• Foreword

  Page 3

• Acknowledgements

  Page 4

• Table of Contents

  Page 5

• List of Abbreviations

  Page 9

• Executive Summary

  Page 11

• + Chapter 1. Challenges to Designing Regulatory Policy Frameworks to Manage Risks

  Page 15

  • + Introduction

    Page 16

    • How can a risk approach improve regulation?

      Page 16

    • The opportunity costs of risk regulation

      Page 17

    • + What are the key elements of risk policy framework?

      Page 18

      • Box 1.1. The IRGC risk governance framework

        Page 20

  • + 1.1. Challenges to a coherent risk policy

    Page 20

    • Coping with uncertainty: data, accountability, co-ordination and evaluation

      Page 21

    • The risk governance deficit

      Page 23

  • + 1.2. Steps towards the development of better risk assessment processes

    Page 23

    • Institutional benefits of a risk-based approach

      Page 24

    • The roles of central agencies and regulators

      Page 26

  • + 1.3. Challenges to the co-ordination of risk-based regulation

    Page 27

    • + Risk-based regulation and the role of regulators

      Page 28

      • Box 1.2. What are the organisational structures for effective risk management?

        Page 29

  • + 1.4. Improving the design of risk-based approaches: implications for regulatory policy

    Page 30

    • Box 1.3. Risk-based approaches to regulation

      Page 32

  • Conclusion

    Page 33

  • Notes

    Page 35

  • Bibliography

    Page 35

  • + Annex A.A1. Framing Risk in the Public Sector

    Page 37

    • Box 1.A1.1. Risk and the role of government

      Page 38

    • Box 1.A1.2. Categorising state sector risks

      Page 39

    • Box 1.A1.3. Co-ordinating public and private responses to risk

      Page 40

  • Annex 1.A2. Risk Policy in Practice

    Page 41

• + Chapter 2. Risk Regulatory Concepts and the Law

  Page 45

  • Introduction

    Page 46

  • + 2.1. Risk regulatory concepts and the regulating of public administration

    Page 47

    • The paradoxical role of public administration

      Page 48

    • Risk regulatory concepts and “good” public administration

      Page 48

  • + 2.2. The different areas in which risk regulatory concepts are being used

    Page 50

    • Public sector management reform

      Page 50

    • Risk as the subject matter of regulation

      Page 51

    • Enforcement and criminal justice

      Page 51

    • Risk and the redefinition of the role of government

      Page 52

  • + 2.3. Defining risk regulatory concepts

    Page 52

    • Variations in definitions

      Page 53

    • Risk regulatory concepts as regulatory constructs

      Page 54

    • The emphasis on quantification and methodological rigour

      Page 55

  • + 2.4. Why have risk regulatory concepts been criticised?

    Page 55

    • Risk regulatory concepts are technically inaccurate

      Page 56

    • Risk regulatory concepts distort decision making

      Page 57

    • Risk regulatory concepts are open to abuse

      Page 57

    • Risk regulatory concepts do not effectively regulate administrative power or hold decision makers to account

      Page 58

    • Risk regulatory concepts are normatively objectionable

      Page 59

    • Reflecting on these criticisms

      Page 59

  • + 2.5. Risk regulatory concepts and the role of law: a descriptive account

    Page 60

    • Administrative law and public administration

      Page 60

    • Administrative law and risk regulatory concepts

      Page 61

  • + 2.6. Law is a form of legal culture

    Page 62

    • Risk regulatory concepts and legal cultures

      Page 62

    • Differences and overlaps between jurisdictions

      Page 63

    • Globalisation and the rise of supranational and international legal cultures

      Page 64

    • Numerous legal interpretations

      Page 65

  • + 2.7. Law and the constituting and limiting of public administration

    Page 66

    • Competence

      Page 66

    • Limiting discretion

      Page 67

    • Procedures

      Page 71

  • + 2.8. Accountability mechanisms and the challenging of decisions

    Page 73

    • Setting standards

      Page 74

    • Obtaining of an account

      Page 74

    • Judging of an account

      Page 75

    • Consequences

      Page 76

  • + 2.9. A framework for a critical and contextual approach to risk regulatory concepts

    Page 77

    • Why are risk regulatory concepts being deployed or promoted?

      Page 77

    • What models of good public administration are being promoted by risk regulatory concepts?

      Page 78

    • What disciplines are needed for the operation of risk regulatory concepts?

      Page 79

    • What is the role of law in the operation of risk regulatory concepts?

      Page 80

    • What does experience with risk regulatory concepts tell us?

      Page 80

  • Conclusion

    Page 81

  • Notes

    Page 82

  • Bibliography

    Page 85

• + Chapter 3. Strategic Issues in Risk Regulation and Risk Management

  Page 93

  • + Introduction

    Page 94

    • Box 3.1. An early example: the Saccharin case

      Page 95

  • + 3.1. The implications of regulatory science for risk management

    Page 96

    • Box 3.2. Links between life time response and dose levels

      Page 98

  • + 3.2. Regulatory science and trans-science: scientific analysis versus popular perception

    Page 99

    • Irreducible uncertainty

      Page 99

    • The time frame for decision making

      Page 100

    • How to formulate a coherent approach for risk analysis and management?

      Page 100

  • 3.3. Towards procedural rationality when facing uncertainty

    Page 100

  • 3.4. The core concepts of risk analysis and management: risk, uncertainty, and probability

    Page 102

  • + 3.5. Decision rules when deciding under uncertainty

    Page 104

    • Box 3.3. Concrete examples

      Page 104

  • 3.6. The precautionary approach: an idea in search of a definition

    Page 106

  • + 3.7. The precautionary principle: policy implications

    Page 109

    • Box 3.4. The policy principle through concrete examples

      Page 109

  • + 3.8. The lessons for risk analysis and management

    Page 113

    • The trends towards greater consistency in decision making in the United States

      Page 114

  • 3.9. Institutional implications: avoiding separating risk assessment and risk management

    Page 119

  • + 3.10. Differences in risk perceptions and in regulatory regimes

    Page 121

    • The risk from overestimation of low-probability events: Distorting the public policy agenda and the public policy responses

      Page 122

    • Addressing political tradeoffs

      Page 123

    • Towards a more coherent approach to risk regulation and management: International co-operation, regulatory impact assessment and education and training

      Page 124

  • + Conclusion

    Page 125

    • Supporting evidence

      Page 125

    • Proposals for the future

      Page 126

  • Notes

    Page 126

  • Bibliography

    Page 127

  • Annex 3.A1. Recent Trends in the Theory of Decision Making: Towards Procedural Rationality

    Page 129

• + Chapter 4. Risk Regulation and Governance Institutions

  Page 133

  • Introduction

    Page 134

  • + 4.1. The challenge of risk

    Page 135

    • Background

      Page 136

    • Looking ahead

      Page 137

  • 4.2. Institutions to assess and manage risk

    Page 138

  • + 4.3. Risk regulation through the policy cycle

    Page 140

    • Forecasting – risk assessment

      Page 141

    • Prevention – risk management

      Page 144

    • Oversight – regulatory review

      Page 149

    • Implementation (including enforcement)

      Page 150

    • Coping – Adaptation, remediation, crisis response/disaster relief, compensation

      Page 151

    • Evaluation and updating

      Page 151

  • 4.4. The challenge of interconnectedness

    Page 151

  • Conclusion

    Page 153

  • Notes

    Page 154

  • Bibliography

    Page 156

• + Chapter 5. Management-based Regulation: Implications for Public Policy

  Page 159

  • Introduction

    Page 160

  • + 5.1. Management-based regulation in the regulatory toolkit

    Page 161

    • Four dimensions of regulatory tools

      Page 161

    • + Four types of regulatory commands

      Page 162

      • Table 5.1. Typology of regulatory commands

        Page 163

    • Examples of existing applications of management-based regulation

      Page 163

    • Summary

      Page 165

  • + 5.2. Conditions for the use of management-based regulation

    Page 166

    • Figure 5.1. Conditions for use of means-based, performance-based, and management-based regulation

      Page 168

  • 5.3. Does management-based regulation work – and why?

    Page 170

  • 5.4. Designing effective management-based regulation

    Page 174

  • 5.5. Regulatory impact analysis and management-based regulation

    Page 176

  • 5.6. Implementing management-based regulation: a changing government role?

    Page 179

  • Conclusion

    Page 180

  • Bibliography

    Page 181

• + Chapter 6. Risk-based Regulation: Choices, Practices and Lessons Being Learnt

  Page 185

  • + Introduction

    Page 186

    • Aims and scope of the research

      Page 187

    • Outline of the chapter

      Page 187

  • + 6.1. What is risk-based regulation?

    Page 187

    • The key motivations for adopting risk-based approaches

      Page 188

    • + The main elements of risk-based approaches to regulation

      Page 189

      • Table 6.1. Financial services: comparison of the risk-based frameworks of FSA, APRA and DNB

        Page 190

      • Table 6.2. Environment: comparison of the risk-based frameworks of EA, EPA and IGAOT

        Page 191

      • Table 6.3. Food: comparisons of the risk-based frameworks of the UK Food Standard Agency and the Food Safety Authority of Ireland

        Page 192

      • Table 6.4. Health and safety: the UK Health and Safety Executive’s Field Operations Directorate framework for non-hazardous activities

        Page 192

  • + 6.2. Designing risk-based frameworks

    Page 192

    • Risk tolerance

      Page 193

    • Risk identification

      Page 194

    • Risk assessment

      Page 196

    • What to do about low risk firms – dealing with the “bulge”

      Page 201

  • + 6.3. Risk assessment in practice

    Page 203

    • Collecting and managing data

      Page 203

    • Performing risk assessments

      Page 204

    • Internal governance of the risk-based system

      Page 206

    • What do regulators use their risk-based frameworks for?

      Page 210

    • Performing inspections in risk-based frameworks

      Page 213

    • + Compliance/enforcement policies and risk-based frameworks

      Page 215

      • Table 6.5. The SOARS grid

        Page 216

      • Table 6.6. Dutch Table of 11

        Page 217

  • + 6.4. Evaluation of risk-based frameworks

    Page 217

    • Main challenges of risk-based frameworks

      Page 219

  • Conclusion

    Page 221

  • Bibliography

    Page 223

  • Annex 6.A1. Methodology

    Page 225

  • Annex 6.A2. Questionnaire Used for Semi-structured Interviews

    Page 226

  • Annex 6.A3. Outline of the Different Risk-based Inspection Systems Included in the Research

    Page 228

• + Chapter 7. Why Governments Need Guidelines for Risk Assessment and Management

  Page 237

  • Introduction

    Page 238

  • 7.1. Zero risk is not an option: toward an optimal portfolio of risks

    Page 239

  • 7.2. Making risk assessment formal and explicit

    Page 240

  • 7.3. Consideration of full distribution of outcomes, and of controversies on evidence

    Page 240

  • 7.4. Addressing gaps in knowledge

    Page 242

  • 7.5. Weighing costs and benefits of risk management

    Page 243

  • 7.6. Transparent decisions, based on consultation

    Page 243

  • 7.7. A whole-of-government approach

    Page 244

  • 7.8. Open government builds trust

    Page 244

  • 7.9. Stakeholder participation, especially to cope with innovation

    Page 245

  • 7.10. Improving the capacities of governments for the systematic assessment, management, and communication of risk

    Page 245

  • Conclusion

    Page 246

  • Bibliography

    Page 246

We expect governments to protect citizens from the adverse consequences of hazardous events. At the same time it is not possible or necessarily in the best interest of citizens for all risks to be removed. A risk-based approach to the design and implementation of regulation can help to ensure that regulatory approaches are efficient, effective and account for risk/risk tradeoffs across policy objectives. Risk-based approaches to the design of regulation and compliance strategies can improve the welfare of citizens by providing better protection, more efficient government services and reduced costs for business. Across the OECD there is great potential to improve the operation of risk policy as few governments have taken steps to develop a coherent risk governance policy for managing regulation.
This publication presents recent OECD research and analysis on risk and regulatory policy. The chapters discuss core challenges today. They offer measures for developing, or improving, coherent risk governance policies. Topics include: challenges in designing regulatory policy frameworks to manage risks; different cultural and legal dimensions of risk regulatory concepts across OECD; analytical models and principles for decision making in uncertain situations; key elements of risk regulation and governance institutions; the use of management-based regulation to help firms make risk-related behavioural changes; an analysis of the risk-based frameworks of regulators in five OECD countries (Australia, Ireland, Netherlands, Portugal, United Kingdom) and across four sectors: environment, food safety, financial markets and health and safety; and the elements for designing formal guidelines for risk prioritisation, assessment, management and communication.