02. PRISA, A GLOBAL GROUP ANNUAL REPORT 2011 d. Risk control related to reliability of financial information The process implemented to manage and control financial and accounting information is based on: An adequate organizational structure that maintains a separation of functions in administrative and accounting procedures, which provides the basis for preparing financial and accounting information, as a means to mitigate risks of manipulation or fraud. Mention should be made of the function of the Group’s Financial Management department, which assigns responsibilities and authority in the different areas involved in generating this type of information. Continual updating of financial information rules and systems. Noteworthy in this respect is the initiative currently being carried out to integrate and homogenize all the information systems by means of a single information system for all the Group’s business units. In previous years the Group’s companies in Spain, the US, Colombia Mexico and radio stations in Argentina have participated in this system and in 2010 the system has been successfully implemented for publishing businesses in Argentina and Chile. The system will integrate all the other companies in the Group over the next few years. A system to review economic and financial information regulated by manuals, instructions and internal rules (manuals for evaluation and accounting policies, instructions concerning procedures for closing accounts, annual calendar of economic and financial information, corporate accounting plan, rules for intragroup operations and consolidation), and compliance with internal control systems through in-house and external audits. The adoption of a single financial information system, outlined previously, and a unified accounting procedure is aimed at facilitating the integration and reporting of financial information and its subsequent analysis and assessment, thus enabling all the companies to share a common financial language, so to speak. e. Risk control related to technological, IT and infrastructural systems The Department for Corporate Security and Safety 30 oversees the overall security of the Group, integrating the different security and safety-related areas – particularly physical and IT – and collaborating on data protection and work safety with the Secretary General and Human Resources Department. This global management system, increasingly regq and IT systems security and the adoption of coordinated measures aimed at reinforcing the protection of privacy, integrity and availability of information and the Group’s systems, as well as the safety of personnel, assets and installations. Activity in this area was significant over 2010 due to the establishment of a new externalized model for Information and Communications Technology. In line with our Corporate Security Policy, the Group has continued to develop the Corporate Security and Safety Management System, established in 2008 in collaboration with an important technology firm and due to continue over the next few years. This system is applied to a number of different areas: general policy, security policy, security organizational structure, personal safety and security, workplace and environment safety, communications and operations management, management of external control centers, development and maintenance of systems, access control, incident management, and continuity and business compliance. This system incorporates information analysis tools and methodologies, as well as norms and guidelines, and is aimed at a convergence of the different security-related issues from the business units. The Group has an ongoing commitment to carrying out security related projects in the area of communications security, incident management, safety and security audits, IT contingency plans, risk assessment and early-warning systems. 2011 will see the implementation of initiatives covering Data Loss Prevention, the so-called “balanced scorecard”, as well as an automated early-warning system. In terms of physical safety, a number of risk analysis studies have been carried out on Group assets and in 2011 a contingency plan will be drawn up in this area. Nearing completion is the centralization of management at company headquarters, including a Control Center that coordinates the safety and security related activities of the group’s different