When an enterprise implements comprehensive risk management, it should collect the internal and external initial information related to enterprise risk and risk management extensively and continuously, including historical data and future forecast. The division of responsibilities for collecting initial information should be implemented in all relevant functional departments and business units. Specifically, the initial information that should be collected is as follows: In terms of strategic risks, enterprises should widely collect cases of out-of-control strategic risks at home and abroad, and at least collect the following important information related to the enterprise: (1) domestic and international macroeconomic policies, economic operation, industry conditions and national industrial policies; (2) Relevant contents of scientific and technological progress and technological innovation; (3) the market demand of the enterprise's products or services; (four) the relationship with the enterprise strategic partners, the possibility of seeking strategic partners in the future; (five) the relevant information of the main customers, suppliers and competitors of the enterprise; (six) compared with the main competitors, the strength and gap of the enterprise; (seven) enterprise development strategy and planning, investment and financing plans, annual business objectives, business strategies, and the relevant basis for the preparation of these strategies, plans, plans and objectives; (eight) the business processes or links that have occurred or are prone to errors in the process of foreign investment and financing. In terms of financial risks, enterprises should widely collect cases of crisis caused by out-of-control financial risks of domestic and foreign enterprises, and at least collect the following important information of the enterprise (including industry average index or advanced indicators, and should also collect as much as possible): (1) Liabilities, contingent liabilities, debt ratio and solvency; (two) cash flow, accounts receivable and their proportion in sales revenue, capital turnover rate; (3) Product inventory and its proportion to sales cost, accounts payable and its proportion to purchase amount; (4) Manufacturing expenses and management expenses, financial expenses and operating expenses; (5) profitability; (6) Business processes or links that have occurred or are prone to errors in cost accounting, fund settlement and cash management; (7) Information on industry accounting policies, accounting estimates, differences and adjustments (such as pensions and deferred taxes). ) related to the enterprise. In terms of market risk, enterprises should widely collect cases of domestic and foreign enterprises ignoring market risk and lacking countermeasures, and at least collect the following important information related to the enterprise: (1) the price and supply and demand changes of products or services; (two) the adequacy, stability and price changes of energy, raw materials, accessories and other materials; (3) Credit status of major customers and suppliers; (4) Changes in tax policies and interest rates, exchange rates and stock price indices; (five) potential competitors, competitors and their main products and substitutes. In terms of operational risks, enterprises should at least collect the following information related to their own enterprises and industries: (1) product structure and new product development; (two) new market development and marketing strategies, including product or service pricing and sales channels, marketing environment, etc.; (3) Organizational efficiency, management status, corporate culture, knowledge structure and professional experience of senior and middle managers and professionals in important business processes; (4) Processes and links that have occurred or are prone to errors in derivatives business such as futures; (5) Business processes or links that have occurred or are prone to errors in quality, safety, environmental protection and information security management; (six) the enterprise suffers losses or the business control system fails due to the moral hazard of the internal and external personnel of the enterprise; (seven) natural disasters that cause losses to the enterprise and other pure risks except the above-mentioned related situations; (eight) the ability to supervise, evaluate and continuously improve the operation of existing business processes and information systems; (nine) the status quo and ability of enterprise risk management. In terms of legal risks, enterprises should widely collect cases of domestic and foreign enterprises ignoring legal and regulatory risks and lacking countermeasures, and at least collect the following information related to enterprises: (1) Political and legal environment related to enterprises at home and abroad; (2) New laws, regulations and policies affecting enterprises; (3) Abide by employee ethics; (four) the main agreements and related trade contracts signed by the enterprise; (five) the occurrence of major legal disputes in this enterprise; (6) Intellectual property rights of enterprises and competitors. In addition to collecting initial information according to the above contents, enterprises should also conduct necessary screening, refining, comparison, classification and combination of the collected initial information for risk assessment.