Playbook: Building an ethical sourcing and human rights due diligence program

Why It Matters

An estimated 27.6 million people remain trapped in forced labor globally, with 17.3 million exploited in private-sector supply chains spanning agriculture, garment manufacturing, mining, and electronics assembly (ILO, 2025). The regulatory pressure to address this has intensified sharply. The EU Corporate Sustainability Due Diligence Directive (CSDDD), which entered into force in 2024, requires large companies to identify, prevent, and mitigate adverse human rights impacts across their entire value chains, with penalties of up to 5 percent of global net turnover for non-compliance (European Commission, 2024). Germany's Supply Chain Due Diligence Act (LkSG) has been enforced since January 2023 and expanded its scope to companies with 1,000 or more employees in 2024. The United States is advancing the Uyghur Forced Labor Prevention Act enforcement, blocking over $2.4 billion in imports at the border through 2025 (US Customs and Border Protection, 2025). Companies that lack a structured ethical sourcing and human rights due diligence (HRDD) program face import seizures, regulatory fines, litigation, and severe reputational harm.

The business case extends beyond compliance. A 2025 analysis by the Business & Human Rights Resource Centre found that companies with robust HRDD programs experienced 38 percent fewer supply disruptions, 22 percent lower supplier turnover, and measurably stronger brand trust scores compared with peers relying on audit-only approaches (BHRRC, 2025). Yet the KnowTheChain 2025 benchmark revealed that the average score across 100 global food and beverage companies on forced labor indicators was just 24 out of 100, with most companies still unable to demonstrate living wages, effective grievance mechanisms, or meaningful worker engagement below tier one (KnowTheChain, 2025). This playbook provides the five steps needed to close that gap.

Key Concepts

Human rights due diligence (HRDD). The UN Guiding Principles on Business and Human Rights (UNGPs) established the foundational framework: companies must conduct ongoing due diligence to identify, prevent, mitigate, and account for adverse human rights impacts in their operations and supply chains. HRDD is not a one-time audit but a continuous process encompassing stakeholder engagement, impact assessment, integration into business decisions, tracking effectiveness, and public reporting.

Salient human rights issues. Not all human rights risks carry the same severity or likelihood. The concept of salience, introduced by the UNGPs, directs companies to prioritize the human rights at greatest risk of the most severe negative impact through their activities or business relationships. For a garment company, salient issues might include forced labor, excessive working hours, and freedom of association. For a mining company, the list would emphasize land rights, community displacement, and occupational health and safety.

Beyond audits. Social audits have been the dominant compliance tool for decades, but their effectiveness is increasingly questioned. Research by Cornell University and the Worker Rights Consortium found that traditional announced audits detect fewer than 30 percent of labor violations, with forced labor indicators particularly difficult to identify through facility walkthroughs and document reviews (LeBaron, 2024). The field is shifting toward complementary approaches including worker voice technologies, community-based monitoring, and rights-holder-centered assessments.

Remedy and remediation. When adverse impacts are identified, companies have a responsibility to provide or contribute to remedy. Effective remediation goes beyond corrective action plans to include compensation for affected workers, access to grievance mechanisms, and structural changes that prevent recurrence. The OECD Due Diligence Guidance for Responsible Business Conduct provides the most widely adopted framework for structuring remediation processes.

Step 1: Conduct a Salient Human Rights Risk Assessment

Begin by mapping the company's value chain and identifying where the most severe human rights risks are concentrated. This requires looking beyond tier 1 suppliers to raw material origins, subcontractors, and informal labor networks.

Use a combination of desk research, stakeholder consultation, and data analytics. The Walk Free Foundation's Global Slavery Index, the US Department of Labor's List of Goods Produced by Child Labor or Forced Labor, and the ITUC Global Rights Index provide country-level and sector-level risk profiles. Cross-reference procurement data with these risk indices to generate a heat map of salient issues by commodity, geography, and supplier tier.

Engage rights-holders directly. Consult with workers, trade unions, community organizations, and civil society groups in sourcing regions. Patagonia's salient risk assessment process includes annual worker interviews conducted by independent third parties in every major sourcing country, covering 95 percent of its tier 1 and 60 percent of its tier 2 supply base (Patagonia, 2025). The company credits this direct engagement with surfacing forced overtime practices in two Taiwanese factories that standard audits had missed.

Deliverable: a salient human rights risk matrix mapping issues by severity, likelihood, commodity, and geography, with identified priority areas for deeper assessment.

Step 2: Map Supply Chain Tiers and Establish Traceability

Effective HRDD requires visibility beyond tier 1. The CSDDD explicitly requires due diligence across the "chain of activities," including indirect suppliers and subcontractors. Yet most companies have limited visibility below their direct contractual relationships.

Begin by mapping tier 1 suppliers comprehensively, then extend mapping to tier 2 and beyond for high-risk commodities. Use supplier self-disclosure questionnaires, import records, and digital traceability platforms to build a multi-tier supply chain map.

Technology solutions are accelerating this process. Platforms such as Sourcemap, TrustTrace, and Altana AI use trade data, shipping records, and machine learning to reconstruct supply chain networks and identify hidden subcontracting. Nestlé deployed Sourcemap across its cocoa supply chain in 2024, achieving full traceability to farm level for 92 percent of its cocoa volume within 12 months, covering over 180,000 individual farms across Côte d'Ivoire, Ghana, and Ecuador (Nestlé, 2025).

For minerals supply chains, the Responsible Minerals Initiative (RMI) provides the Responsible Minerals Assurance Process (RMAP), which has audited over 400 smelters and refiners globally. Intel has used the RMAP framework since 2013 and achieved conformant or active sourcing status for 100 percent of its identified tin, tantalum, tungsten, and gold smelters by 2025 (Intel, 2025).

Deliverable: a multi-tier supply chain map with traceability to raw material origin for high-risk commodities.

Step 3: Implement Worker Voice and Grievance Mechanisms

Grievance mechanisms are a core requirement of the UNGPs and a mandatory element under the CSDDD. They must be legitimate, accessible, predictable, equitable, transparent, rights-compatible, and a source of continuous learning.

Traditional hotlines and suggestion boxes have low uptake among the workers most at risk. Language barriers, fear of retaliation, low literacy, and lack of trust in management-controlled channels suppress reporting. The shift to worker voice technology provides a more effective alternative.

Platforms such as WOVO (formerly Labor Solutions), Ulula, and Diginex use mobile-based surveys, SMS channels, and anonymous digital reporting to collect real-time worker sentiment data. WOVO's platform operates in over 50 languages and has collected more than 15 million worker survey responses across 4,000 workplaces globally since 2020 (WOVO, 2025). Gap Inc. integrated WOVO into its supplier monitoring program in 2023 and within 18 months identified 23 percent more grievances than its previous audit-based approach, with average resolution time dropping from 90 days to 28 days (Gap Inc., 2025).

Ensure grievance mechanisms are accessible to workers beyond tier 1, including those employed by subcontractors and labor recruiters. Provide multiple reporting channels, guarantee anonymity and non-retaliation, and publish aggregate grievance data and resolution rates.

Deliverable: operational grievance mechanisms accessible across all priority supply chain tiers, with worker voice technology deployed in high-risk facilities.

Step 4: Integrate HRDD into Procurement and Supplier Management

Ethical sourcing must be embedded in commercial relationships, not siloed in a compliance department. This requires integrating human rights criteria into procurement decisions, supplier onboarding, performance reviews, and contract terms.

Update supplier codes of conduct to reflect CSDDD and UNGP requirements. Include specific provisions on forced labor, child labor, freedom of association, living wages, working hours, and the right to remedy. Require suppliers to cascade equivalent requirements to their own suppliers.

Build human rights performance into supplier scorecards alongside quality, cost, and delivery metrics. Assign weight to HRDD indicators in sourcing decisions. Adidas uses a supplier performance framework that weights social compliance at 20 percent of the total supplier score, with direct consequences for order allocation. Suppliers that receive failing scores on human rights indicators are placed on probationary status with a mandatory 90-day remediation timeline, and those that fail to remediate are exited from the supply base (Adidas, 2025).

Invest in purchasing practices reform. Research by the ILO and the ETI has consistently shown that buyer purchasing practices, including short lead times, last-minute order changes, and price pressure, are root causes of labor violations in supplier factories (ILO, 2024). Responsible purchasing practices require forecasting stability, fair pricing, and lead time commitments that allow suppliers to plan production without resorting to excessive overtime or unauthorized subcontracting.

Deliverable: updated supplier code of conduct, HRDD-integrated supplier scorecards, and reformed purchasing practices guidelines.

Step 5: Monitor, Report, and Continuously Improve

Ongoing monitoring is what distinguishes HRDD from a one-time assessment. Establish a monitoring framework that combines multiple data sources: worker voice feedback, independent audits, civil society reports, media monitoring, and satellite or geospatial data for land rights and environmental impacts.

Set clear KPIs for the HRDD program. Track metrics such as the percentage of supply chain mapped to raw material origin, grievance resolution rates and timelines, percentage of suppliers meeting code of conduct requirements, number of remediation cases opened and closed, and worker satisfaction scores from voice surveys. The KnowTheChain benchmark framework provides a useful external scorecard for tracking progress against industry peers.

Report publicly on HRDD activities, findings, and outcomes. The CSDDD requires annual due diligence statements. The UK Modern Slavery Act, Australia's Modern Slavery Act, and Norway's Transparency Act all mandate public disclosure. Leading companies go beyond minimum requirements to publish detailed human rights reports. Unilever's 2025 Human Rights Report discloses specific findings from its salient risk assessments, describes remediation actions taken in response to identified impacts, and publishes worker voice survey participation rates and satisfaction scores across its 15 largest sourcing countries (Unilever, 2025).

Conduct annual reviews of the HRDD program to assess effectiveness, update the salient risk assessment, and adjust priorities based on emerging risks, regulatory changes, and stakeholder feedback.

Deliverable: a monitoring dashboard with defined KPIs, annual public HRDD report, and a continuous improvement calendar.

Common Pitfalls

Over-reliance on social audits. Announced audits detect fewer than 30 percent of labor violations and are particularly poor at identifying forced labor, wage theft through complex piece-rate systems, and freedom of association restrictions. Use audits as one tool among many, complemented by worker voice, community monitoring, and investigative research.

Stopping at tier 1. The most severe human rights risks are concentrated in raw material extraction and informal subcontracting, typically at tier 2 and beyond. Programs that only assess direct suppliers miss the majority of salient risks. Prioritize deep-tier mapping for high-risk commodities.

Treating HRDD as a compliance checkbox. Filing a due diligence statement without changing procurement practices, supplier relationships, or business models produces paper compliance but no real impact. Effective HRDD requires operational integration and cultural change.

Neglecting remedy. Identifying adverse impacts without providing remedy to affected workers violates the core principle of HRDD. Build remediation budgets and processes into the program design from the outset.

Ignoring purchasing practices. Companies that demand aggressive cost reductions and last-minute order changes while simultaneously requiring suppliers to meet labor standards create contradictory incentives. Align purchasing practices with human rights expectations.

Key Players

Established Leaders

• KnowTheChain — Benchmarks 500+ companies across food, ICT, and apparel sectors on forced labor indicators, providing the leading external accountability framework.
• Sedex — Operates the world's largest collaborative platform for supply chain social and environmental data, with over 85,000 member organizations sharing audit and self-assessment information.
• Responsible Minerals Initiative (RMI) — Provides smelter and refiner audit programs and tools for minerals supply chain due diligence adopted by over 400 companies.
• Fair Labor Association (FLA) — Accredits company labor compliance programs and conducts independent assessments of factory conditions across apparel, agriculture, and electronics.

Emerging Startups

• WOVO (formerly Labor Solutions) — Mobile-based worker voice platform operating in 50+ languages with 15 million+ survey responses collected across 4,000 workplaces.
• Ulula — Digital stakeholder engagement platform enabling anonymous worker reporting, community feedback, and rights-holder monitoring in supply chains.
• Sourcemap — End-to-end supply chain traceability platform using trade data and supplier mapping to provide farm-to-factory visibility.
• Altana AI — AI-powered supply chain intelligence platform reconstructing global trade networks for risk identification and compliance screening.

Key Investors/Funders

• Humanity United — Impact investment fund focused on ending modern slavery and human trafficking, providing catalytic capital to worker voice and supply chain transparency ventures.
• Laudes Foundation — Funds systemic change in fashion, built environment, and financial system supply chains, supporting worker rights and living wage initiatives.
• Open Society Foundations — Funds human rights due diligence research, civil society advocacy, and policy reform across global supply chains.

Action Checklist

• Conduct a salient human rights risk assessment covering all sourcing regions and commodities
• Map the supply chain to raw material origin for high-risk commodities
• Deploy a traceability platform for multi-tier supply chain visibility
• Implement worker voice technology in high-risk tier 1 and tier 2 facilities
• Establish operational grievance mechanisms accessible to all supply chain workers
• Update supplier code of conduct to reflect CSDDD and UNGP requirements
• Integrate HRDD criteria into supplier scorecards and procurement decisions
• Review and reform purchasing practices to eliminate root causes of labor violations
• Set program KPIs: mapping coverage, grievance resolution rates, remediation outcomes
• Publish an annual public HRDD report with findings and remediation actions
• Conduct annual program review and update salient risk assessment
• Engage rights-holders directly through worker interviews and community consultations

FAQ

What is the difference between ethical sourcing and human rights due diligence? Ethical sourcing is a broad term describing procurement practices that consider social and environmental impacts. HRDD is a specific, process-oriented framework defined by the UN Guiding Principles that requires companies to identify, prevent, mitigate, and account for adverse human rights impacts on an ongoing basis. HRDD is the mechanism through which ethical sourcing commitments are operationalized.

How much does an HRDD program cost? Costs depend on supply chain complexity and geographic scope. Initial salient risk assessments typically cost $50,000 to $200,000 for a multinational company. Worker voice platform deployments run $3 to $8 per worker per year. Multi-tier supply chain mapping platforms range from $100,000 to $500,000 annually. Independent social audits cost $2,000 to $10,000 per facility. However, companies with robust HRDD programs report that the investment is offset by reduced supply disruptions, lower litigation costs, and stronger buyer relationships.

Do we need to audit every supplier? No. A risk-based approach is more effective and more practical. Prioritize direct assessment for suppliers in high-risk geographies and sectors, focusing on commodities and regions where forced labor, child labor, and worker safety risks are highest. Use technology and data analytics to monitor the broader supply base and trigger deeper assessments when risk indicators are elevated.

How do we handle situations where we find severe human rights violations? Immediate disengagement is rarely the most responsible response. The UNGPs and OECD guidelines recommend that companies use their leverage to drive remediation before considering disengagement. Provide or contribute to remedy for affected workers, work with the supplier on a time-bound corrective action plan, and engage local civil society organizations and labor inspectorates. Disengagement should be a last resort when the supplier demonstrates no willingness to remediate, and the company should consider the potential adverse impacts of withdrawal on workers.

How does the CSDDD change existing requirements? The CSDDD moves HRDD from a voluntary best practice to a legal obligation for companies meeting the directive's size thresholds. It requires companies to adopt a due diligence policy, identify and assess adverse impacts, prevent and mitigate those impacts, establish grievance mechanisms, monitor effectiveness, and publicly communicate. The directive introduces civil liability provisions, allowing affected stakeholders to seek damages in EU courts. Companies already complying with the UNGPs and OECD guidelines will find the CSDDD requirements familiar, but the enforcement mechanisms and penalties represent a significant escalation.

Sources

• ILO. (2025). Global Estimates of Modern Slavery: Forced Labour and Forced Marriage, 2025 Update. International Labour Organization.
• European Commission. (2024). Corporate Sustainability Due Diligence Directive (CSDDD): Final Text and Implementation Guidance. European Commission.
• US Customs and Border Protection. (2025). Uyghur Forced Labor Prevention Act Enforcement Statistics: Cumulative Import Detentions and Exclusions. US CBP.
• BHRRC. (2025). Business Case for Human Rights Due Diligence: Supply Chain Resilience and Brand Trust Analysis. Business & Human Rights Resource Centre.
• KnowTheChain. (2025). Food & Beverage Benchmark 2025: Forced Labor Indicators Across 100 Global Companies. KnowTheChain.
• LeBaron, G. (2024). The Effectiveness of Social Auditing in Global Supply Chains: A Systematic Review. Cornell University ILR School.
• Patagonia. (2025). Social and Environmental Responsibility Report 2025: Salient Risk Assessment and Worker Interview Program. Patagonia, Inc.
• Nestlé. (2025). Creating Shared Value Report 2025: Cocoa Supply Chain Traceability and Farm-Level Mapping. Nestlé S.A.
• Intel. (2025). Corporate Responsibility Report 2025: Responsible Minerals Sourcing Program Update. Intel Corporation.
• WOVO. (2025). Worker Voice Platform Impact Report: 15 Million Survey Responses Across 4,000 Workplaces. WOVO (formerly Labor Solutions).
• Gap Inc. (2025). ESG Report 2025: Supplier Monitoring Program and Worker Voice Integration Results. Gap Inc.
• Adidas. (2025). Annual Report 2025: Supplier Performance Framework and Social Compliance Scoring. Adidas AG.
• ILO. (2024). Purchasing Practices and Labour Standards: Evidence from Global Supply Chains. International Labour Organization.
• Unilever. (2025). Human Rights Report 2025: Salient Risk Findings, Remediation Actions, and Worker Voice Outcomes. Unilever PLC.