All banks must describe their risk management objectives and policies for each separate risk area below and provide information on whether or not strategies used have been effective throughout the reporting period. The strategies, processes and internal controls (including internal audit) must be described for each area below along with the structure and organisation of the relevant risk management function, and the scope and nature of risk reporting systems and policies for hedging/mitigating risk and strategies for monitoring the continuing effectiveness of hedges/mitigants. There are also certain specific disclosures for each of these areas in addition to the general qualitative disclosures required by this paragraph.