Compliance Division
Compliance Division
Langkah-langkah tersebut antara lain menempatkan Divisi Those initiatives also brought Compliance Division as Compliance sebagai fasilitator untuk memastikan unit kerja
facilitator to ensure working units in the Company to di Perseroan mengetahui adanya peraturan-peraturan baru,
acknowledge, understand as well as have awareness memahaminya, memiliki ‘awareness’, dan menerapkannya.
to implement the new regulations. Last but not least, Yang tidak kalah pentingnya adalah Divisi Compliance
Compliance Division also ensures alignment among existing memastikan adanya keselarasan SOP-SOP yang ada antara
SOPs of working units. Compliance Division also organized unit kerja. Divisi Compliance juga telah mengadakan regular meetings with compliance unit at PT Trimegah Aset pertemuan rutin dengan satuan kerja kepatuhan di PT
Management to ensure overall compliance in the Company as Trimegah Aset Management untuk memastikan kepatuhan
a form of Integrated Governance by Integrated Compliance secara menyeluruh sebagai aktualisasi dari Tata Kelola
Working Unit.
Terintegrasi oleh Satuan Kerja Kepatuhan Terintegrasi. Di tahun mendatang, Divisi Compliance akan tetap terus
In the coming year, Compliance Division will keep improving meningkatkan kinerja dan pencapaian dari tahun-tahun
performance and achievement from previous year. sebelumnya.
MANAGEMENT DISCUSSION
CORPORATE GOVERNANCE
CSR AND FINANCIAL LITERACY
& ANALYSIS
EDUCATION
Sistem Pengendalian Internal
Internal Control System
Perseroan telah memiliki Kebijakan Sistem Pengendalian The Company has owned an Internal Control System Policy, Internal yang merupakan suatu mekanisme pengawasan yang
a controlling mechanism determined by the Management ditetapkan oleh Manajemen secara berkesinambungan. Sistem
in sustainable manner. The Internal Control System covers 5 Pengendalian Internal meliputi 5 komponen utama, yaitu:
main components, which are:
1. Supervision on the control management and environment mendukung pengendalian (Control Environment).
1. Pengawasan terhadap manajemen dan lingkungan yang
(Control Environment).
2. Process of identification, measurement and risk (Risk Assessment).
2. Proses identifikasi, pengukuran dan pengelolaan risiko
Assessment (Risk Assessment).
3. Control activities and the separation of role and jawab (Control Activities).
3. Aktivitas kontrol dan pemisahan tugas serta tanggung
responsibility (Control Activities).
4. Reliability of effective information and communication (Information and Communication).
4. Keandalan sistem informasi dan komunikasi yang efektif
system (Information and Communication).
5. Monitoring and weakness improvement (Monitoring). (Monitoring).
5. Pemantauan dan perbaikan terhadap kelemahan
Pelaksanaan Pengendalian Internal melibatkan peran aktif The implementation of the Internal Control involves active seluruh pihak seperti Dewan Komisaris, Direksi, Komite
participation of all parties such as the Board of Commissioners, Audit, Divisi Audit Internal, Divisi Risk Management, Divisi
the Board of Directors, the Audit Committee, Internal Audit Compliance, Divisi Operations, kepala divisi unit bisnis, serta
Division, Risk Management Division, Compliance Division, seluruh pegawai Perseroan, baik Kantor Pusat maupun di
Operations Division, heads of business units, and all of the kantor-kantor cabang.
employees both in the Head Office and branch offices.
Pengendalian Internal dilakukan antara lain terhadap The Internal Control is implemented on, among others: Pengendalian Operasional, seperti:
Operational Control, such as:
a. Daily operational processes are supported by policies, kebijakan, prosedur, ketentuan limit transaksi, wewenang
a. Proses operasional sehari-hari telah didukung dengan
procedures, transaction limit provisions, approval persetujuan, otorisasi, verifikasi, rekonsiliasi, four-eye
authorities, authorization, verification, reconciliation, four- principle, serta pemisahan tugas dan tanggung jawab.
eye principle, and separation on roles and responsibilities.
b. Risk and Control Self-Assessment (RCSA) has also been diterapkan oleh Perseroan sebagai perangkat risiko
b. Risk and Control Self-Assessment (RCSA) juga telah
implemented by the Company as tools of operational operasional untuk mengidentifikasi lebih dini kelemahan
risk for early identification of weaknesses in the pelaksanaan proses operasional pada suatu unit kerja.
implementation of operational process within a working Rencana perbaikan juga dibuat agar potensi kerugian dapat
unit. Improvement plan has also been drafted to mitigate dihindarkan. RCSA ini telah diimplementasikan di kantor
potential loss. The RCSA has also been implemented cabang dan unit–unit kerja, dan hasilnya dilaporkan kepada
at branch offices and working units, and the results are Divisi Manajemen Risiko secara reguler.
reported to the Risk Management Division on regular basis.
c. The Company also implements Key Risk Indicator (KRI) as pendekatan identifikasi kelemahan berdasarkan analisa
c. Perseroan juga menerapkan Key Risk Indicator (KRI) sebagai
an approach to identify weaknesses based on quantitative kuantitatif atas indikator/parameter yang mempengaruhi
analysis on indicator/parameter which affects the eksposur risiko Perseroan. Hasil pencatatan KRI dilaporkan
Company’s risk exposure. The result of KRI recording is kepada Divisi Manajemen Risiko secara reguler.
reported to the Risk management Division on regular basis.
d. Routine review and updates on the policies and prosedur secara rutin untuk memastikan kecukupan
d. Pengkajian dan pengkinian terhadap kebijakan dan
procedures to ensure that the adequacy of control aktivitas pengendalian telah sesuai dengan kondisi
activities is in line with Company’s internal and external lingkungan internal dan eksternal yang dihadapi Perseroan.
environment faced by the Company.
INTRODUCTION
REPORT FROM THE
Sistem Pengendalian Internal
Internal Control System
e. To ensure that the operational activities and Company’s Perseroan dapat tetap berjalan dalam kondisi krisis
e. Untuk memastikan kegiatan operasional dan bisnis
business keep running in crisis situation, caused by both akibat faktor internal maupun eksternal, Perseroan telah
internal and external factors, the Company has prepared menyiapkan Prosedur Aktivasi Business Continuity Plan
a Business Continuity Plan Activation Procedure which is (BCP) yang secara rutin diperbaharui dan diujicoba secara
updated and tested consistently on regular basis. konsisten.
f. The routine reports per semester on the Company’s dan Dewan Komisaris terhadap kinerja Perseroan serta
f. Laporan rutin per semester yang diberikan kepada Direksi
performance as well as issues and risks faced by the permasalahan dan risiko yang dihadapi Perseroan beserta
Company, along with the resolution, are submitted to the dengan penanganannya.
Board of Directors and the Board of Commissioners. Pengendalian Kepatuhan terhadap Ketentuan Peraturan dan
Control of Compliance with Regulations and Legislations, Perundangan-Undangan, seperti:
such as:
a. The commitment of the Company’s management and mentaati ketentuan yang dikeluarkan oleh Regulator employees to comply with the regulations which are dalam menjalankan kegiatan bisnis dan operasional
a. Komitmen Manajemen beserta karyawan Perseroan untuk
issued by the Regulator while running the business activities Perseroan, sebagaimana tertuang dalam Pedoman dan
and Company’s operational, as set out in guidelines and Tata Tertib Kerja Direksi maupun Kode Etik Perusahaan.
good governance of the Board of Directors and Company’s
b. Perseroan memiliki Divisi Compliance yang tidak terlibat
code of conduct.
dengan kegiatan bisnis ataupun operasional Perseroan.
b. The Company has Compliance Division which is not Divisi ini mendukung kepatuhan Perseroan terhadap
involved in any business or operational activities of ketentuan yang berlaku.
the Company. This division supports the Company’s
c. Pembuatan gap analysis pada unit-unit kerja yang compliance to prevailing regulations. dilakukan oleh Divisi Compliance, untuk memberikan
c. Proposing gap analysis in working unit carried out by gambaran kepada Manajemen terkait rencana tindak lanjut
Compliance Division, to give a picture to the Management (action plan) untuk memenuhi ketentuan yang berlaku.
regarding follow up (action plan) to meet the prevailing
d. Pengawasan yang dilakukan antara lain oleh unit Audit
regulation.
Internal.
d. Monitoring performed by Internal Audit unit.
Pengendalian Keuangan, seperti:
Financial Control, such as:
a. The Company’s strategy that is stated in the Company’s Rencana Bisnis Perseroan, untuk pencapaian jangka pendek
a. Telah dimilikinya strategi Perseroan yang dituangkan dalam
Business Plan, for both short-term and long term maupun jangka panjang.
achievement.
b. The business plan is prepared by considering the kemampuan modal yang dimiliki Perseroan, tidak hanya
b. Perencanaan bisnis dibuat dengan memperhitungkan
Company’s capital capability, not only to support business untuk mendukung pertumbuhan bisnis Perseroan, namun
growth but also to strengthen effective control, including: juga memperkuat kontrol yang efektif, seperti:
1) Separation of roles and responsibilities supported by
1) Dibuatnya pemisahan tugas dan tanggung jawab yang reliable system and human resources. didukung dengan sistem dan sumber daya manusia
2) Risk Management Work Unit, Compliance Division and yang handal.
Internal Audit which are independent of any business
2) Satuan Kerja Manajemen Risiko, Divisi Compliance
and operational activities.
maupun Audit Internal yang independen terhadap
3) The Company’s information and communication aktivitas bisnis maupun operasional.
systems that take information security principles
3) Sistem informasi dan saluran komunikasi Perseroan into consideration, which are protected by reliable yang memperhatikan prinsip keamanan informasi, encryption system protection.
yang dilindungi dengan pengamanan sistem enkripsi yang handal.
MANAGEMENT DISCUSSION
CORPORATE GOVERNANCE
CSR AND FINANCIAL LITERACY
& ANALYSIS
EDUCATION
Sistem Pengendalian Internal
Internal Control System
Kesesuaian dengan Ketentuan Regulator dan Sistem Alignment with COSO International System and Internasional COSO
Regulator Provisions
Dalam merancang Sistem Pengendalian Internal, Perseroan In designing the Internal Control System, the Company menggunakan beberapa referensi seperti ketentuan yang
applies a number of references including regulations issued by dikeluarkan oleh Regulator dan Committee of Sponsoring
the Regulator and Committee of Sponsoring Organizations of Organizations of the Treadway Commission (COSO), dengan
the Treadway Commission (COSO), with the aim to ensure: tujuan untuk:
1. Compliance with the prevailing laws and regulations. yang berlaku.
1. Kepatuhan terhadap peraturan dan perundang-undangan
2. Availability of correct, complete and timely financial
2. Tersedianya informasi keuangan dan manajemen yang
information.
benar, lengkap dan tepat waktu.
3. Efficiency and effectiveness of the Company’s business
3. Efisiensi dan efektivitas dari kegiatan usaha Perseroan.
activities.
4. Improvement of the risk culture effectiveness in the whole secara menyeluruh.
4. Meningkatkan budaya risiko (risk culture) pada organisasi
organization.
Evaluasi Tingkat Efektivitas Sistem Pengendalian Evaluation on the Level of Effectiveness of Internal Internal
Controls
Berdasarkan hasil penilaian Audit Internal selama tahun Based on assessment result of Internal Audit in 2017 as 2017 sebagaimana telah dilaporkan kepada Komite Audit
reported to the Audit Committee and the Board of dan Dewan Komisaris, sistem pengendalian internal dan
Commissioners, the internal control system and risk manajemen risiko Perseroan dinilai secara umum memadai.
management of the Company is assessed to be considered adequate.
INTRODUCTION
REPORT FROM THE
Kebijakan Pelaporan Pelanggaran dan Anti Korupsi
Whistle Blower and Anti-Corruption Policy
Kebijakan Whistle Blower bertujuan untuk mendorong Whistle Blower Policy is aimed to encourage and allow dan memungkinkan Direksi dan karyawan Perseroan agar
the Board of Directors and employees of the Company to meningkatkan kepedulian terhadap penanganan yang tepat
boost concern for the appropriate handling on suspicion of atas dugaan penyimpangan atau pelanggaran yang terjadi,
irregularities or violations, either by individuals or groups in baik oleh perorangan ataupun kelompok di lingkungan
the Company.
Perseroan. Perseroan mewajibkan Direksi dan karyawan agar senantiasa
The Company requires the Board of Directors and employees menerapkan standar bisnis dan etika perseorangan dalam
to always implement business and individual ethics standard setiap pelaksanaan tugas sesuai dengan ketentuan yang
in every performance of tasks in accordance with prevailing berlaku. Karyawan wajib menerapkan kejujuran dan integritas
regulations. Employees are required to implement honesty dalam melaksanakan pekerjaan dan tunduk pada peraturan
and integrity in performing their work and comply with the dan hukum yang berlaku. Apabila karyawan mengetahui
prevailing laws and regulations. If employees are aware of adanya perilaku yang menyimpang, ilegal atau tidak etis,
any deviations, illegal or unethical behavior, they should karyawan harus segera melaporkan hal tersebut sesuai report it immediately in accordance to the policy set by the
dengan kebijakan yang telah ditetapkan oleh Perseroan Company with the principle of reporting handling, which are: dengan prinsip penanganan pelaporan yaitu:
1. Objectivity: handling shall be based on valid facts/ yang valid,
1. Objektivitas: yaitu penanganan berdasarkan fakta/bukti
evidence.
2. Relevance: data submitted shall be consistent with duties tugas dan tanggung jawab.
2. Relevansi: yaitu data yang disampaikan sesuai dengan
and responsibilities.
3. Coordination: including cooperation with the relevant bisnis terkait.
3. Koordinasi: meliputi kerjasama dengan divisi dan/atau unit
division and/or business unit.
4. Effectiveness and efficiency: handling shall be conducted tepat dan hemat tenaga, waktu dan biaya.
4. Efektivitas dan efisiensi: penanganan dilakukan secara
in a proper, timely and cost-saving manner.
5. Accountability: handling and the follow-up shall be dapat dipertanggungjawabkan.
5. Akuntabilitas: yaitu penanganan dan tindak lanjutnya
accountable.
6. Transparency: handling shall be conducted based on a clear mekanisme, prosedur yang jelas dan terbuka.
6. Transparansi: yaitu penanganan dilakukan berdasarkan
and transparent mechanism, procedure.
7. Azas praduga tak bersalah.
7. Presumption of innocence principle.
8. Protection of witnesses and reporting persons. Penyampaian Laporan Pelanggaran
8. Perlindungan terhadap saksi dan pelapor.
Submission of Violation Report
Setiap pelaporan atas pelangaran ini dapat disampaikan Each report may be submitted to the Internal Audit unit kepada unit Internal Audit melalui e-mail ke via e-mail internal.audit@trimegah.com as set forth in the
internal.audit@trimegah.com sebagaimana diatur dalam Company’s Whistle Blower Policy. kebijakan Whistle Blower Perseroan.