Risk management and oversight
The purpose of risk management and oversight is to ensure that we run our operations efficiently and securely and comply with the current statutes and operating principles.
Risk management
We actively assess and monitor our risks and risk management efforts and continuously develop our operations. At Kela, the Director General is responsible for risk assessment and prevention. The Internal Audit is responsible for evaluating the effectiveness and quality of the risk management process.
Examples of present-day risks include financial and data protection risks as well as cyber and data security threats. Identifying and assessing them is an integral part of our strategic planning and daily operations. By doing so, we ensure that we respond to the needs of our customers, partners and broader society according to our objectives.
Oversight and control over Kela’s operations
Supervised by the Finnish Parliament, Kela is an independent social security institution with its own administration and budget. With internal control, we ensure that we implement our strategy successfully. The Internal Audit can perform audits targeting any part of Kela's operations. It is a continuous and daily process, particularly in our operations related to benefit provision.
Supervisory bodies
- Parliamentary Trustees
- Auditors appointed by the Trustees
- External auditors
- Kela's Board
- Audit Committee
- Internal Audit
- External Audit Firm