• Compliance risks (e.g. failure to lodge statutory information in allowed time; legal requirement to keep records; privacy and confidentiality of information).
• Financial risks (e.g. loss of funding, insolvency, fraud, expense blow-out; inaccurate or lack of records, lack of internal checks and balances).
• Governance risks (e.g. ineffective oversight; not having clear policies and procedures, lack of responsiveness to mana whenua).
• Operational risks (e.g. poor service delivery, potential to cause harm to people; loss or corruption of digital information and data; cybersecurity risks, staff or employment issues such as wrongful dismissal or harassment; volunteers’ lack of training or screening).
• Environmental, including event risks (e.g. natural disasters and states of emergencies).
• Physical spaces and equipment (eg fire, flooding, workplace health and safety issues, theft or misuse).
• Brand and reputational risks (e.g. due to worsened stakeholder or community perceptions, from major event failure; criticism of your performance via traditional or social media).
• Strategic risks (e.g. not keeping up to date with environmental scans, poor consideration of Treaty of Waitangi application to the organisation’s purpose; stakeholder behaviour change, increased competition for funding).

This link provides a risk scoring matrix and an example of a risk register:

https://community.net.nz/resources/community-resource-kit/2-7-planning-/

This link is to a Risk Management Toolkit resource developed for arts organisations and includes templates for risk registers:

http://www.creativenz.govt.nz/development-and-resources/risk-management-toolkit

A useful link to manage any potential conflicts of interest from Charities Services

Guide-How-to-use-a-conflict-of-interest-register