Value-based governance Regular compliance risk assessments are carried out by the Corporate Ethics & Compliance Officer with local compliance officers and corporate functions. In 2021, we also carried out a dedicated bribery risk cartography pursuant to the French Loi Sapin 2. We have a Group-wide Compliance Helpline system which allows employees to report suspected or actual misconduct or violations of the Company’s policies on a confidential basis and without fear of retaliation. We also have a mechanism as part of our Responsible Sourcing Policy to allow suppliers to bring grievances to our attention. Our compliance incident investigation procedure and process regulates investigations of compliance allegations received through any channel. Depending on the nature of the allegations, these cases are handled either locally or centrally, with external specialist support where required. Other compliance processes include the process for selection and engagement of third-party agents and distributors and the global supplier selection process of the procurement organisation. Dedicated corporate functions ensure the management of compliance with specific areas of operational compliance risk such as product safety/regulatory, procurement, trade affairs, tax, environment, and occupational health and safety. The Group Data Protection Officer oversees the implementation of the Group Data Protection programme. Appropriate organisation and leadership Documents, processes and systems Monitoring and audit Continuous improvement Ongoing assessment of compliance risks People and training Due diligence process Compliance reporting Investigation of compliance cases Disciplinary actions Reporting to senior management Process improvement Prevent Detect Respond Givaudan – 2021 Integrated Annual Report Value-based governance Ou r code of conduct for a positive impact on society 121