NORMA Group SE’s compliance organization seeks to prevent violations of laws and other rules, in particular by taking preventive measures. Nevertheless, if there is evidence of violations, these matters are investigated promptly and thoroughly and the necessary consequences are taken. Findings are used to take steps to reduce the risk of future violations. Concrete steps are defined, implemented and tracked annually in a “Compliance Action Plan.”

Group-wide compliance activities are managed by the Chief Compliance Officer of NORMA Group SE, who reports to the Executive Vice President HR & Integrity and, if necessary, directly to the Chairman of the Management Board. In addition to the Compliance department in place at Group level, there are Compliance Delegates at the regional and individual company levels. The three regional Compliance Delegates for the EMEA, Americas and Asia-Pacific regions report to the Compliance department at NORMA Group. In addition, each operating Group company has its own local Compliance Delegate, who reports to the respective Regional Compliance Delegate. The Supervisory Board is responsible for monitoring the appropriateness of the Compliance Management System.

The compliance organization conducts regular risk analyses together with the respective units, functions and departments in order to determine and monitor the risk profile of countries, Group companies and functions. Based on the risk analyses, the compliance organization identifies the respective need to take action and initiates the appropriate measures.

Employee training courses are held regularly on selected risk areas and important current topics or developments. In addition to training on specific focus topics, all employees worldwide are trained on the basic compliance rules and important content of the compliance policies. Participation in these training courses is monitored. Among the training courses of basic importance, which must be completed as basic training by all NORMA Group employees with a PC workstation, are the online training courses “Code of Conduct & Compliance Basics” and “Anti-Corruption.” Depending on their job profile, employees are also required to take part in specific focus training courses (including “Antitrust and Competition Law”). In the past fiscal year, Compliance Safety Cards were developed for employees without a PC workstation, particularly those in the area of production, in all relevant languages in order to clearly communicate important compliance topics. The compliance organization also offers face-to-face training on an ad hoc basis, if necessary. Employees also receive relevant, up-to-date compliance information regularly and on an ad hoc basis via various information channels, the intranet, brochures, e-mails and notices, for example.

The  COMPLIANCE GUIDELINES of NORMA Group represent an important means of communicating to employees NORMA Group’s understanding of compliance and demonstrating their ethical and legal obligations. All compliance documents are reviewed regularly and, if necessary, adapted to new legal or social requirements and thus always kept up to date. In the last fiscal year, the current compliance guidelines were supplemented by a separate guideline on whistleblower protection that will be rolled out in the new fiscal year.

The compliance guidelines also include requirements in the area of  HUMAN RIGHTS (including forced and child labor, freedom of association and anti-discrimination). A separate Code of Conduct (“Supplier Code of Conduct”) applies to suppliers. The Supplier Code of Conduct is intended to help ensure that laws and ethical rules are also observed within NORMA Group’s supply chain. The compliance guidelines are as well reviewed and updated on a regular basis to determine whether changes are necessary.

NORMA Group encourages its employees to report violations of regulations and internal guidelines, if necessary also across hierarchy levels. In addition to personally approaching superiors, the HR department or the Compliance Delegates, an Internet-based whistleblower system is available for this purpose  WHISTLEBLOWER SYSTEM. This whistleblower system allows internal and external whistleblowers to report suspicious cases to NORMA Group’s compliance organization and, if necessary, to maintain their anonymity. In cases where the electronic whistleblower system cannot be easily used by employees for technical or organizational reasons (for example, lack of PC access by employees in production), NORMA Group offers other suitable reporting channels, such as information boxes at production sites. In addition to the main electronic whistleblower channel, NORMA Group offers additional or alternative reporting channels at all sites where local laws require these. In addition, any member of NORMA Group’s compliance organization can be contacted at any time regarding all questions and issues related to compliance.

Both the suitability and the adequacy of the reporting system are reviewed regularly – with regard to the requirements of the “Directive (EU) 2019/1937 of the European Parliament and of the Council of October 23, 2019, on the protection of persons who report infringements of Union law” (the so-called “Whistleblower Protection Directive”), for example, as well as the respective implementing laws of the Member States. The system is adapted if necessary. In view of the fact that in many cases the Whistleblower Protection Directive has not yet been transposed into the national law of the EU Member States, further developments are monitored closely and any adjustments necessary are made.

The members of the compliance organization investigate any indications of compliance violations. If violations of compliance rules are discovered or weaknesses in the organization are identified, the management initiates the necessary and appropriate measures in consultation with the compliance organization in a timely manner. These measures range, depending on the specific individual case, for example, from targeted training measures to changes in organizational procedures to disciplinary measures including termination of employment.

Legend

These contents are part of the Non-financial Group Report and were subject to a separate limited assurance examination.