Interview: Practitioners on Ethical sourcing & human rights due diligence — what they wish they knew earlier

The European Union's Corporate Sustainability Due Diligence Directive (CSDDD), adopted in 2024, requires approximately 13,000 companies to identify, prevent, and remediate human rights abuses across their value chains, yet a 2025 survey by the Business & Human Rights Resource Centre found that fewer than 18% of in-scope companies had operationalized due diligence systems beyond basic policy statements. Germany's Supply Chain Due Diligence Act (LkSG) has been in force since January 2023 for companies with over 1,000 employees, generating more than 400 formal complaints to the Federal Office for Economic Affairs and Export Control (BAFA) in its first two years. For engineers and supply chain professionals tasked with building the systems, data pipelines, and monitoring infrastructure to meet these requirements, the gap between regulatory text and operational reality is enormous. Seven practitioners across automotive, electronics, apparel, and food sectors shared what they wish they had known before embedding ethical sourcing and human rights due diligence into their organizations.

Why It Matters

Forced labor, child labor, and unsafe working conditions remain pervasive across global supply chains. The International Labour Organization estimated in 2024 that 27.6 million people were in situations of forced labor worldwide, with the highest prevalence in manufacturing, agriculture, and domestic work. The US Customs and Border Protection agency detained or seized goods valued at over $1.8 billion under the Uyghur Forced Labor Prevention Act (UFLPA) between June 2022 and December 2025, with the electronics, apparel, and solar panel sectors most affected (CBP, 2025).

The financial exposure is accelerating. Companies found in violation of Germany's LkSG face fines of up to 2% of global annual turnover. The CSDDD introduces civil liability, meaning affected individuals and communities can sue companies in European courts for damages caused by failures in due diligence. Beyond regulatory penalties, brands face reputational risk that directly affects revenue: a 2025 study by MIT Sloan found that consumer boycotts triggered by documented labor abuses reduced affected companies' sales by an average of 8 to 15% in affected markets over a 12-month period.

For engineering teams, the challenge is technical as much as ethical. Building traceability systems that can identify tier-2 and tier-3 suppliers, aggregate worker grievance data across languages and geographies, and generate audit-ready documentation requires integrating fragmented data from factory management systems, third-party audit platforms, worker voice tools, and satellite imagery analysis. Most existing enterprise resource planning (ERP) systems were not designed for this level of supply chain visibility.

Key Concepts

Effective ethical sourcing and human rights due diligence programs depend on understanding several foundational frameworks and tools.

UN Guiding Principles on Business and Human Rights (UNGPs): The authoritative global standard establishing that businesses have a responsibility to respect human rights throughout their operations and value chains. The UNGPs define the three-pillar framework of identify, prevent/mitigate, and remediate that underpins all major due diligence legislation.

Salient Human Rights Issues: The specific human rights most at risk in a company's operations and supply chains, identified through a materiality-like assessment process. Unlike financial materiality, salience is determined by severity (scale, scope, and irremediability) to affected people, not by financial impact on the company.

Tier Mapping: The process of identifying and documenting suppliers beyond direct (tier-1) relationships to include raw material processors (tier-2), component manufacturers (tier-3), and commodity producers (tier-4 and beyond). Most human rights risks concentrate at tier-2 and below, where companies have historically had minimal visibility.

Worker Voice Mechanisms: Technology-enabled channels that allow workers to report grievances, unsafe conditions, or labor violations directly, bypassing management intermediaries. Tools range from SMS-based anonymous hotlines to smartphone applications with multilingual interfaces and AI-powered sentiment analysis.

Social Auditing: On-site inspections conducted by third-party firms to assess factory compliance with labor standards, safety codes, and environmental requirements. Traditional social auditing has faced criticism for its snapshot-in-time approach and documented cases of audit fraud.

What's Working

Practitioners identified several approaches that are delivering measurable improvements in supply chain visibility and worker outcomes.

Technology-enabled worker voice platforms are outperforming traditional social audits in detecting grievances. Unilever deployed the WOVO worker engagement platform across 2,000 supplier factories in Southeast Asia and South Asia between 2023 and 2025, reaching over 500,000 workers through multilingual mobile surveys. The system detected a 340% increase in reported grievances compared to traditional audit-based detection, not because conditions worsened, but because workers had accessible reporting channels for the first time. Critically, factories that implemented remediation based on worker voice data showed a 22% reduction in worker turnover, generating direct cost savings for suppliers and improving production stability (Unilever, 2025).

Collaborative supplier development programs are proving more effective than compliance-only approaches. The Responsible Business Alliance (RBA) launched its Responsible Factory Initiative in 2023, providing on-site technical assistance to electronics component factories in Vietnam and Malaysia. Factories enrolled in the 18-month program showed a 45% improvement in working hours compliance, a 60% reduction in health and safety violations, and a 15% increase in productivity measured by output per labor hour. The productivity gains helped justify program costs to supplier management, creating a self-reinforcing incentive structure that pure compliance mandates lack (RBA, 2025).

Satellite imagery combined with geospatial analysis is enabling due diligence at the raw material extraction level. Automotive companies including BMW and Volkswagen now use satellite monitoring services from providers like Planet Labs and Maxar to verify that cobalt and lithium mining sites in the Democratic Republic of Congo and Chile operate within licensed boundaries and do not encroach on protected areas or communities. BMW's implementation covers 100% of its cobalt supply chain to the mine level, with automated alerts triggered when land-use changes are detected within a 5-kilometer radius of known mining concessions. This approach supplements, rather than replaces, on-the-ground verification but provides continuous monitoring between physical site visits (BMW, 2025).

Cross-industry data sharing initiatives are reducing duplicative audit burden on shared suppliers. The Sustainable Apparel Coalition's facility-level Higg Index, now covering over 40,000 manufacturing facilities globally, allows brands to access standardized social and environmental performance data for shared suppliers without commissioning redundant audits. Inditex, H&M Group, and Nike collectively reduced their audit volume by approximately 30% between 2023 and 2025 by accepting Higg Index verified assessments for facilities where all three brands source, freeing resources for deeper investigation of higher-risk suppliers outside the shared pool.

What's Not Working

Practitioners were equally forthcoming about persistent failures and systemic challenges.

Traditional social auditing continues to miss the most severe abuses. Research published by the Sheffield Institute for International Development in 2025 found that standard social audits detected forced labor indicators in only 4% of factories where subsequent in-depth investigations confirmed their presence. The audit model's fundamental weakness is structural: audits are typically announced 2 to 4 weeks in advance, conducted over 1 to 2 days, and rely on worker interviews conducted on factory premises in the presence of management. Workers in situations of debt bondage or forced labor face retaliation risks that make honest disclosure during brief audit visits virtually impossible.

Cascading due diligence requirements to tier-1 suppliers without technical support has produced compliance theater rather than genuine transparency. Multiple practitioners described scenarios where tier-1 suppliers, when contractually required to map and monitor their own suppliers, simply forwarded questionnaires that sub-suppliers completed with fabricated responses. A practitioner from a major European electronics manufacturer reported that cross-referencing tier-1 supplier declarations against customs data and bill-of-lading records revealed discrepancies in over 35% of reported sub-supplier relationships, suggesting widespread misrepresentation.

Mineral traceability systems for conflict minerals remain fragile. Despite over a decade of implementation under the US Dodd-Frank Act Section 1502 and the EU Conflict Minerals Regulation, the Responsible Minerals Initiative acknowledged in 2025 that tracing tin, tantalum, tungsten, and gold to specific mine sites with full chain-of-custody integrity remains achievable for only approximately 60% of global smelter throughput. Artisanal and small-scale mining operations, which produce an estimated 20 to 30% of global cobalt and significant shares of tin and tantalum, frequently lack the documentation infrastructure for chain-of-custody tracking (OECD, 2025).

Remediation mechanisms for identified harms are underdeveloped and underfunded. Under the UNGPs framework, companies are expected to provide or contribute to remedy when they cause or contribute to adverse human rights impacts. In practice, fewer than 12% of companies reporting under the UK Modern Slavery Act disclosed any specific remediation actions taken for identified victims. Practitioners described remediation budgets as "the first line item cut" during cost pressures, and noted that legal departments frequently advise against acknowledging specific harms due to liability concerns, creating a fundamental tension between transparency and legal risk management.

Key Players

Established Companies

• Unilever: Consumer goods company with worker voice platforms deployed across 2,000 supplier factories reaching 500,000+ workers
• BMW Group: Automotive manufacturer with satellite-monitored cobalt traceability covering 100% of supply chain to mine level
• Inditex: Fashion retailer with 12,000+ supplier factories under monitoring and cross-industry audit data sharing through the Higg Index
• Nestlé: Food and beverage company with income accelerator program for cocoa farmers addressing child labor root causes

Startups and Innovators

• Ulula (now part of EcoVadis): Worker engagement platform using multilingual mobile surveys and AI sentiment analysis for supply chain grievance detection
• Sourcemap: Supply chain mapping platform providing end-to-end traceability visualization from raw material to finished product for over 50 enterprise clients
• Altana AI: AI-powered supply chain intelligence platform analyzing customs, shipping, and corporate data to map multi-tier supplier networks and flag risk
• FRDM (Freedom): Predictive analytics platform scoring supply chain forced labor risk using machine learning across trade, geographic, and industry datasets

Investors and Funders

• KnowTheChain: Investor-backed benchmark ranking 60+ companies across ICT, food and beverage, and apparel on forced labor due diligence practices
• Humanity United: Philanthropic organization investing in technology solutions and policy advocacy to combat forced labor in global supply chains
• CHRB (Corporate Human Rights Benchmark, now part of World Benchmarking Alliance): Investor-led initiative assessing the human rights performance of 250+ companies across high-risk sectors

Action Checklist

• Conduct a salient human rights issues assessment covering operations and supply chain tiers 1 through 4, prioritizing by severity to affected people rather than financial materiality alone
• Map supply chain to at least tier-3 using a combination of supplier self-disclosure, customs data cross-referencing, and AI-powered network analysis tools
• Deploy worker voice mechanisms in high-risk supplier facilities, ensuring multilingual access, anonymity protections, and management-independent grievance channels
• Replace or supplement traditional announced social audits with unannounced inspections, worker sentiment monitoring, and continuous data collection approaches
• Establish a dedicated remediation budget with clear protocols for victim support, including back-wage payments, relocation assistance, and access to legal counsel
• Cross-reference supplier declarations against independent data sources including customs records, satellite imagery, and civil society reports to validate reported supply chain structures
• Build CSDDD compliance documentation workflows into existing ERP and supplier management systems, including audit trails for due diligence decisions and escalation records
• Join collaborative industry initiatives such as the Responsible Minerals Initiative or Sustainable Apparel Coalition to reduce duplicative audit burden and access shared supplier performance data

FAQ

Q: How should engineering teams approach building tier-2 and tier-3 supplier visibility systems when direct relationships do not exist? A: Start with data integration rather than direct engagement. Customs and import records, bills of lading, and trade databases provide independent supply chain mapping data that can be cross-referenced against tier-1 supplier declarations. Platforms like Altana AI and Sourcemap aggregate these data sources to build probabilistic supply chain maps. Complement data-driven mapping with contractual requirements for tier-1 suppliers to disclose sub-suppliers, but validate those disclosures against independent data. For commodity supply chains (minerals, agricultural products), engage with industry traceability initiatives that maintain smelter or processing facility databases. Accept that 100% visibility is not achievable initially and focus resources on the highest-risk nodes identified through country, commodity, and industry risk indicators.

Q: What is the realistic timeline for CSDDD compliance and what should companies prioritize first? A: The CSDDD requires member state transposition by July 2026, with phased application starting with the largest companies (over 5,000 employees and >1.5 billion EUR turnover) from 2027. Companies should prioritize three workstreams in parallel: first, conduct the salient issues assessment to identify which human rights risks are most severe in their specific value chains; second, map the supply chain to at least tier-2 with independent data validation; third, establish or upgrade grievance mechanisms so that affected stakeholders have accessible reporting channels. Legal compliance documentation, including evidence of due diligence processes and decision rationale, should be embedded from day one rather than retrofitted.

Q: How do worker voice platforms compare to traditional social audits in cost and effectiveness? A: Worker voice platforms typically cost $2 to $5 per worker per year for deployment and ongoing operation, compared to $3,000 to $8,000 per factory for a standard social audit lasting 1 to 2 days. For a factory with 2,000 workers, annual worker voice costs of $4,000 to $10,000 are comparable to a single audit but provide continuous data rather than a snapshot. Effectiveness data strongly favors worker voice: Unilever's deployment found that worker voice platforms detected 3 to 4 times more grievances than audit-based methods. The key advantage is that worker voice data captures concerns as they emerge, enabling early intervention before issues escalate. However, worker voice does not replace all audit functions, as physical inspection of safety equipment, chemical storage, and building structural integrity still requires on-site verification.

Q: How should companies handle situations where withdrawing from a supplier may worsen conditions for workers? A: The UNGPs explicitly address this dilemma, recommending that disengagement should be a last resort after attempts at leverage and remediation have failed. Practitioners recommend a graduated response: first, provide the supplier with a clear corrective action plan, specific timelines, and technical support; second, if progress stalls, reduce order volumes to increase urgency while maintaining the commercial relationship; third, engage other buyers sourcing from the same facility to amplify collective leverage; fourth, only disengage if sustained engagement fails to produce improvement. When disengagement is necessary, companies should consider the impact on workers and explore whether industry transition support, such as retraining programs or severance funding, can mitigate harm. Document the entire process to demonstrate due diligence under CSDDD requirements.

Sources

• Business & Human Rights Resource Centre. (2025). Corporate Due Diligence Readiness Tracker: CSDDD Implementation Survey 2025. London: BHRRC.
• International Labour Organization. (2024). Global Estimates of Modern Slavery: Forced Labour and Forced Marriage. Geneva: ILO.
• US Customs and Border Protection. (2025). UFLPA Enforcement Statistics: Fiscal Years 2022 to 2025. Washington, DC: CBP.
• Responsible Business Alliance. (2025). Responsible Factory Initiative: Two-Year Impact Assessment Report. Arlington, VA: RBA.
• BMW Group. (2025). Supply Chain Transparency Report 2024: Mineral Traceability and Due Diligence. Munich: BMW AG.
• OECD. (2025). Due Diligence Guidance for Responsible Supply Chains of Minerals from Conflict-Affected and High-Risk Areas: Implementation Review. Paris: OECD Publishing.
• Unilever. (2025). Human Rights Report 2024: Worker Voice Programme Results and Supplier Development. London: Unilever PLC.