Financial risk factors
The Group’s activities are exposed to a variety of financial risks: market risk [foreign exchange risk, interest rate risk and price risk], credit risk
and liquidity risk. The Group’s overall risk management programme focuses on the unpredictability of financial markets and seeks to minimize potential adverse effects on the Group’s financial performance. The Board of Directors provide both written policies for the total risk management and policies for specific areas such as foreign exchange risk, interest rate risk, credit risk, use of derivative financial instruments and non-derivative
financial instruments and the investment of excess liquidity. Risk management is carried out centrally in close co-operation with the subsidiaries. The Group identifies, evaluates and hedges financial risks, using derivative financial instruments for certain risks.

Market risk

Foreign exchange risk
Océ charges its customers for products and services in he customers’ local currency. The largest possible part of the cost is incurred in this local currency. However, since manufacturing and development of new products for an important part still take place in the Euro-zone, a foreign
exchange risk [transaction risk] arises in respect of the flows of goods from the Euro-zone to countries outside the Euro-zone. The relocation of part of the manufacturing activities to Asia has reduced the net level of the foreign exchange risk since these goods are paid for in US dollars.
At Océ, net cash flows in currencies other than the euro are subject to an active foreign exchange management policy, which is carried out in close consultation with the Board of Executive Directors.

Océ applies a policy of managing the 12-months position of mainly the US dollar, the Japanese yen, the Australian dollar and the Pound sterling on a roll-over basis, with hedging being applied up to a maximum of 80% of the net cash flows. The policy pursued provides cover for the transaction risk over the coming 12 months.
The foreign exchange risk on intercompany loans [transaction risk] is hedged for 100%. Currency translation risks are not hedged. This risk is regarded as an inherent part of doing business as a multinational company.

Interest rate risk
Interest rate risk can be divided into fair value interest rate risk and cash flow interest rate risk.
The central objective of the interest policy is to prevent a mismatch between the average duration of the assets and the financing of the Group. Efforts are made to achieve 40% to 80% of the funding in fixed interest rates.
Fair value interest rate risk relates to the risk that the fair value of a financial instrument will fluctuate due to changes in market interest rates.
Cash flow interest rate risk relates to the risk that future cash flows of a financial instrument will fluctuate due to changes in markets interest rates. Océ uses interest rate swaps to change the interest-profile of [fixed and floating] loans according to the risk management policy.

Price risk
Océ has no significant exposure to security price risk because of the small amounts of investments held by Océ, which are classified as available-for-sale financial assets. Océ has no commodity price risk regarding any financial instruments.

Credit risk

Océ has no significant concentrations of credit risk. It has policies in place to ensure that products are sold to customers with an appropriate credit history. Deposits, derivatives and cash transactions are only entered into with financial institutions with high credit rating. The Group has policies in place that limit the maximum amount of credit exposure to any financial
institution. The maximum exposure to credit risk at balance sheet date is € 51.7 million.

Liquidity risk

Prudent liquidity risk management implies maintaining sufficient cash and the availability of funding through an adequate amount of committed credit facilities. Océ aims to maintain flexibility in funding by securing
sufficient committed credit lines.

 

 

During the year under review no material shortcomings were found in the internal structure for risk control. A brief explanatory description is given below of the main elements in this structure:

 

Policy principles and procedures

These form the basis for the internal risk control structure and are drawn up centrally by the Board of Executive Directors of the Océ Group. All group companies must operate in accordance with these policy principles and procedures. They include the following elements:

 

The policy principles provide a high level indication of the objectives of the Océ Group, how these should be achieved and the ethical criteria that should be complied with. The Board of Executive Directors communicates these principles to all employees and ensures that they are adhered to. The Océ policy principles are reviewed at periodic intervals and amended where necessary.

Whistleblowing procedure
In addition to the national legislation that is applicable to each individual group company, the Audit Committee has approved a group procedure that has been implemented world-wide. The aim of the procedure is to ensure that within the whole Océ Group any infringement of legislation and of existing policy, principles or procedures can be reported without the person making such report suffering any adverse consequences in his or her legal position. In the United States of America the procedure will again be brought to the attention of all employees at the beginning of 2008 to make sure that it operates effectively.

Code of ethics for senior financial officers
This code is addressed to all members of the Board of Executive Directors and senior financial officers in the Océ Group and is aimed at emphasizing and promoting ethical and responsible behavior by this group of employees. The code is more detailed than the Océ policy principles and chiefly deals with the financial processes and reporting systems.

Strategic plans and budgeting process
Strategic plans are drawn up for all parts of the Océ organization [operational and non-operational] and are converted into budgets. On a monthly basis the results actually achieved are evaluated in detail by the Strategic Business Units and the Board of Executive Directors and compared to the budgets.

Cash flow management is an important part of this process. In 2007 this was the focus of extra attention and a start was made on a Cash Conversion Cycle project aimed at reducing working capital. As regards working capital the company aims to become one of the best businesses in the industry.

Organization structure and authorization manual

Within the organization the entire complex of tasks, responsibilities and powers is set out in the organization structure. The allocation of responsibilities and powers is laid down in detail in various authorization manuals. Océ ensures that employees are aware of the organization structure and the sections of the authorization manuals that are of relevance to them.

Information Manual [IM]

This contains a detailed description of the guidelines for management reporting and external financial reporting. External financial reporting is based on IFRS guidelines.

 

Letter of Representation [LOR]

All Managing Directors and Controllers of subsidiaries submit a detailed declaration every quarter. This declaration states, among other things, that the financial reporting is reliable and complies with the IM. In addition, several questions about potential risks are being answered specifically. Any observations made in the LORs are reported to and discussed by the Board of Executive Directors and the Audit Committee. The issue of the LOR by the management of the subsidiaries is supported by a detailed risk analysis.

 

Governance / Compliance

Although the termination of registration with the Securities and Exchange Commission in 2007 means that the American Sarbanes- Oxley Act 2002 is no longer applicable to Océ, the structure that existed for that purpose – now called Governance / Compliance – has been left intact. As in previous years, this structure comprises a management assessment of the effective control of the financial reporting process. This management assessment is conducted within Océ by the management of the operating companies and group units designated for such purpose. The results of this assessment are reported to and evaluated by the Board of Executive Directors and the Audit Committee. The internal audit department participates in this evaluation.

 

Disclosure Committee [DC]

The DC consists of the Group Controller [chairman], representatives of operational group companies, the Corporate Supply Centers, the Strategic Business Units and Océ corporate staff departments [Investor Relations, Corporate Strategy, Group Finance & Administration], the Company Secretary & Chief Legal Officer, the Chief Information Officer [CIO], the Corporate Risk Officer and the Group Internal Auditor.
The DC evaluates the findings of the in-depth risk analyses that are conducted by all operating companies. The results of this evaluation are initially reported to and discussed with the CEO and the CFO of Océ N.V. and are subsequently discussed by the Audit Committee.

Internal audits

Within the framework of control mechanisms and assurance processes an audit plan is drawn up by the Group Internal Auditor each year. The
internal audit plan is focused on the most important business processes and risks. The plan is discussed and approved by the Board of Executive Directors and the Audit Committee. The internal audits relate to financial
reporting systems and the existence and proper functioning of operational policy and procedures. The internal control framework is largely  evaluated as part of the activities of the internal auditors.

The internal auditors issue a formal report on the effectiveness of elements of the internal control framework. The findings of the internal auditors are discussed and agreed with the relevant management.
Subsequently the findings are discussed in the Internal Audit Committee and the Audit Committee. Audit Committee [AC] The AC consists of two
members of the Supervisory Board and takes care of the independent monitoring of the process of risk management on the basis of the supervisory role fulfilled by the Supervisory Board. The AC focuses on the quality of internal and external reporting, on the effectiveness of
internal controls with regard to both manual and computerized processes and on the functioning of the external and internal auditors. The AC meets at least four times a year.
The relevant financial officers and the external and internal auditors are generally invited to attend these meetings. The AC holds periodic consultations with the external auditor and with the Group Internal Auditor at which no [other] Océ officers are present.

 

In line with best practice provision II.1.4 of the Dutch Code and bearing in mind the recommendations of the Monitoring Committee Corporate Governance Code, Océ issues a declaration about the effectiveness of the system of internal control of the processes on which the financial
reporting is based.
Océ’s system of internal controls is based on internationally accepted standards for corporate control, including those of COSO.
In 2007 the Board of Executive Directors assessed the effectiveness of the system of internal controls for financial reporting. During the investigation on which this assessment is based, no shortcomings were identified that might possibly have a material impact. On the basis of
the results of the above assessment and the risk analyses that were carried out at Océ within the framework of Governance / Compliance, the Board of Executive Directors is of the opinion – after consulting with the Audit Committee and with the approval of the Supervisory Board –
that the system of internal controls provides a reasonable degree of certainty that the financial reporting contains no inaccuracies of material importance. An inherent element in how people and organizations work together in a dynamic world is that systems of internal control can not
provide an absolute degree [though they can provide a reasonable degree] of certainty as regards the prevention of material inaccuracies in the financial reporting, losses and fraud.

In our view the system of internal controls, focused on the financial reporting, functioned effectively over the past year. There are no indications that the system of internal controls will not function effectively in 2008.

Risk analysis

Below a summary is given of the risk analysis that was carried out in 2007 by the Board of Executive Directors and the Supervisory Board of Océ N.V. The analysis concerns the identification of the main risks, of the
existing control measures which have to minimalize the possible consequences of the risks and the effectiveness of the actions to be taken. In a number of cases the control measures were further tightened during 2007 and actions were initiated to further reduce the possible impact of the risks.