ISS AS
ESRS disclosure: ESRS S4 \ DR S4-1 \ Paragraph AR 13
Tags Tree
- Can the company provide a detailed account of the process used to establish targets related to managing material negative impacts, advancing positive impacts, and managing material risks and opportunities, as outlined in Disclosure Requirement S4-5? This should include whether and how the company engaged directly with consumers, end-users, their legitimate representatives, or credible proxies with insight into their situation. Additionally, in accordance with Disclosure Requirement S4-1, the company is required to describe the key information necessary to ensure a faithful representation of the policies concerning consumers and end-users. This description must include explanations of any significant changes to the policies adopted during the reporting year, such as new expectations for business customers or new approaches to due diligence and remedy.
-
Question Id: S4-1_08
Our framework and approach to avoiding data breaches and resulting negative impact for end-users is considered sufficient to reasonably mitigate the risk exposure and we have therefore not defined specific targets or metrics in this regard.
Report Date: 4Q2024Relevance: 30%
- Provide a detailed account of the methods and channels utilized to communicate your policies to the relevant individuals, groups, or entities. This includes those expected to implement the policies, such as employees, contractors, and suppliers, as well as those with a vested interest in their execution, like workers and investors. Describe the tools and mediums employed, such as flyers, newsletters, dedicated websites, social media, face-to-face interactions, and workers' representatives, to ensure policy accessibility and comprehension among diverse audiences. Additionally, elucidate the strategies employed to identify and eliminate potential dissemination barriers, including translation into pertinent languages or the use of visual aids.
-
Question Id: S4-1_09
Our Group Data Protection Policy described above establishes a firm process for handling incidents of data breaches, which is the key enabler for us to provide remediation for negative impacts to end-users.
Just as for value chain workers our whistleblower channel is available to end-users for raising concerns though we would consider it a more natural and straight forward approach for end-users to raise concerns via their employer (our customer). During 2024 we have not received data privacy concerns from end-users via our whistleblower channel. For details on our whistleblower channel and Speak Up Policy, see S1-3 and G1-1. Our Speak Up Policy is publicly available to end-users at www.issworld.com.
Report Date: 4Q2024Relevance: 20%