Non-financial risks (NFR) are all of the
risks which are not covered by traditional
financial risk management.[1] This negative definition resembles the initial definition of
operational risk, and it depends on the
bank or corporation whether or not they use the term operational risk synchronously with NFR. Since 2019, the new term NFR became popular in the risk management sector[2]
Examples
Non-financial risks include:
Operational risk (Op risk). In case that Op risk is considered a part of NFR (and not as equivalent), Op risk summarizes e.g. those risks which can be quantified by the use of scenario models. Examples are pandemics, floods and other weather events.
Conduct risk means that the behavior of the cooperation's employees leads to losses[3]
Cyber risk and
IT risk are possible losses due to security breaches.
Regulatory risk are possible losses due to changes of the law and regulations.
Reputational Risk is potential loss caused by the damage to a firm's reputation.
All these risk types are closely related. In the case of a data leak (which is a cyber risk incident), the reputation of the company as a whole might be at stake.[4]