COMPLIANCE Compliance with the General Data Protection Regulation (GDPR) / RISKS AND CONSEQUENCES The risks of non-compliance with Europe's General Data Protection Regulation (GDPR) include administrative or financial penalties (up to €20 million or 4% of Group turnover), as well as a deterioration in brand image that could lead to a loss of trust that is detrimental to our business. / MEANS OF CONTROL Within the Group, a Data Protection Officer (DPO) has been appointed. Their role is to monitor the continued compliance with the GDPR, in particular for all new projects and acquisitions in Europe. In the event of an acquisition, the subsidiary is monitored and, if necessary, supported in order to maintain or implement compliance with the GDPR. / KEY INDICATORS In terms of GDPR, we aim to process 100% of individuals’ requests regarding rights within the time limit and to achieve 100% compliance within six months of an acquisition. % of requests to exercise rights fulfilled within specified times % compliance of European subsidiaries (companies acquired more than six months ago) Target 100% Target 100% 0% 0% 10% 10% 20% 20% 30% 30% 40% 40% 50% 50% 60% 60% 80% 80% 70% 70% 90% 90% 100% 100% 2019 2019 2020 2020 2021 2021 2022 2022 2023 2023 98% 96% 100% 99% 100% 98% 100% 100% 100% 100% 28 DECLARATION OF NON-FINANCIAL PERFORMANCE 2023_DESCOURS & CABAUD
RkJQdWJsaXNoZXIy MTgwNTE2Ng==