[t]he level of risk an entity is willing to assume in order to achieve a potential desired result."[1]
”
“
[t]he criteria against which stakeholders evaluate a risk. Different risk tolerances may be defined for each risk, risk category, or combination of risks. Exceeding a risk threshold is a condition that triggers some action.[2]
"Risk tolerance affects all components of the risk management process — having a direct impact on the risk management decisions made by senior leaders/executives throughout the organization and providing important constraints on those decisions."[5]
"Risk tolerance can be influenced by legal or regulatory requirements."[6]