 In this section, I will be describing the various types of human and technology risks that a firm or a business entity faces. So firstly, I will be describing the human risks. So these are the risks that a firm faces because of the human resource or the people who are working with that firm. So there can be a possibility that one of your employees, your key employees gets ill or he or she gets injured. So right now, due to the disease or his injury, your work, which is a very important and important work for you, you have taken a project which is due in one or two days and the person working on it gets ill or he or she gets injured. So in this case, you have to make an assumption that if something like this happens, then we should not stop working because of this person. So you have to account for this risk element. Similarly, there are people who are working in organizations, but they get addicted to certain drugs or something like that. There are things that are forbidden, which influence our performance, destroy it and we cannot perform it properly given tasks. So as a firm, we need to understand that this is another possibility where we have to bear the human risk. So the best way to do this, which is devised in books and practices is that when you interview people and hire them, then they have comprehensive medical tests, their psychology tests. You can imagine how their nature of personality is, they are healthy. They are always preferred in young and healthy, energetic individuals. There is another important aspect which we need to look at, there have been a number of incidents in which financial embassies, frauds and theft happen. So again, this type of a risk can also be there when we are running our business. In that, our employees have made financial losses or lost money. Again, there are ways in which the system of your accounting involves a double signature process. If there are no two signatures, then you need to check cash. Similarly, you must have seen that to prevent financial embezzlement, the double verification of the payables goes to the password. You must have seen that in Pakistan, if you go to take a huge amount of cash, then you have to transfer money in your account. If the amount is more than 100,000 rupees, then the bank manager always calls the person who has written the check. This means that they are verifying it so that there are no financial embezzlement like this. There are a number of incidents where there are financial embezzlement. To work on the risk, banks have made a lot of such ways in which the risk is managed. This type of a situation is already controlled. There are a lot of ways for that. When you pay through your ATM or debit card, then you have to put a password there. You have to put a pin for verification. These are the various ways that have been devised just to cut down the personal, human level. The firms that are exposed to the risk due to humans have to be cut down. These are the important things. This is why people check the individuals very rigorously. A lengthy procedure is passed to ensure that certain good organizations are respected. The purpose behind this is to ensure that we do not burden such problematic individuals who become the bias of our problems or increase our risk exposure. This is an important aspect. Similarly, there could be technological risks. All the risks that happen due to technological devices or technological use are called technological risks. Electricity outage is very common in Pakistan. If electricity goes out, then your stitching unit will not be able to work, your dyeing unit will not be able to work or there is a plant that depends on electricity. There is a manufacturing like this where the machines will not work without electricity. So, power outage will not work. So, what is the alternative for that? When we had an electricity crisis a few years ago, there were many such textile units who survived the severe electricity crisis. They were the ones who applied electricity generators. They depended on their production process. They were not dependent on the electricity of the government. So, they managed to survive. So, what I am trying to say is that it is in the capacity of a firm or any business entity, it is extremely important that you have to assess which risks are possible that you will have to experience as a firm due to technology. So, it is not necessary that all the risk that we have discussed are for the same or for every business. Every business is exposed to a different set of factors. So, what risks are important for that particular business? You have to analyse it and when you properly analyse it, understand it and identify it, then you can manage it in a better way. So, there is a problem in the telephone and communication devices. You might have seen that when there is a crisis, or there are strikes or any such issues, then the technical ways of communication, internet and mobile services, are suspended. Especially for those two days. For example, the crisis is often seen like this. So, in that case, if you have to do some important transactions of a business, or in Pakistan, there are holidays on those days, but for example, in North America or in Europe, or with such countries, there is a business where the holidays of Ashura are not made. And if the mobile service is closed, then how will you work on that particular thing? What do the big companies do to overcome that particular thing? They use their own communication system, which is not dependent on the other communication services. The system does not depend on the other communication services. They keep their communication through that system, so that there is no damage to it. So, for a better risk management, it is extremely important to understand and identify the various types of risks to which your business is exposed to. And until you properly identify it, you cannot do its proper assessment. And if you do not do proper assessment, then you cannot do its management. So, these are the important components of the whole process.