This Policy on handling Confidential Information (hereinafter – Policy) was developed for the purposes of regulating main principles of work with Confidential Information defined in ACRA and of specifying ACRA employees’ responsibility for protection of its safety.
ACRA ensures safety of Confidential Information including information received from a Rated Entity, in the process of ACRA’s activity, as well as personal data, in accordance with requirements of the legislation of the Russian Federation and regulations of the Bank of Russia.
In order to ensure safety of Confidential Information ACRA uses organizational and technical measures.
The present Policy was developed in accordance with requirements of clause 13 of Article 9 of the Federal Law No. 222-FZ, dated July 13, 2015, “On Activity of Credit Rating Agencies in the Russian Federation, on Amending Article 76.1 of the Federal Law ‘On the Central Bank of the Russian Federation (Bank of Russia)’ and Recognizing Null and Void Certain Provisions of Legislative Acts of the Russian Federation”.
The present Policy shall be posted on ACRA’s website www.acra-ratings.ru after it is approved by the Board of Directors.
ACRA – Analytical Credit Rating Agency (Joint-Stock Company);
Analytical Unit – a set of ACRA’s Analytical Groups;
Analytical Group – an ACRA’s business unit performing such functions as analysis of creditworthiness of certain types of rated entities in accordance with the adopted Methodology as well as preparation and implementation of Rating Actions;
Compliance Director – an ACRA’s employee performing the functions of a comptroller (head of the Compliance and Internal Control Service);
Confidential Information – any information that is not generally available, including: (1) non-public information submitted by counterparties for Rating Actions in accordance with the signed agreements; (2) Material Non-public Information, obtained from any source; (3) details and plans for specific Rating Actions; (4) unpublished press releases regarding rating actions, unpublished reports on research and forecasts; (5) non-public information related to the work process of the Rating Committee; (6) details of agreements with counterparties for rating and other services; (7) internal non-public financial information; (8) a development strategy, description of internal business processes and other know-how; (9) insider information according to the list specified by the regulation of the Bank of Russia; (10) personal data of ACRA’s employees and employees of corporate counterparties;
Conflict of Interests – a contradiction between ACRA’s proprietary and other interests and (or) those of its employees, and (or) Rated Entities/issuers, which may entail negative consequences for independence and/or objectivity of ACRA and (or) its employees;
Non-public information – information is considered non-public until it is spread in any way and by any means, providing access for the general public to this information;
Rating Analyst – an employee of ACRA’s Analytical Unit performing analytical functions required for Rating Actions;
Rating Actions – any of the listed events performed with regard to a Credit Rating of a Rated Entity: assignment, affirmation, review, approval and withdrawal, as well as assignment or revision of a Credit Rating forecast;
Rated Entity – a legal or a public-law entity whose ability to meet its assumed financial obligations (creditworthiness, financial accountability and financial sustainability) is explicitly or implicitly evaluated in an ACRA’s Credit Rating as a result of performed Rating Actions in relation to this entity;
Material Information – any information that can affect the value of public Securities, as well as information, which is material for investors when making their investment decisions concerning operations with Securities. The examples of Material Information for various companies are listed below:
3.1. ACRA and its employees must use Confidential Information only for the purpose of providing rating services or performing ACRA’s business activities.
3.2. ACRA’s employees must use Confidential Information received from Rated Entities, issuers, originators, underwriters or organizers, as well as the results of information analysis only for the purposes of formation of rating and other assessments as part of performing Rating Activities and rendering additional services.
3.3. ACRA shall reserve the right to use confidential statistical information of a Rated Entity without specifying the name of the Rated Entity in publications containing consolidated statistics if it is impossible for third parties to single out confidential statistical information from such consolidated statistics.
4.1. When working with Confidential Information, ACRA’s employees are not allowed to:
5.1. When distributing employees’ rights of access to Confidential Information ACRA shall be guided by the following principles: “Know Your Employee” and “Need To Know”.
5.2. “Know Your Employee”: the principle reflecting ACRA’s concern over employees’ attitude toward their obligations and over their potential personal problems, including financial problems, breach of law, etc., which can lead to occurrence of a Conflict of Interests.
5.3. “Need to know”: the principle, limiting access of an ACRA’s employee to Confidential Information and IT-resources processing this information to the minimum level required for performance of his/her employment duties.
5.4. ACRA classifies Confidential Information as well as its employees according to their types and categories and approves internal documents, regulating rules of access of different categories of users to various types of Confidential Information.
5.5. Internal documents regulating Confidential Information access rules stipulate in a mandatory manner creation of a “Chinese wall” separating Confidential Information of the Analytical Unit and Confidential Information of ACRA’s departments responsible for advertising, client acquisition and conclusion of Rating Action agreements as well as corresponding access settings for ACRA’s employees.
6.1. For keeping Confidential Information safe ACRA’s employees are obliged:
When receiving data that an ACRA’s employee has committed (is committing) illegal, unethical actions or those that violate this Policy or when there are reasonable suspicions that such actions have been committed, every ACRA’s employee must report such information to the Compliance Director.
ACRA considers any failure to provide information about another ACRA’s employee committing illegal, unethical actions or actions that violate this Policy or ACRA’s internal documents as complicity in such an action.
ACRA shall undertake all required measures to prevent violation of requirements of this Policy by ACRA’s employees.
Failure to comply with requirements of this Policy can result in disciplinary action against an employee, up to and including termination of employment.
Any deviations from this Policy should be documented in writing and agreed upon by the Compliance Director and the Board of Directors pursuant to the procedure established by ACRA’s internal documents. Any deviations from this Policy resulting in a breach of requirements contained in government regulations of the Russian Federation and requirements of the Bank of Russia are not permitted.
This Policy shall come into force after 7 business days from the moment of its approval by the ACRA’s Board of Directors and shall be valid until approval of an updated or substituting document.
You will receive an email with a link to change your password
Полное использование материалов сайта разрешается только с письменного согласия правообладателя, АКРА (АО). Частичное использование материалов сайта (не более 30% текста статьи) разрешается только при условии указания гиперссылки на непосредственный адрес материала на сайте www.acra-ratings.ru . Гиперссылка должна быть размещена в подзаголовке или в первом абзаце материала. Размер шрифта гиперссылки не должен быть меньше шрифта текста используемого материала.