and recommending its approval by the Board; and
7.6 monitoring that the audit, risk management and compliance policies and procedures are adequately documented and that those documents are reviewed and updated for any legal and regulatory developments.
8.1 The Audit & Risk Committee should ideally comprise:
(a) at least three directors; and
(b) a majority of independent directors.
8.2 The Board will appoint the Audit & Risk Committee chairperson. The chairperson must be an independent director and may not be the chairperson of the board.
8.3 While the Company will aim to have an Audit & Risk Committee of at least the size and composition outlined in paragraphs 8.17.1 and 8.27.2 above, this may not always be practicable given the size of the Board and the circumstances of the Group, including the nature of the Group’s business. Accordingly, the Board has absolute discretion to determine the appropriate size and composition of the Audit & Risk Committee from
time to time.
8.4 The Company Secretary will act as secretary to the Audit & Risk Committee.
8.5 The Audit & Risk Committee must be of sufficient size, independence and technical expertise to effectively discharge its mandate.
8.6 Each member of the Audit & Risk Committee must be able to read and understand financial statements and at least one member must be a qualified accountant or other financial professional with experience of financial and accounting matters.
8.7 Each member of the Audit & Risk Committee should have an understanding of the industry in which the Group operates.
8.8 The Board will decide appointments, rotations and resignations within the Audit & Risk Committee having regard to the Corporations Act and other rules that may apply from time to time.
9.1 The Audit & Risk Committee will meet as often as it considers necessary but not less than four times in each financial year.
9.2 A quorum for an Audit & Risk Committee meeting is two Audit & Risk Committee members.
9.3 Audit & Risk Committee meetings may be held by any technological means allowing its members to participate in discussions even if all of them are not physically present in the same place. A member who is not physically present but participating by technological means is taken to be present.
9.4 The Audit & Risk Committee may pass or approve a resolution without holding a meeting in accordance with the procedures (so far as they are appropriate) in section 248A of the Corporations Act.
9.5 The Audit & Risk Committee may invite non-committee members it regards as appropriate to attend Audit & Risk Committee meetings.
9.6 The Chairperson is required to convene a meeting of the Committee if requested to do so by any member of the Committee, the Board, the CEO or the External Auditor.
9.7 All Directors who are not members of the Committee will have the right to attend meetings of the Committee.
10.1 The Audit & Risk Committee must keep minutes of its meetings.
10.2 Minutes of each Audit & Risk Committee meeting must be included in the papers for the next full Board meeting after each meeting of the Audit & Risk Committee.
10.3 Minutes must be distributed to all Audit & Risk Committee members, after the Audit & Risk Committee chairperson has approved them.
10.4 Minutes, agenda and supporting papers are available to directors upon request to the Audit & Risk Committee secretary, except if there is a conflict of interest.
The Audit & Risk Committee chairperson must report the Audit & Risk Committee’s findings to the Board after each Audit & Risk Committee meeting. The Committee should review its own effectiveness and make any necessary recommendations to the Board to improve its own effectiveness.
12 Access to information and independent advice
12.1 The Audit & Risk Committee may seek any information it considers necessary to fulfil its responsibilities.
12.2 The Audit & Risk Committee has access to:
(a) management to seek explanations and information from management; and
(b) the external auditor to seek explanations and information from them, without management being present.
12.3 The Audit & Risk Committee may seek professional advice from employees of the Group and from appropriate external advisers, at the Company’s cost. The Audit & Risk Committee may meet with these external advisers without management being present.
13.1 The Audit & Risk Committee will review this charter annually or as often as it considers necessary.
13.2 The Board may change this charter from time to time by resolution.
This charter was approved and adopted by the Board on 00 February 2018.