1. ESG
  2. Committed to Corporate Government
  3. Internal Control Model

Internal Control Model

We have an internal control model designed to meet the highest standards of quality and regulatory compliance. To achieve this objective, we have implemented a series of tools that are highly effective and reliable. These include:

Policies and procedures we have a clear and detailed set of policies and procedures that ensure consistency in the way we manage our day-to-day operations.

Qualified team We have a highly trained and experienced team in the implementation and maintenance of internal control systems, which ensures effective management of risks and opportunities.

Crime Prevention Model (CPM) We have developed a CPM in which we identify and document the criminal risks that may arise from our activity, as well as the definition and implementation of controls and mechanisms that enable us to prevent or detect illegal conducts.

Mechanisms for personal data protection We have different policies to guarantee the correct treatment of personal data, and these are evaluated periodically.

Internal Control over Financial Reporting (ICFR) We have a ICFR that comprises a set of controls over the financial processes, with the aim of mitigating the risks that may have a significant impact on the financial information reported internally and to third parties.

Internal Non-Financial Report Control System (INFRCS) A Internal Non-Financial Report Control System has been designed to ensure the accuracy of the company’s information and performance, as well as to respond to the different requirements and facilitate the reporting process, in line with the main current and future regulatory frameworks that will come into force in the coming years.

Mechanisms for money laundering prevention We have the main mechanisms in place to comply with the requirements established by the regulations for the prevention of money laundering, including a Prevention Manual, an OCI (Internal Control Body), a representative before SEPBLAC and evaluations of the main customers in formal and economic terms by an external advisor.

All tools are regularly evaluated and audited by an independent external team to ensure their effectiveness and efficiency.

In addition, we have several committees that ensure the achievement of the company’s objectives. These are:

Executive Committee

Composed of the Management Team. It supports the Chief Executive Officer in the operational and performance oversight of the Company.

Compliance Committee

Composed of the Chief Financial Officer, the Senior Corporate Finance Manager and the Senior Compliance & ESG Controller. It ensures that the organization complies with all applicable laws, regulations, policies and standards both internally and externally, guaranteeing the correct functioning of the Crime Prevention Model. It is also responsible for promoting ethical and responsible behavior in all the company’s operations and activities through the dissemination of the Code of Ethics.

ESG Committee

Composed of a multidisciplinary team: an Executive Director and Chief Financial Officer; Chief Operation Officer; Chief Marketing Officer; Chief Development Officer; Environmental Head; Head of Regulatory Compliance; and ESG Head. It oversees Castellana Properties’ commitment to compliance with the ESG Strategic Plan, monitoring the same.

Innovation Committee

Composed of the Chairman of the Board, the Chief Executive Officer, the Chief Innovation Officer, the Chief Investment Officer, and the Chief Marketing Officer of Castellana properties, in addition to the General Director, the Treasury Director, the Head of Customer Analytics and the Marketing and Communications Director of Vukile. It monitors the Company’s innovation projects.

CapEx Committee

Consists of the Chief Executive Officer, Chief Financial Officer, Chief Operating Officer, Chief Development Officer, Asset Managers, Senior Corporate Finance Manager and Financial Controller. It monitors the budget of CapEx projects, detecting deviations and proposing solutions.

Financial Committee

Composed of the Chief Financial Officer, Senior Corporate Finance Manager, Head of Accounting, Finance Controllers, and Senior Compliance & ESG Controller. It ensures the sound economic and financial management of the Company, treasury control, and the analysis and sourcing of financing. It is also responsible for maintaining an adequate compliance culture, developing and maintaining the Internal Control System, and developing and executing the ESG strategy.

Investment Committee

Composed of the CEO, CFO, CIO and Investment Director at Castellana Properties, together with the CEO, Group CFO, Group Head of Treasury and Senior Manager of Investments at Vukile Property Fund Limited, its main objective is to ensure the strategic and efficient management of investments and acquisitions in the retail sector, aligning each transaction with the objectives and needs of Castellana Properties and providing added value to its shareholders.

IT and Security Committee

Composed of the Chief Innovation Officer, Senior Compliance & ESG Controller, Chief Financial Officer and Board Member, Senior Corporate Finance Manager, and Office Manager.
Established in FY25, its main objective is to ensure efficient and strategic management of information technology, aligning with the company's goals and operating model.
Its functions include reviewing the technology strategy, assessing security, privacy, and continuity risks, and driving new technologies that enhance the company's competitiveness.
In addition, it oversees regulatory compliance, defines IT policies and procedures, promotes information security, and monitors key technology projects.