Frequently asked questions
How can I report an incident?
You can use the link to access a web-based communication platform to report an incident, upload documents and contact the responsible case worker. This process is protected and confidential and is activated via a separate mailbox.
In addition to this Incident Reporting System, you still have access to all other communication channels such as email, phone, or regular mail correspondence.What can I report?
The Incident Reporting System is used to report violations of legal provisions, such as corruption, antitrust violations or betrayal of secrets, as well as violations of human rights in our own business operations and in the supply chain.
You can also report improper conduct that impacts the company’s safety and security, i.e., theft, property damage or threats.
In addition, it is possible to report security gaps, vulnerabilities or incidents related to our products that may lead to the compromise of cryptographic keys, algorithms or ECU software.
Intentional abuse of the Incident Reporting System and reports not filed in good faith or based on false allegations will not be tolerated and can result in disciplinary action.Do I need to reveal my identity?
As much information as possible should be provided to assist in the clarification of the facts. If you give your name, your identity will be kept strictly confidential within the company. Your report can also remain anonymous, provided this is permitted under law.What information do I need to provide?
The information provided should consist of as much sufficient and specific detail as possible to investigate and process a report effectively and avoid calling the facts of the case into question.
You can use the following questions for guidance:
Who is affected?
When did the incident occur?
Where did the incident occur?How will reports be handled?
Your report is in good hands. The Incident Reporting System is provided by an independent, external service provider company named WhistleB, which will protect your anonymity. The reporting and communication process is encrypted, and password protected.
All reports are processed in a confidential manner.How are notifying persons protected?
In accordance with our obligation to provide information pursuant to Article 13 of the European General Data Protection Regulation (GDPR) you can download and read the data protection notices for the Incident Reporting System here.Disclaimer
Warning: This is not an emergency service.
To report incidents that require a notice or statement in accordance with the European General Data Protection Regulation (GDPR), please contact Datenschutz@brose.com .