25 Life Is On | Schneider Electric www.se.com 2021 Trust Report 9.4 Mitigation actions The following measures are the main actions implemented to mitigate the highest risks identified in the vigilance risk matrix. Key Topics Risk Categories Policies implemented and Mitigation Actions Pages Schneider Electric sites Human rights Decent workplace See section “7 Human Rights” (i) and section “8 Employee health and safety” (ii) for more details on the deployment of health, safety, and human rights actions on Schneider Electric sites. It covers, notably: • Schneider Electric’s employees’ safety; • Human rights and people development policies; • Well-being programs. (i) page 16; (ii) page 19 Health and Safety Environment Pollution and specific substances management See section “2.3 Acting for a climate positive world”, for more details on the deployment of environmental actions on Schneider’s sites. It covers, notably: • Certification of its sites to ISO standards; • Schneider Electric specific programs to reduce CO 2 emissions; • Reduction of SF 6 emissions; • Schneider Energy Action program for energy efficiency; • Reduction of waste and increased circularity. URD page 126 Waste and circularity Energy CO 2 and GHG Business Ethics Ethical Business Conduct See section “2 Ethics and Compliance” (i) and section “3 Zero-tolerance for corruption” (ii) for more details on the deployment of business ethics actions on Schneider Electric sites. It covers, notably: • Internal and external alert systems; • Third-party relationship management; • Specific anti-corruption actions. (i) page 5; (ii) page 11 Alert system, protection and non-retaliation Offer safety Offer safety See section “5 High standards for the quality and safety of our products” for more details on the deployment of offer safety actions. It covers, notably: • Sustainability Quality Excellence; • Reliability. page 12 Cybersecurity and Data privacy Cybersecurity See section “6 Digital trust and security” for more details on the deployment of data privacy and cybersecurity actions. It covers, notably: • Cybersecurity by design approach; • Personal data protection; • Training and awareness on cybersecurity. page 15 Data privacy Suppliers Suppliers Supplier vigilance See section “11 Sustainable relations with suppliers” for more details on the deployment of actions towards Schneider Electric’s suppliers. It covers notably: • Continuous Improvement process based on ISO 26000 standards; • Decent Work program for strategic suppliers; • Vigilance plan for suppliers; • Zero Carbon Project. page 27 Subcontractors Sub- contractors Subcontractors vigilance See section “10 Relations with project execution contractors” for more details on the deployment of actions towards Schneider Electric’s subcontractors (or solution suppliers). It covers notably: • Integration of ESG into the project decision making; • Vigilance plan for project contractors. page 26 Local Communities Local communities Around Schneider Electric sites See section “12 Vigilance with local communities” for more details on the deployment of health, safety, and human rights actions around Schneider Electric and customer projects sites. It covers, notably: • Risk mitigation around Schneider Electric sites; • Risk mitigation around customer project sites. page 34 Around customer projects sites