1. Member States shall require IORPs, in a manner that is proportionate to their size and internal organisation, as well as to the size, nature, scale and complexity of their activities, to have in place an effective risk-management function. That function shall be structured in such a way as to facilitate the functioning of a risk-management system for which the IORPs shall adopt strategies, processes and reporting procedures necessary to identify, measure, monitor, manage and report to the administrative, management or supervisory body of the IORP regularly the risks, at an individual and at an aggregated level, to which the IORPs and the pension schemes operated by them are or could be exposed, and their interdependencies.
That risk-management system shall be effective and well-integrated into the organisational structure and in the decisionmaking processes of the IORP.
2. The risk-management system shall cover, in a manner that is proportionate to the size and internal organisation
…