Home > Sustainability > Our commitment > Risk Management


Risk Management

In Rakuten Group, the "Regulations for Group Risk Management" are stipulated in RGR (Rakuten Group Regulation) in order to respond to the risks which would have a negative impact on the achievement of the business goals. We implement risk management based on this regulation.

Group Risk Management Committee

The Group Risk Management Committee is the organization examining the policies to respond to the risks which may have a serious impact on the Group as a whole. The head of the Committee is the president of Rakuten, Inc.

Risk Categories and Organizational Units in Charge

In Rakuten Group, the risks are classified into 10 categories and a principal organizational unit is in charge of each risk.
The Risk Management System responding to the characteristics of each risk is continuously revised.

Risk Assessment

In order to understand the situation of the risk management of each organization, risks are regularly identified. Those which may have a serious impact on the Rakuten Group as a whole are reported to the Group Risk Management Committee, which discusses the appropriate policies to respond to each risk. The concrete countermeasures are determined by the Risk Management Department or the principal organizational units in charge.
Each organization and domestic/overseas group company will implement the countermeasures. Based on the results of the assessment, the risk management method is regularly improved.

KRI (Key Risk Indicator)

Each principal organizational unit in charge of risk management shall set KRI (Key Risk Indicators) for each risk category. The KRI are regularly collected from each organization and domestic/overseas companies by the Risk Management Department. The Risk Management Department monitors the KRI values from a cross-sectional point of view and reports to the Group Risk Management Committee.

Incident Response

The incident management system is established under the Risk Management Department in order to centralize information on every sort of incident. This system allows to build knowledge in providing proper instructions in response to each incident and in preventing reoccurrence. The Risk Management Department reports serious incidents to the Group Risk Management Committee and responds according to the instructions of the policy concerned.

Page top