This external link is not available in presentation mode.

To the top
Menu

Compliance – Fair play for entrepreneurship

We developed and implemented a global Compliance organization to ensure ethical conduct and Compliance with laws in the Brose Group. Our family-owned company is deeply committed to the “FIRST” principles and complies with the law. Our actions are shaped by ethical decision making, integrity and sustainability.

Incident Reporting System

Brose employees, our business partners and third parties have the opportunity to report violations of the law at any time via an external, internet-based Incident Reporting System. This includes reports and information on violations within our own business operations as well as our supply chains that revolve around human rights, occupational safety and environmental protection. Furthermore, it is possible to report security gaps, vulnerabilities or incidents related to our products that may lead to the compromise of cryptographic keys, algorithms or ECU software. The system protects Brose, the employees concerned and the notifying person.

You can find everything you need to know for notifying persons in our Rules of Procedure on the Compliants Procedure.

Frequently asked questions

  • How can I report an incident?

    You can use the link to access a web-based communication platform to report an incident, upload documents and contact the responsible case worker. This process is protected and confidential and is activated via a separate mailbox.

    In addition to this Incident Reporting System, you still have access to all other communication channels such as email, phone, or regular mail correspondence.

  • What can I report?

    The Incident Reporting System is used to report violations of legal provisions, such as corruption, antitrust violations or betrayal of secrets, as well as violations of human rights in our own business operations and in the supply chain.

    You can also report improper conduct that impacts the company’s safety and security, i.e., theft, property damage or threats.

    In addition, it is possible to report security gaps, vulnerabilities or incidents related to our products that may lead to the compromise of cryptographic keys, algorithms or ECU software.

    Intentional abuse of the Incident Reporting System and reports not filed in good faith or based on false allegations will not be tolerated and can result in disciplinary action.

  • Do I need to reveal my identity?

    As much information as possible should be provided to assist in the clarification of the facts. If you give your name, your identity will be kept strictly confidential within the company. Your report can also remain anonymous, provided this is permitted under law.

  • What information do I need to provide?

    The information provided should consist of as much sufficient and specific detail as possible to investigate and process a report effectively and avoid calling the facts of the case into question.

    You can use the following questions for guidance:
    Who is affected?
    What happened?
    When did the incident occur?
    Where did the incident occur?

  • How will reports be handled?

    Your report is in good hands. The Incident Reporting System is provided by an independent, external service provider company named WhistleB, which will protect your anonymity. The reporting and communication process is encrypted, and password protected.

    All reports are processed in a confidential manner.

  • How are notifying persons protected?

    Brose is committed to creating an environment in which concerns regarding Compliance issues can be freely expressed without fear of retaliation. This is why statements by and identities of persons who have reported a genuine concern are treated confidentially, unless otherwise prohibited by law. We prohibit and will not tolerate any retaliatory measures against persons who have reported a genuine concern.

  • Privacy policy

    In accordance with our obligation to provide information pursuant to Article 13 of the European General Data Protection Regulation (GDPR) you can download and read the data protection notices for the Incident Reporting System here.

    Download document.pdf

  • Disclaimer

    Warning: This is not an emergency service.

    To report incidents that require a notice or statement in accordance with the European General Data Protection Regulation (GDPR), please contact Datenschutz@brose.com .