Some significant features of the internal control of systems are:
- The Audit Committee of the Board of Directors, comprising of independent directors and functional since August 1988, regularly reviews the audit plans, significant audit findings, adequacy of internal controls, compliance with accounting standards as well as reasons for changes in accounting policies and practices, if any;
- Documentation of major business processes and testing thereof including financial closing, computer controls and entity level controls, as part of compliance programme towards Sarbanes-Oxley Act, as required by the listing requirements at New York Stock Exchange;
- An ongoing programme, for the reinforcement of the Tata Code of Conduct is prevalent across the organization. The Code covers integrity of financial reporting, ethical conduct, regulatory compliance, conflicts of interest’s review and reporting of concerns.
- State-of-the-art Enterprise Resource Planning, supplier relations management and customer relations management connect the Company’s different locations, dealers and vendors for efficient and seamless information exchange. The Company also maintains a comprehensive information security policy and undertakes continuous upgrades to its IT systems;
- Detailed business plans for each segment, investment strategies, year-on-year reviews, annual financial and operating plans and monthly monitoring are part of the established practices for all operating and service functions;
- A well-established, independent, multi-disciplinary Internal Audit team operates in line with governance best practices and based on its Internal Audit Charter. It reviews and discusses, with the management and reports directly to Audit Committee about compliance with internal controls.
The Board takes responsibility for the overall process of risk management throughout the organization. Through an Enterprise Risk Management programme, the Company’s business units and corporate functions address risks through an institutionalized approach aligned to the Company’s objectives. This is facilitated by internal audit. The Business risk is managed through crossfunctional involvement and communication across businesses. The results of the risk assessment are presented to the senior management. The Risk Management Committee reviews business risk areas covering operational, financial, strategic and regulatory risks.
During Fiscal 2018, the Company conducted an assessment of the effectiveness of the Internal Control over Financial Reporting and has determined that the Company’s Internal Control over Financial Reporting for Tata Motors Limited, its subsidiary companies, its joint operation companies, its associates and joint ventures, which are companies incorporated in India as at March 31, 2018, is effective.
The Company identified certain control weaknesses in its subsidiary Jaguar Land Rover during Fiscal 2018. The management has performed additional procedures and confirmed that there are no material misstatements in the financial statement. However, the Company’s annual report in Form 20-F to be submitted to Securities Exchange Commission, USA is being finalized and hence the final assessment and reporting of Internal Controls over Financial Reporting, for the Company’s subsidiaries incorporated outside India is pending.