Covers financial performance and stability of a supplier on the basis of profitability, solvency, liquidity and sponsor/key investor type

• Profitability risk is measured on the basis of parameters such as revenue growth, operating margin and return on assets
• Solvency risk is assessed on the basis of parameters such as capital structure, debt leverage and interest coverage ratios
• Liquidity risk is based on acid test (or quick ratio), which is considered a stringent measure of liquidity
• Sponsor risk is based on the type of parent/key investor to assess the extent of financial backing

Covers operational challenges arising from factors such as size and scale, business concentration, competition, management quality, security, product quality, geographic dependencies, supply and demand, and impact of technology

• Size and scale risk is assessed on the basis of revenue and headcount; the underlying assumption is that small businesses have high business risk due to a lack of resources and low influence on their own suppliers, customers, partners, creditors, etc.
• Concentration risk is based on the spread of revenue and geographic footprint, which helps us assess dependency on customers and key geographic markets
• Competition risk is based on an assessment of the nature of competition in the supplier’s industry and its own competitive advantages
• Management risk is based on senior leadership’s tenure and experience
• Security risk is based on information regarding physical and IT security systems/controls, certifications and reported data or security breaches
• Quality risk is evaluated on the basis of quality standards, certifications and programmes, and reported product recalls
• Geographic risk is assessed on the basis of key political, economic, social, technological, legal and environmental indicators (further details below)
• Supply risk is based on the stability of key supply markets and spread of the industry supply chain (local vs. regional vs. global)
• Demand risk is based on the stability of key demand markets
• Technology risk is based on the speed and impact of disruption driven by new innovations and technologies

The geographic risk indicators are explained below:

• Political: Covers people’s participation in electing their government, freedom of expression and association, overall political stability and effectiveness of governance
• Economic: Covers economic stability based on indicators such as per capita income, growth pattern, unemployment, inflation, productivity, public debt, poverty, etc.
• Social: Evaluates level of social welfare in terms of life expectancy, labour skills and knowledge, and standard of living
• Technological: Covers adequacy and availability of economic infrastructure and IT technology adoption
• Legal: Covers adequacy of policies and regulations for private sector development, adherence to laws and quality of enforcement, and controls in place to check corruption and bribery
• Environmental: Evaluates how a country protects its population from environmental health risks, and the suitability and availability of natural resources such as land, water, climate, food, energy and mineral resources

Includes ethical and governance challenges and overall business conduct

• Business ethics risk is based on instances of money laundering or corruption by the company or its senior executives and their political and legal exposure
• Corporate governance risk is based on independence of the board of directors, code of ethics and ESG policy/program, succession plan, internal audit, etc.
• Licenses and approvals risk assesses challenges with relevant trade licenses/permits and checks for sanctions/restrictions in the client’s country
• Social commitment risk is based on the supplier’s engagement with local communities and support to its own suppliers that are either small business enterprises or are majority-owned and operated by ethnic minorities, women and other groups (such as LGBTQ, veterans or the differently abled)

Covers reputational and other risks related to labour health and safety, labour compensation, labour rights, sustainability of operations (or production) and product safety

• Labour health and safety risk is based on measures in place to ensure the health and safety of the workforce
• Labour compensation risk is based on the adequacy of wages vs. industry standards or as mandated by law
• Labour rights risk assesses issues related to child or forced labour, labour union and collective bargaining and gender-based discrimination
• Operations sustainability risk evaluates adequacy of measures for protection of the environment and judicious usage of natural resources
• Product safety risk assesses adequacy of initiatives to ensure safety during transit and usage by customers

Covers internal risk signals based on the proposed indicators below (to be finalised in consultation with the client).

• Delivery: On-time delivery %, change requests completed on time, average lead time, and supplier availability for emergency purchases
• Quality and Service: Product defect rates, system uptime, resolutions vs. issues, NPS or customer satisfaction score, and PO and invoice accuracy
• Security: Renewal or lapse of certifications, number of data leakage and network breaches, and existence of BCP protocols