By signing this standard resolution, your organization:

• Joins the Global Risks Forum (GRF) as a participant in a neutral, public-interest environment for risk standardization, benchmarking, analysis, and activation.
• Adopts GRIx as your company-wide standardization engine and clause-governed risk registry—a common schema, codelists, and stable identifiers that turn policies and controls into machine-readable, auditable logic.
• Authorizes specific officers to act for the company in GRF/GRIx matters (negotiating, submitting, classifying, publishing/embargoing materials, making attestations, designating delegates, and handling corrections).
• Commits to information integrity: truthfulness, completeness, prompt correction of errors, and clear labeling of any synthetic/simulated/model-derived content.
• Sets confidentiality and publication controls for every field/file (Public / Internal / Confidential / Restricted), with your preferences respected for analysis vs. public display.
• Grants a limited, non-exclusive license allowing GRF to process, analyze, and display your submissions only for risk-governance purposes and only in line with your confidentiality settings.
• Affirms legal compliance (sanctions, export-controls, anti-corruption, competition, privacy/data protection) and that you have the rights and lawful basis to submit any materials provided.
• Enables portability: you can export your full GRIx registry (JSON/XML with CSV/Geo annexes) if you ever discontinue participation.

Why participate (benefits in practice)

• Comparable, decision-useful insight for boards, supervisors, investors, underwriters, and partners—publish once, use everywhere.
• Faster response & fewer surprises: policies convert into executable clauses and parametric triggers; early-warning indicators route to the right owners.
• Lower reporting friction and stronger assurance readiness through structured evidence, provenance, and control mapping.
• Supply-chain trust: portable, machine-readable proofs you can share with customers and vendors.
• Transparent financing options: disaster-risk-finance instruments (e.g., insurance, reinsurance, parametric covers, guarantees, contingent credit) can be evaluated on standardized evidence.

How GRF uses your submission (from clause to outcome)

Your materials are validated and benchmarked in NXSGRIx (standardization), analyzed and stress-tested in NXS-EOP (AI/ML simulations), monitored in NXS-EWS (early-warning), compiled into anticipatory actions via NXS-AAP (clause-governed runbooks), surfaced to leaders in NXS-DSS (dashboards), and—where relevant—connected to transparent financing and verification in NXS-NSF. All usage honors your field-level confidentiality settings.

A. RECITALS (WHEREAS)

A.1 Public-interest risk governance. The Board recognizes that transparent, comparable, and actionable risk information strengthens prevention, preparedness, response, recovery, and resilience for stakeholders and markets.
A.2 GRF participation. The Global Risks Forum (“GRF”) provides a neutral forum to standardize, benchmark, analyze, and activate risk data—supporting continuous monitoring, anticipatory action, and transparent financing.
A.3 GRIx standardization engine. The Global Risks Index (“GRIx”) provides a common schema, codelists, stable identifiers, and a registry for clause-governed risks, enabling publish-once, use-everywhere machine-readable disclosures across all risk areas and reporting scopes.
A.4 AI-supported monitoring. Responsible AI is used to enhance signal detection, forecasting, scenario analysis, anomaly detection, and decision support with human oversight, model-risk controls, and appropriate safeguards.
A.5 Compliance & assurance. Aligning risk information to recognized governance and control concepts supports regulatory readiness, audit/assurance, and market integrity without duplicative reporting.
A.6 Benefits. Participation is expected to improve comparability, accelerate incident response through parametric triggers and early-warning indicators, strengthen underwriting and capital access, reduce reporting friction, and build resilience at scale.

B. DEFINITIONS

B.1 GRIx Packages:
(i) Risk-Organization file (governance, risk appetite, clause library, control framework, assurance status, contacts);
(ii) Risk-Activity file(s) (hazards, scenarios, interdependencies, early-warning indicators/thresholds, controls/owners, parametric triggers, assets/locations, supply-chain links, risk transactions, DRF instruments, results/KPIs, incidents/near-misses, data/model provenance).
B.2 Clause: A machine-readable policy/obligation containing condition, metric, threshold, window, action, owner, and evidence.
B.3 Confidentiality Classes: Public / Internal / Confidential / Restricted (field-level).

C. RESOLUTIONS (RESOLVED)

C.1 Join GRF. The Company hereby joins GRF and agrees to GRF participation, processing, and publishing terms, including GRIx submission rules and field-level confidentiality controls.

C.2 Adopt GRIx. The Company adopts GRIx as its standardization engine and clause-governed risk registry across relevant risk areas and reporting scopes. All business units shall align to GRIx schemas, identifiers, and codelists.

C.3 Authorized Officers; Authority and Delegation.
(a) The Board designates any of the following officers, acting singly (each, an “Authorized Officer”), to represent the Company in all matters relating to GRF participation and GRIx: the Chief Executive Officer, Chief Risk Officer, General Counsel, Chief Financial Officer, or Corporate Secretary. In the absence of an Authorized Officer, any two executive officers acting jointly may exercise the authority granted herein.
(b) Scope of Authority. Authorized Officers may negotiate, execute, amend, and deliver agreements and acknowledgments; submit, classify, publish, embargo, or withdraw GRIx materials; make certifications and attestations; elect confidentiality and publication settings; consent to data processing and cross-border transfers consistent with Company policy; designate and remove delegates (including a registry steward, data-protection liaison, and operational contacts); issue instructions to GRF regarding verification or correction of submissions; engage assurance providers; and incur ordinary fees and expenses within approved budgets—together with all acts reasonably incidental to the foregoing.
(c) Delegation. An Authorized Officer may delegate any portion of this authority by written instrument filed with the Corporate Secretary, specifying scope and duration. Delegates act under the supervision of the designating Authorized Officer and remain subject to Company policies and law.
(d) Secretary’s Certification. The Corporate Secretary is authorized to certify to GRF the identity and specimen signatures of Authorized Officers and delegates. GRF may rely conclusively on the latest certification until written revocation is delivered and GRF has had reasonable opportunity to act on it.
(e) Limitations. This authority does not transfer ownership of Company intellectual property, alter Board-approved risk-appetite limits, or waive legal privileges, and remains subject to applicable law (including sanctions, export controls, anti-corruption, and competition laws), internal delegations of authority, and budget approvals.
(f) Ratification; Duration. All prior acts consistent with this clause are ratified and confirmed. This authority remains in effect until amended or revoked by further Board action and notice to GRF.

C.4 Integrity & Misinformation Safeguards. The Company warrants that submitted information is true, accurate, complete, and not misleading and will promptly correct material errors or omissions. The Company shall: (i) maintain records and provenance for statements, metrics, models, and data; (ii) clearly label synthetic, simulated, or model-derived content; (iii) cooperate in reasonable verification or clarification requests; and (iv) refrain from deceptive practices or indicator manipulation.

C.5 Confidentiality & Publication Controls. Each field/file shall be classified as Public / Internal / Confidential / Restricted. Public fields may be indexed, analyzed, and shared with attribution to the Company. Non-public fields are restricted to analysis, benchmarking, and program delivery unless otherwise consented or required by law.

C.6 Rights & Licenses; No Transfer of Ownership. The Company grants GRF a non-exclusive, worldwide, royalty-free license to process, analyze, and display submitted materials for risk-governance purposes consistent with confidentiality settings. Company intellectual property remains the property of the Company.

C.7 Privacy & Lawful Processing. The Company confirms a lawful basis and necessary permissions to submit data (including any personal data), will minimize personal data, and acknowledges GRF’s processing consistent with applicable data-protection requirements and GRF policy.

C.8 Compliance Undertakings. Submissions will comply with applicable sanctions, export controls, anti-corruption, competition, and other laws. The Company will not submit materials that would unlawfully defame, infringe, or violate third-party rights.

C.9 Controls, Assurance & Continuous Improvement. The Company will map key metrics and narratives to internal control frameworks with design/operating-effectiveness evidence; identify clause owners and escalation paths; maintain update cadences for metrics, incidents/near-misses, corrective actions, and reproducibility packages for models.

C.10 Data & Model Provenance; Labelling. Submissions will include provenance inventories (datasets, licenses, versions, QA/QC, lineage IDs) and clearly indicate methods, assumptions, and uncertainties. Model cards will document purposes, validation, monitoring, and limitations.

C.11 Scenarios, Early-Warning Indicators & Parametric Triggers. Management shall define base/adverse/severe scenarios with time horizons, assumptions, and quantified impacts; configure early-warning indicators and parametric triggers (metric, threshold, window, action, owner, verification method) to enable anticipatory action.

C.12 Disaster Risk Finance (DRF). Management is authorized to evaluate, procure, or adjust DRF instruments (insurance, reinsurance, parametric cover, contingent credit, guarantees, resilience funds) informed by GRIx outputs.

C.13 Portability & Termination. The Company may export its GRIx registry (JSON/XML with CSV/Geo annexes). Either party may discontinue participation per GRF policy; confidentiality, IP, and lawful-use obligations survive termination.

C.14 No Advice; Neutrality; Limitation. GRF tools, analytics, and publications are for risk governance and do not constitute legal, investment, accounting, or insurance advice. Participation does not imply endorsement. GRF services are provided “as is,” with customary limitations of liability per GRF terms.

C.15 Governing Terms; Conflicts; Amendments. Participation is governed by GRF policies/terms, including GRIx schemas and codelists as updated by version notice. In the event of conflict between this Resolution and mandatory GRF terms accepted by the Company, the latter will prevail to the extent required to maintain participation.

C.16 Authority to Execute; Ratification. Any Authorized Officer is empowered to execute documents, policies, and instruments necessary to give effect to this Resolution. All prior consistent acts are ratified.

C.17 Effective Date. This Resolution is effective upon Board approval and will remain in force until amended or revoked by the Board.