4 minute read

Commitment to Ethical Business

Our commitment to conducting ethical business practices is integral to our operations. Our policies, procedures, and communications are a reflection of our unwavering dedication to responsible and principled leadership. These policies and principles also dictate the ethical standards that we expect all employees, contractors, and suppliers to follow.

The Corporate Governance, Nominating & Ethics Committee formed by our Board of Directors discusses business ethics, data security, data privacy, and related topics on a quarterly basis. Our daily operations are supported by our CEO and executive team, who consistently set an example of transparency and accountability in their actions and communications through frequent interactions with employees and other stakeholders. Regular engagement includes encouraging direct feedback and persistently working to enhance and strengthen our ethical business practices.

Business Ethics

We strive to conduct business with the highest degree of integrity and honesty. Our Code of Business and Ethical Conduct outlines our approach, including compliance with applicable laws, rules, and regulations, conflicts of interest, insider trading, competition and fair dealing, equal employment opportunity, health and safety, confidentiality, protection and proper use of company assets, anti-corruption, anti-bribery, fair labor standards, whistleblower policies, and similar topics. In addition to our Code of Business and Ethical Conduct, we maintain robust policies and procedures on anti-discrimination, anti-harassment, supplier and vendor compliance, and other compliance considerations.

Compliance

Ensuring that all employees are trained on ethical business behavior is crucial to upholding our ethical business practices. We provide regular training to our employees on ethical business behavior, which includes our Code of Business and Ethical Conduct and Anti-Discrimination and Anti-Harassment Policy. Within 90 days of their start date, new employees are required to complete initial training on the Code of Conduct, which is refreshed bi-annually for all employees.

Our Board of Directors, with direction from our legal team as necessary, monitors our compliance with our Code of Conduct. We communicate our approach to complying with the Code of Conduct in great detail, which encompasses a straightforward and comprehensible process for assessing and resolving potential concerns.

We depend on and trust our management, including executive staff, to enforce the Code of Conduct and ensure that our employees maintain ethical business standards. The Code of Conduct is regularly and systematically reviewed to ensure our policies and regulatory compliance meet or exceed the requirements of the countries in which we operate. The revisions are overseen by the Corporate Governance, Nominating & Ethics Committee in conjunction with the Audit Committee and support from our legal team. The revisions are conducted at a higher frequency than what is required by the Corporate Governance, Nominating & Ethics Committee’s charter.

Preventive Action

Taking action to prevent problems is a part of our culture. Our Whistleblower Policy outlines numerous avenues to report concerns, including:

• Contacting our third-party anonymous toll-free whistleblower hotline staffed by a trained operator 24/7/365

• Calling our direct toll-free ethics hotline

• Contacting the chair of our Board’s Audit Committee

Data Security And Privacy

Keeping our data and our stakeholders’ data secure is of utmost importance in this digital age. We stay proactive in ensuring our data handling processes are safe, lawful, and ethical. SGC and its segments comply with applicable data security and privacy laws, in addition to our company’s, divisions’, and customers’ data privacy policies.

“I’m thrilled to see the strides we’ve made in enhancing our data security and privacy measures. With a strong foundation in place, we can now focus on continuously improving and adapting to the ever-evolving threat landscape.”

- Dwayne B, Director of Infrastructure Security

We strengthen our practices by promoting a robust internal data security culture backed by privacy policies, data security certifications, and employee training. Supported by third-party resources, our internal data security team closely surveils our security networks to ensure we successfully perform our operations while protecting personal information. We invest in current technologies, perform regular penetration testing, conduct employee training, use a tier-one secured access data center, and follow industry best practices to safeguard against threats.

Under the leadership of our Director of IT Security and Compliance, we have continued to build upon our strong foundation of data security toward a systematic approach to managing sensitive company information. In 2022, we partnered with an independent third party and data consultants to strengthen our internal documentation and processes. We also continued to pursue ISO 27001 and ISO 27701 certifications, which help organizations establish, implement, maintain, and continually improve their information security management system, providing assurance that their data is secure and protected. We are proud to share that our Branded Products and Healthcare Apparel segments achieved these certifications in 2023.

We integrate responsible data security practices at every level of our organization. We achieve this through comprehensive training, certification, and compliance programs. Our employees undergo multiple training sessions each year using a reputable third-party security training platform. These sessions cover various topics related to security and privacy best practices, awareness, prevention, and remediation.

2,489 Employees

5,966 Employees

Data Security

Our teams follow industry best practices and ensure compliance with applicable laws and regulations. We maintain industry certifications and take various steps to safeguard our information and technology assets.

To oversee our data security approach, our Corporate Governance, Nominating & Ethics Committee reviews related topics on a quarterly basis and discusses them with the full Board of Directors at least once per year. Company leaders are responsible for managing data security practices across the company and its segments, emphasizing the importance of conscientious and responsible data security practices at every level of our organization. Our data security practices are integrated throughout our business operations and include secure data encryption, regular system audits, and use of a tier-one secured access data center. We are committed to maintaining the confidentiality, integrity, and availability of our data, as well as the privacy of our customers and stakeholders.

Data Privacy

Our Data Privacy Policy outlines how we collect, process, use, disclose, and store data provided by those who utilize our website, communicate with us, or use our products and services. To help maintain data confidentiality, we use Secure Sockets Layer (SSL) encryption for particularly sensitive data and regularly audit our system for possible vulnerabilities and attacks. Divisions within SGC, including BAMKO, CID Resources/Wink, Fashion Seal Healthcare, and The Office Gurus (TOG), maintain supplemental policies that are specifically tailored to their businesses and industries.

Data Security Certifications for SGC and Company Divisions include:

This article is from: