115 Life Is On | Schneider Electric www.se.com Chapter 2 – Sustainable development Strategic Report 2. 2.2.9.4 Mitigation actions The following measures are the main actions implemented to mitigate the highest risks identified in the vigilance risk matrix. Key Topics Risk Categories Policies implemented and Mitigation Actions Pages Schneider Electric sites Human rights Decent workplace See section “2.2.7 Human Rights” (i) and section “2.2.8 Employee health and safety page 109” (ii) for more details on the deployment of health, safety, and human rights actions on Schneider Electric sites. It covers, notably: • Schneider Electric’s employees’ safety; • Human rights and people development policies; • Well-being programs. (i) page 106; (ii) page 109 Health and Safety Environment Pollution and specific substances management See section “2.3 Acting for a climate positive world”, for more details on the deployment of environmental actions on Schneider’s sites. It covers, notably: • Certification of its sites to ISO standards; • Schneider Electric specific programs to reduce CO 2 emissions; • Reduction of SF 6 emissions; • Schneider Energy Action program for energy efficiency; • Reduction of waste and increased circularity. page 126 Waste and circularity Energy CO 2 and GHG Business Ethics Ethical Business Conduct See section “2.2.2 Ethics and Compliance” (i) and section “2.2.3 Zero-tolerance for corruption” (ii) for more details on the deployment of business ethics actions on Schneider Electric sites. It covers, notably: • Internal and external alert systems; • Third-party relationship management; • Specific anti-corruption actions. (i) page 95; (ii) page 101 Alert system, protection and non-retaliation Offer safety Offer safety See section “2.2.5 High standards for the quality and safety of our products” for more details on the deployment of offer safety actions. It covers, notably: • Sustainability Quality Excellence; • Reliability. page 102 Cybersecurity and Data privacy Cybersecurity See section “2.2.6 Digital trust and security” for more details on the deployment of data privacy and cybersecurity actions. It covers, notably: • Cybersecurity by design approach; • Personal data protection; • Training and awareness on cybersecurity. page 105 Data privacy Suppliers Suppliers Supplier vigilance See section “2.2.11 Sustainable relations with suppliers” for more details on the deployment of actions towards Schneider Electric’s suppliers. It covers notably: • Continuous Improvement process based on ISO 26000 standards; • Decent Work program for strategic suppliers; • Vigilance plan for suppliers; • Zero Carbon Project. p ag e 117 Subcontractors Sub- contractors Subcontractors vigilance See section “2.2.10 Relations with project execution contractors” for more details on the deployment of actions towards Schneider Electric’s subcontractors (or solution suppliers). It covers notably: • Integration of ESG into the project decision making; • Vigilance plan for project contractors. p ag e 116 Local Communities Local communities Around Schneider Electric sites See section “2.2.12 Vigilance with local communities” for more details on the deployment of health, safety, and human rights actions around Schneider Electric and customer projects sites. It covers, notably: • Risk mitigation around Schneider Electric sites; • Risk mitigation around customer project sites. page 124 Around customer projects sites