SEC climate disclosure rules: what US public companies must prepare

In March 2024, the SEC adopted its landmark climate disclosure rules requiring US public companies to report climate risks and greenhouse gas emissions in annual filings, marking the most significant expansion of corporate environmental reporting in American regulatory history. Over 2,800 SEC registrants with combined market capitalization exceeding $40 trillion face new obligations under the rule (SEC, 2024). A 2025 PwC survey found that only 38% of large accelerated filers considered themselves "well prepared" for compliance, while 72% of CFOs cited climate data infrastructure as their top implementation challenge (PwC, 2025). With legal challenges creating ongoing uncertainty and a phased timeline extending through fiscal year 2028, companies that delay preparation risk costly last-minute scrambles, restatements, and enforcement exposure.

Why It Matters

The SEC's climate disclosure rules fundamentally change how US public companies communicate environmental risks to investors. Before these rules, climate reporting was largely voluntary, guided by frameworks such as TCFD and CDP. The new regulations embed climate information into mandatory SEC filings (Form 10-K and registration statements), subjecting disclosures to the same legal liability standards as financial statements.

The rules matter for three interconnected reasons. First, investors managing over $120 trillion in global assets have repeatedly demanded standardized, comparable climate data to inform capital allocation decisions (Global Sustainable Investment Alliance, 2024). Voluntary frameworks produced inconsistent disclosures that made cross-company comparison difficult. Mandatory rules create a level playing field.

Second, the financial materiality of climate risk is no longer theoretical. The National Oceanic and Atmospheric Administration (NOAA) recorded $28.6 billion in climate disaster costs in the US during 2023 alone, with 28 separate billion-dollar events. Companies across sectors face physical risks (property damage, supply chain disruption) and transition risks (regulatory costs, stranded assets, shifting consumer demand) that directly affect balance sheets.

Third, global regulatory convergence is accelerating. The EU's Corporate Sustainability Reporting Directive (CSRD), the ISSB's IFRS S1 and S2 standards, and California's SB 253 and SB 261 laws all require overlapping climate disclosures. Companies that build robust reporting infrastructure for SEC compliance can leverage that investment across multiple jurisdictions, reducing total compliance costs by an estimated 30 to 40% (Deloitte, 2025).

Key Concepts

Material climate risks form the foundation of the SEC rules. Companies must disclose climate risks that are material to their business, strategy, or financial condition. The SEC uses the established securities law definition of materiality: information a reasonable investor would consider important in making investment decisions.

Physical risks include acute events such as hurricanes, floods, and wildfires, as well as chronic conditions like rising sea levels, prolonged droughts, and temperature increases. Companies must describe both current exposures and forward-looking assessments.

Transition risks encompass regulatory, technological, market, and reputational changes arising from the shift to a lower-carbon economy. Examples include carbon pricing mechanisms, declining demand for fossil-fuel products, and increased costs of capital for high-emission sectors.

Greenhouse gas (GHG) emissions are categorized into three scopes. Scope 1 covers direct emissions from owned or controlled sources. Scope 2 covers indirect emissions from purchased electricity, steam, heating, and cooling. Scope 3 covers all other indirect emissions across a company's value chain, including supplier and customer emissions.

Climate-related financial statement metrics require companies to disclose the financial impacts of severe weather events and other natural conditions within their audited financial statements, including costs and losses, charges, and recoveries.

KPI	Description	Applicable Filers
Scope 1 GHG emissions	Direct emissions from owned sources (metric tons CO2e)	Large accelerated filers (LAFs), accelerated filers (AFs)
Scope 2 GHG emissions	Indirect emissions from purchased energy (metric tons CO2e)	LAFs, AFs
GHG intensity ratio	Emissions per unit of revenue or production	LAFs, AFs
Financial impact of climate events	Costs, losses, and expenditures from severe weather	All registrants
Climate risk mitigation expenditures	Capitalized costs and charges for risk reduction	All registrants
Carbon offset/REC usage	Quantities and cost of credits used toward targets	Registrants with disclosed targets

Regulatory Timeline

The SEC's final rules, adopted on March 6, 2024, established a phased compliance schedule based on filer category. However, on April 4, 2024, the SEC voluntarily stayed the rules pending resolution of consolidated legal challenges in the Eighth Circuit Court of Appeals.

Large Accelerated Filers (LAFs) with public float of $700 million or more were originally set to begin climate disclosures in annual reports for fiscal years beginning in 2025, with GHG emissions attestation phasing in for fiscal years beginning in 2026 (limited assurance) and 2029 (reasonable assurance).

Accelerated Filers (AFs) with public float between $75 million and $700 million were scheduled to begin disclosures for fiscal years beginning in 2026, with limited assurance on emissions beginning for fiscal years starting in 2027.

Smaller Reporting Companies (SRCs) and Emerging Growth Companies (EGCs) were exempted from Scope 1 and Scope 2 emissions disclosure requirements but remain subject to qualitative climate risk disclosures and financial statement metrics.

As of early 2026, the Eighth Circuit litigation remains pending. The SEC has indicated it will not enforce the rules while the stay is in effect. However, legal experts widely advise companies to continue preparation because the stay could be lifted with limited notice, and multiple state-level laws (notably California's SB 253) impose parallel obligations regardless of federal outcomes (Gibson Dunn, 2025).

Who Must Comply

All domestic and foreign private issuers registered with the SEC are subject to the climate disclosure rules, though the scope of obligations varies by filer category.

Large Accelerated Filers face the most comprehensive requirements. Companies such as Apple, JPMorgan Chase, and ExxonMobil must disclose Scope 1 and Scope 2 emissions, obtain third-party attestation, and report detailed climate risk governance and strategy information.

Accelerated Filers must provide the same qualitative disclosures and emissions reporting but on a delayed timeline and with a later attestation phase-in.

Non-accelerated filers, SRCs, and EGCs must disclose material climate risks and financial statement impacts but are exempt from quantitative GHG emissions reporting. This exemption affects approximately 44% of SEC registrants by count, though these companies represent less than 5% of total market capitalization.

Notably, the SEC eliminated the proposed Scope 3 emissions disclosure requirement from the final rule after receiving over 24,000 comment letters, many raising concerns about data reliability and compliance costs. Companies that have set climate targets or transition plans that reference Scope 3, however, must still describe the role of Scope 3 in those targets.

Compliance Requirements

The SEC rules impose five categories of mandatory disclosure:

Governance. Companies must describe the board's oversight of climate risks, including which board members or committees are responsible, how frequently they receive climate briefings, and whether management-level positions or committees exist for climate risk management.

Strategy. Registrants must disclose material climate risks (both physical and transition), their actual and potential impacts on business operations, strategy, and financial condition, and any climate scenario analysis or internal carbon pricing used in strategic planning.

Risk management. Companies must describe their processes for identifying, assessing, and managing material climate risks, including how those processes integrate with overall enterprise risk management.

GHG emissions. LAFs and AFs must report Scope 1 and Scope 2 emissions separately, in the aggregate and by greenhouse gas type, expressed in metric tons of CO2 equivalent. Emissions must be disclosed both in absolute terms and as intensity metrics (per unit of revenue or other relevant denominators).

Financial statement disclosures. All registrants must include a note in their audited financial statements quantifying the financial impacts of severe weather events and other natural conditions that exceed 1% of the relevant financial statement line item. This includes costs incurred, losses recognized, charges recorded, and recoveries received.

Step-by-Step Implementation

Step 1: Establish governance structures. Assign board-level responsibility for climate risk oversight. Companies like Microsoft have created dedicated sustainability committees at the board level, while others have expanded audit committee mandates. Ensure management roles include clear accountability for emissions data collection and climate risk assessment.

Step 2: Conduct a materiality assessment. Map physical and transition risks across operations, supply chains, and end markets. Use scenario analysis aligned with established frameworks (TCFD, ISSB) to evaluate risk under different temperature pathways. Identify which risks meet the SEC's materiality threshold and require disclosure.

Step 3: Build emissions data infrastructure. Implement systems for collecting, calculating, and verifying Scope 1 and Scope 2 emissions data. This typically requires enterprise software platforms (such as Persefoni, Watershed, or IBM Envizi) combined with operational data feeds from facilities, fleet management, and utility accounts. Begin with the GHG Protocol as the measurement methodology, as the SEC rules explicitly reference it.

Step 4: Engage attestation providers. The rules require independent third-party attestation of GHG emissions, initially at limited assurance and later at reasonable assurance. Engage potential attestation providers early because the market for qualified GHG assurance practitioners remains constrained. Major accounting firms (Deloitte, EY, PwC, KPMG) and specialized firms (Apex Companies, Bureau Veritas) offer GHG assurance services.

Step 5: Integrate climate metrics into financial reporting. Work with your controller's office and external auditors to embed the 1% financial statement disclosure threshold into existing close processes. Develop tracking mechanisms for severe weather costs, climate-related impairments, and mitigation expenditures across all business units.

Step 6: Draft disclosure language. Prepare narrative disclosures covering governance, strategy, and risk management. Review peer filings and SEC staff guidance for emerging best practices. Companies like Salesforce and General Motors have published voluntary climate disclosures that can serve as templates for the level of specificity the SEC expects.

Step 7: Conduct dry runs. Prepare mock filings at least one full reporting cycle before mandatory compliance begins. Test data collection processes, internal controls, and disclosure drafting workflows under realistic timelines. Identify gaps and remediate before obligations become binding.

Common Pitfalls

Treating climate disclosure as a sustainability team exercise. The SEC rules embed climate information into regulated securities filings. Legal, finance, accounting, and internal audit functions must be deeply involved. Companies that silo preparation within sustainability departments risk producing disclosures that fail to meet securities law standards.

Underestimating emissions data complexity. Collecting Scope 1 and Scope 2 emissions data across global operations is significantly more complex than many companies anticipate. Data gaps in international facilities, inconsistent metering, and varying emission factor methodologies can introduce errors. A 2025 EY survey found that 61% of companies needed 12 or more months to achieve audit-ready emissions data (EY, 2025).

Ignoring state-level requirements. California's SB 253 (Climate Corporate Data Accountability Act) requires companies with over $1 billion in annual revenue doing business in California to report Scope 1, 2, and 3 emissions starting in 2026 for Scopes 1 and 2, and 2027 for Scope 3. Unlike the SEC rules, SB 253 explicitly includes Scope 3 and applies to both public and private companies. Approximately 5,300 companies fall within its scope.

Waiting for litigation resolution. Companies that pause preparation pending the Eighth Circuit decision face significant catch-up risk. Building emissions data systems, training finance teams, and establishing internal controls typically requires 18 to 24 months of lead time.

Overlooking the financial statement threshold. The 1% de minimis threshold for financial statement disclosures is lower than many companies expect. For a company with $10 billion in revenue, any severe weather event costing more than $100 million in a given line item triggers disclosure obligations. This catch-all provision applies to all registrants regardless of filer status.

Key Players

Regulators and Standard Setters

• Securities and Exchange Commission (SEC) - primary rulemaking authority for US public company climate disclosures
• Public Company Accounting Oversight Board (PCAOB) - oversight of GHG emissions attestation standards and auditor quality
• International Sustainability Standards Board (ISSB) - global baseline standards (IFRS S1/S2) that inform SEC rule design and enable interoperability
• California Air Resources Board (CARB) - implementation authority for SB 253 and SB 261 state-level disclosure requirements

Advisory and Compliance Firms

• Deloitte - climate disclosure advisory, GHG assurance, and XBRL tagging services
• PwC - SEC climate readiness assessments and internal controls design
• EY - emissions data verification and financial statement integration
• Persefoni - carbon accounting software platform used by Fortune 500 companies

Investor Coalitions

• Ceres - nonprofit coordinating investor advocacy for mandatory climate disclosure
• Climate Action 100+ - investor coalition engaging the world's largest emitters on climate governance and reporting
• Institutional Shareholder Services (ISS) - proxy advisory firm incorporating climate disclosure quality into voting recommendations

Action Checklist

• Map your filer category (LAF, AF, SRC, EGC) and determine which disclosure obligations apply and on what timeline
• Assign board-level and management-level climate risk oversight responsibilities with clear accountability
• Conduct a climate risk materiality assessment covering both physical and transition risks across all operations
• Inventory existing emissions data sources and identify gaps requiring new metering, estimation, or vendor data
• Select and implement carbon accounting software that aligns with GHG Protocol methodologies and supports SEC reporting formats
• Engage a third-party attestation provider and agree on assurance scope, timeline, and evidence requirements
• Develop internal controls over climate data comparable to financial reporting controls (SOX-equivalent rigor)
• Integrate the 1% severe weather financial impact threshold into quarterly and annual close processes
• Assess parallel obligations under California SB 253/261, CSRD, and ISSB standards to identify reporting synergies
• Conduct at least one full dry-run filing before mandatory compliance begins

FAQ

Q: Are Scope 3 emissions required under the SEC climate rules? A: No. The SEC removed the Scope 3 disclosure requirement from the final rule. However, companies that have set public climate targets referencing Scope 3 must describe Scope 3's role in those targets. Additionally, California's SB 253 requires Scope 3 reporting for large companies doing business in California starting in 2027.

Q: What happens if the Eighth Circuit strikes down the rules? A: If the rules are invalidated, federal mandatory climate disclosure would revert to existing SEC guidance on material risk disclosure. However, California's state laws would remain in effect, and many companies would still face overlapping obligations under CSRD and ISSB standards. The SEC could also repropose modified rules.

Q: Do foreign private issuers need to comply? A: Yes. Foreign private issuers registered with the SEC are subject to the climate disclosure rules on the same phased timeline as domestic registrants. However, companies that already report under CSRD or ISSB may be able to leverage existing disclosures to satisfy SEC requirements with incremental effort.

Q: What level of assurance is required for emissions data? A: LAFs must obtain limited assurance for fiscal years beginning in 2026, escalating to reasonable assurance for fiscal years beginning in 2029. AFs must obtain limited assurance for fiscal years beginning in 2027. Limited assurance is roughly equivalent to a financial statement review, while reasonable assurance is equivalent to a full audit.

Q: How does the SEC rule compare to CSRD? A: The SEC rule is narrower in scope. CSRD requires double materiality (financial and impact materiality), covers broader ESG topics beyond climate, and mandates Scope 3 reporting. The SEC rule focuses exclusively on climate, uses single (financial) materiality, and excludes Scope 3. However, the governance, strategy, and risk management disclosure structures are broadly comparable.

Sources

• Securities and Exchange Commission. (2024). "The Enhancement and Standardization of Climate-Related Disclosures for Investors: Final Rule." Release No. 34-99678. https://www.sec.gov/rules/final/2024/33-11275.pdf
• PwC. (2025). "Global Climate Disclosure Readiness Survey." https://www.pwc.com/gx/en/services/sustainability/climate-disclosure-readiness.html
• Deloitte. (2025). "Preparing for SEC Climate Disclosure: A CFO Playbook." https://www2.deloitte.com/us/en/pages/audit/articles/sec-climate-disclosure-preparation.html
• EY. (2025). "Global Climate Risk Barometer: Corporate Readiness for Mandatory Disclosure." https://www.ey.com/en_gl/sustainability/climate-risk-barometer
• Gibson Dunn. (2025). "SEC Climate Disclosure Rules: Litigation Update and Compliance Considerations." https://www.gibsondunn.com/sec-climate-disclosure-rules-litigation-update
• Global Sustainable Investment Alliance. (2024). "Global Sustainable Investment Review 2024." https://www.gsi-alliance.org/trends-report-2024
• California Legislature. (2023). "SB 253: Climate Corporate Data Accountability Act." https://leginfo.legislature.ca.gov/faces/billNavClient.xhtml?bill_id=202320240SB253