ESG Regulations & Standards

Expanded Definition

ESG regulations and standards span mandatory reporting requirements, due diligence laws, import bans, and widely used voluntary frameworks. Even organizations that operate locally are often pulled into scope through global value chains and customer requirements. Below are the major regulations and frameworks that procurement and supply chain leaders should track.

European Union (mandatory)

• ‍CSRD — Corporate Sustainability Reporting Directive: This directive expands who must report sustainability information and aligns content with European Sustainability Reporting Standards (ESRS), which are mandatory disclosure standards adopted by the European Commission in 2023. ESRS defines the specific data points, double-materiality assessments, and topical disclosures companies must provide.
• ‍CSDDD — Corporate Sustainability Due Diligence Directive: In force since July 25, 2024, it requires in‑scope companies to identify, prevent, mitigate, and account for adverse human‑rights and environmental impacts across global value chains.
• ‍EU Taxonomy Regulation: This regulation defines criteria for whether an economic activity is environmentally sustainable, with a goal of providing investors, companies, and policymakers with a common framework.
• ‍SFDR — Sustainable Finance Disclosure Regulation: Financial market participants must disclose how they consider sustainability risks and adverse impacts.

United States (mandatory)

• ‍SEC Climate‑Related Disclosure (Final Rule 2024): Registrants must disclose material climate‑related risks, governance, and certain financial statement effects of severe weather and natural conditions (note: this is subject to ongoing litigation).
• ‍California SB‑253 — Climate Corporate Data Accountability Act: It requires covered companies doing business in California to disclose Scope 1 and 2 GHG emissions (with Scope 3 phased).
• ‍California SB‑261 — Climate‑Related Financial Risk Act: This requires biennial public reporting on climate‑related financial risk and mitigation by covered entities operating in California. (Read our blog on SB-253 and SB-261 to learn more about how to prepare your supply chain to be compliant with these two laws.)
• ‍UFLPA — Uyghur Forced Labor Prevention Act: The act establishes a rebuttable presumption that goods from China’s Xinjiang region are made with forced labor; importers must provide robust traceability to rebut.  

Other countries (mandatory)

• ‍Canada S‑211 — Fighting Against Forced Labour and Child Labour in Supply Chains Act: Effective in 2024, it requires annual reports from government bodies and entities that produce or import goods.
• ‍UK Modern Slavery Act: Large commercial organizations are required to publish annual statements on steps taken to prevent modern slavery in operations and supply chains.
• ‍Australia Modern Slavery Act 2018: Annual modern‑slavery statements must be submitted to a public register for reporting entities.
• ‍Germany LkSG — Supply Chain Due Diligence Act: Companies must establish processes to identify, prevent, mitigate, and remedy risks related to human rights violations and environmental risks.

Global Standards & Frameworks (voluntary, widely referenced by law or market)

• ‍ISO 26000 — Social Responsibility (Guidance): ISO 26000 offers organizations a comprehensive framework for social responsibility, covering areas such as human rights, labor practices, the environment, fair operating practices, consumer issues, and community development. Unlike most ISO standards, it is not certifiable but serves as voluntary guidance to embed sustainability into strategy and decision-making.
• ‍ISO 20400 — Sustainable Procurement (Guidance): ISO 20400 provides practical guidance for integrating sustainability considerations into purchasing processes. It is designed to complement ISO 26000 and is widely used as a reference in building sustainable procurement programs.
• ‍ISSB — IFRS S1 & S2 Sustainability Disclosure Standards: The ISSB standards establish a global baseline for sustainability reporting, with IFRS S1 focused on general sustainability disclosures and IFRS S2 specifically addressing climate-related risks and opportunities. These standards are intended primarily for investors and capital markets and are interoperable with regional regulations such as the EU’s ESRS.
• ‍GRI Standards: The Global Reporting Initiative (GRI) Standards provide a widely used framework for organizations to disclose their economic, environmental, and social impacts. They are impact-focused, designed for a broad range of stakeholders, and are often used alongside investor-focused frameworks like ISSB.
• ‍OECD Guidelines for Multinational Enterprises (2023 update): The OECD Guidelines set government-backed recommendations for responsible business conduct across areas such as human rights, labor, environment, anti-corruption, and consumer interests. They are voluntary but influential, and many due diligence laws and public procurement policies reference them.
• ‍UN Guiding Principles on Business and Human Rights (UNGPs): The UNGPs outline the global standard for preventing and addressing human rights impacts linked to business activity. They establish the framework of “protect, respect, and remedy” and are the foundation for most corporate human rights due diligence requirements.
• ‍UN Sustainable Development Goals (SDGs): The UN SDGs are a set of 17 global goals designed to address urgent social, environmental, and economic challenges by 2030. While not legally binding, they provide a common agenda that organizations often use to frame sustainability strategies and supply chain initiatives.

Why These ESG Standards and Regulations Matter

Even for organizations that do not operate globally, it’s important to be aware of all these compliance requirements and ESG standards.

1. Requirements flow through the chain. Multinationals subject to global regulations can push obligations onto suppliers and contractors via contract clauses, audits, and data requests. Similarly, even local organizations likely have operations flowing globally through the supply chain.
2. Interoperability is rising. ISSB aims to be a global baseline; EU rules, UK/Australia modern‑slavery regulations, and California climate laws increasingly map to common concepts (governance, risk, metrics, and targets).
3. Market access and bids. Public buyers and large enterprises often consider ISO 20400‑aligned procurement and GRI/ISSB‑aligned reporting to be table stakes.

Noncompliance with these standards and/or regulations can have significant consequences:

• Regulatory penalties and enforcement actions. Examples include CSDDD/CSRD administrative sanctions by national authorities, UFLPA detentions at the border, and LkSG enforcement by BAFA. ‍
• Contractual risk. Buyers often embed audit rights, termination clauses, and data‑sharing requirements into contracts, driven by these laws. ‍
• Capital & reputation impacts. ISSB‑aligned investors expect decision‑useful, comparable information; weak disclosure or controversies can affect access to capital and brand trust.

Challenges for Organizations to Keep Up

• Regulatory fragmentation & change. Thresholds, scope, and timing differ, as each regulation has its own implementation timeline and nuances. Timelines may shift with rulemaking, litigation, or policy changes, making it tough for organizations to keep up. ‍
• Data depth and supplier reach. UFLPA and due diligence laws require traceability beyond Tier 1, often into raw material provenance. ‍
• Interoperability vs. dual reporting. ISSB, GRI, and ESRS overlap but are not identical; many firms must map across frameworks. ‍
• Assurance and internal controls. CSRD and California regulations push third‑party assurance and audit‑ready processes for emissions and risk data.

Practical Tips for Procurement & Supply Chain

• Contractualize due diligence. Procurement teams should include clauses in supplier contracts that require compliance with human rights, environmental, and governance standards. These clauses should also grant audit rights, require transparent grievance mechanisms, and specify remedies or termination in case of violations.  ‍
• Adopt a dual-rail reporting set. Companies can prepare for compliance by mapping investor-focused ISSB disclosures to EU CSRD/ESRS requirements, while also maintaining a GRI layer for broader stakeholder reporting. This dual approach avoids duplication and ensures reporting is useful to both regulators and stakeholders. Building crosswalks between frameworks early reduces the risk of misalignment later. ‍
• Build UFLPA-ready traceability. Procurement should require suppliers to provide detailed provenance information for raw materials and commodities that may be high risk under forced-labor laws. Collecting bills of lading, supplier declarations, and chain-of-custody records upfront reduces delays and detentions at customs. Establishing evidence packages also prepares companies for surprise inspections or document requests from regulators. ‍
• Use ISO 20400 as your operating manual. This standard offers a practical roadmap for integrating sustainability into day-to-day purchasing decisions. Procurement teams can use it to build internal processes, evaluate suppliers, and align sourcing decisions with organizational sustainability goals. While voluntary, ISO 20400 aligns with international expectations and can serve as a common language when engaging global suppliers. ‍
• Leverage technology platforms. Centralized ESG data platforms, such as supplier management systems, help automate the collection, validation, and reporting of sustainability information. They can provide dashboards, scorecards, and alerts that flag non-compliance risks across large supplier bases. By using digital tools, companies reduce manual workloads and ensure data integrity for regulatory filings. ‍
• Invest in supplier engagement. Many smaller suppliers lack the resources or expertise to meet ESG disclosure requirements on their own. Larger buyers can support them by offering training, toolkits, or shared services to close capability gaps. Helping suppliers improve not only reduces risk but also strengthens long-term supplier relationships. ‍
• Stay ahead with regulatory horizon scanning. Procurement leaders should monitor updates from key jurisdictions such as the EU, California, and Canada to anticipate new obligations before they take effect. This proactive approach allows organizations to update contracts, adapt reporting systems, and prepare suppliers in advance. Horizon scanning reduces last-minute compliance costs and positions companies as partners of choice for risk-conscious buyers.

Synonyms & Related Terms

• ESG Compliance
• Sustainability Disclosure Requirements
• Sustainable Finance Regulation
• Non‑Financial Reporting
• Responsible Business Conduct Standards
• ESG Due Diligence Laws