GN Store Nord
ESRS disclosure: ESRS S4 \ DR S4-1 \ Paragraph AR 9
Tags Tree
- Can the company provide a detailed account of the process used to establish targets related to managing material negative impacts, advancing positive impacts, and managing material risks and opportunities, as outlined in Disclosure Requirement S4-5? This should include whether and how the company engaged directly with consumers, end-users, their legitimate representatives, or credible proxies with insight into their situation. Additionally, in accordance with Disclosure Requirement S4-1, the company is required to describe the key information necessary to ensure a faithful representation of the policies concerning consumers and end-users. This description must include explanations of any significant changes to the policies adopted during the reporting year, such as new expectations for business customers or new approaches to due diligence and remedy.
-
Question Id: S4-1_08
GN has implemented several policies, actions, and targets for managing product safety and data privacy related risks. As data privacy and product safety are strictly regulated by international and local laws, targets are mainly determined based on these regulations. Given the compliance-based nature of IROs, GN has not directly engaged with consumers and end-users when setting targets, tracking performance, or when identifying lessons learnt.
Report Date: 4Q2024Relevance: 60%
- Provide a detailed account of the methods employed to track and assess the effectiveness of actions and initiatives aimed at delivering intended outcomes for consumers and end-users, in accordance with Disclosure Requirement S4-4 concerning material impacts on consumers and end-users, as well as the management of related risks and opportunities.
-
Question Id: S4-4_04
Besides compliance with international and local regulations, GN has not set targets related to data privacy. GN’s ambition is to ensure that all employees have the proper knowledge of data privacy and that GN protects all personal data. GN complies with privacy regulations such as GDPR, Health Insurance Portability and Accountability Act USA (HIPAA), Personal Information Protection Law (China) (PIPL), and The Personal Information Protection and Electronic Documents Act (Canada)(PIPEDA). GN continuously reviews internal procedures and follows regulations to protect consumer and end-user data and ensure the effectiveness of policies and actions implemented. In connection with CSRD implementation, the process is formalized from 2024.
Report Date: 4Q2024Relevance: 60%