Five Group ethical risks are identified for analysis within the ERM process:

  • corruption
  • infringement of human rights
  • non-compliance with competition and/or embargo rules
  • fraud
  • ethics steering insufficiency

The Group's risk analysis approach also includes the risk related to the processing of personal data and the risk of non-compliance with the GDPR (General Data Protection Regulation).

The processes for assessing corruption risk and infringement on human rights and Data Privacy risks include a methodology common to all Group entities, based on check-lists (corruptions, human rights), on guidelines (Data Privacy) and on annual reporting to the ENGIE Board of Directors’ Ethics, Environment and Sustainable Development Committee (EESDC).

In addition, the Group has adopted several Ethical Due Diligence policies for investigating future Group partners, suppliers, sponsorship recipients…etc. before the beginning of any business relationship. This ensures that these parties do not pose any major ethical risk for ENGIE and that they are not in violation of internationals penalties, of any rules governing human rights, health and safety, and/or the environment.