In line with the procurement policy, suppliers and subcontractors must sign the Sodexo Supplier Code of conduct which sets out Sodexo’s requirements for adopting responsible best practices concerning ethical, social and environmental issues.
Since its creation in 1966, Sodexo’s purpose is to improve the quality of life of its employees and those it serves, and contribute to the economic, social and environmental progress in the communities where it operates. Sodexo formalized this commitment in the sustainability roadmap, Better Tomorrow 2025, and will continue to do so with its renewed roadmap Better Tomorrow 2028, both outlined in Chapter 2.
The Better Tomorrow roadmaps are underpinned by a number of policies and commitments. These include:
For further details on Sodexo sustainability strategy and results, please refer to Chapter 2.
The Group information and cyber security principles and policy established by the Technology, Data, Digital & Innovation function, direct the controls and standards required to consistently and effectively protect Sodexo's information and systems. These documents are supported by detailed standards, directives and guidelines that ensure comprehensive and effective security across the organization.
Sodexo’s Global Data Protection policy outlines the principles that Sodexo entities implement when they collect, use, store, share, delete or otherwise process personal data and how data subjects can exercise their rights. This policy applies across the global organization and governs the processing by Sodexo Group and/or Sodexo entities of personal data directly or indirectly, from all individuals including, but not limited to Sodexo’s job applicants, employees, clients, consumers, suppliers, shareholders or any third parties. The governance around the framework on data protection and respect of those principles has been approved by the European data protection authorities that validated Sodexo Binding Corporate Rules. For further details on the compliance program relating to data protection regulations, please refer to section 6.5.
The Sodexo Group has established a tax policy that has been published on its website. The main principle of the policy is that the Sodexo Group undertakes to respect local tax laws and regulations that apply and pays its fair share of taxes in all countries where it operates, in line with the substance of the local economic activity of the business. Sodexo does not use intended tax structures for tax avoidance nor invest in tax structures located in so-called tax havens in order to avoid taxes. The policy is based on the economic reality on the transactions and excludes fraud and tax evasion as well as hybrid mismatch arrangement from a tax standpoint. Therefore, the Group considers that it complies with the requirements of the article L.225-102-1 of the French Commercial Code on fighting tax evasion.
Sodexo will always:
The Group internal delegation of authority policy defines the framework for the issuance, review and implementation of the authority granted to Sodexo executives.
The Chairwoman and CEO delegates certain authority to the members of the Sodexo Leadership Team, who themselves delegate to members of their executive teams in regions and countries. These delegations are reviewed annually and formally communicated to each executive by his or her superior.
Delegations of authority cover business areas throughout the Group, and notably client contracts, procurement, investments and finance, strategy, people and organization, communications and brand.
The internal audit policy outlines internal audit activities which include reviewing and assessing the adequacy and effectiveness of governance, risk management and internal control systems and processes. This includes assessing:
The Internal Audit team is also responsible for alerting the Chairwoman and CEO, the Audit Committee and the Sodexo Leadership Team to any material risks and informing them of the causes of identified weaknesses.
Among other topics, the Internal Audit policy sets out the framework for the identification of Internal Audit priorities for the coming fiscal year, for the planning, execution and reporting of internal audits and for the follow up of action plans to implement the audit team’s recommendations.
The policy also defines a series of internal audit performance indicators such as the implementation of internal audit recommendations, the average time required to issue internal audit reports, the annual audit plan completion rate, internal auditor rotation rates, the satisfaction rate among audited units.
The Internal Audit policy is validated by the Chairwoman and CEO and the Audit Committee.
