- The Story of GFT Technologies
- Sustainability
- Professional Integrity
Professional Integrity
GFT Endorses the United Nations 2030 Agenda for Sustainable Development
Since 2019, GFT has been a member of the United Nations Global Compact, the largest voluntary initiative for responsible corporate governance worldwide. Together with our Corporate Governance framework, it forms the foundation for how we manage our business responsibly. We believe that strong governance stakeholder engagement, and transparent sustainability practices are essential to long-term business success.
Governance & accountability
The Administrative Board of GFT Technologies SE is responsible for corporate strategy and all major decisions, including sustainability. It gives due consideration to environmental and social objectives, and systematically identifies and evaluates the impacts, risks and opportunities associated with these factors.
The Group CSR Committee is a Group-wide and cross-functional steering committee chaired by the CFO that supports and reports to the Administrative Board. Meeting three times a year, it reviews progress on the CSR agenda at operating level and advises on implementing measures to achieve our sustainability goals.
Stakeholder engagement
We can only be successful if we take due account of the needs and expectations of our stakeholders: clients, employees and shareholders, as well as suppliers and partners. Engagement takes place through surveys, events, PR, social media, and direct dialogue.
We listen and respond to evolving needs and expectations. And we continually assess our role in the supply chains of our clients. Authorities and ESG rating agencies are key indirect stakeholders, and we also consider the broader context of politics, society and the environment.
Compliance & ethics
GFT’s Compliance Management System ensures adherence to legal requirements, ethical standards, and internationally recognised labor and social norms, as set out in our global Code of Ethics and Code of Conduct. We respect employees’ rights to freedom of association and collective bargaining, and where restricted by law, support alternative forms of representation. The Compliance Office oversees implementation, training, and reporting channels. More information is available on our Compliance page.
Environmental protection
Guided by our Group Environmental Policy, we are improving operational efficiency including reducing energy consumption, raising renewable energy use, and advancing sustainable procurement practices. These measures are integral to achieving our climate goals.
Cybersecurity and resilience
Our cybersecurity & resilience strategy aims to protect the company, its people, and its tangible and intangible assets, while ensuring business continuity.
Our information security management system (ISMS) is certified to ISO/IEC 27001 for exemplary areas and ensures consistent security policies across all entities.. Our German subsidiary is also TISAX certified for the automotive industry.
All employees are responsible for data security and complete annual mandatory training. Our Global Information Security Operations Centre (GISOC) monitors systems 24/7, supported by a zero trust network model. GFT’s resilient business model includes distributed delivery processes, cloud-based applications, and a hybrid working model, ensuring business continuity and security.
Data protection & privacy
Our data protection framework is built on respect for human rights and legislation, fostering trust in digital transformation for our clients, partners, and employees.
Our policies and guidelines ensure a high level of data protection across all GFT operations, even in countries without robust data protection laws. Mandatory and optional training ensures employees understand and comply with these standards. Our GFT Group Data Sharing Agreement is a unified approach to safely share personal data within the Group.
A global incident handling process is in place for quick response to any data breaches, protecting individuals’ rights and preventing significant damage. Our Data Protection by Design approach integrates data protection into IT systems from the start, with ongoing Privacy Engineer training and awareness campaigns.
We are committed to Responsible AI. Since 2020, GFT Group Data Protection have issued guidelines on AI and Machine Learning, and pseudonymisation, which was derived from the ACM Statement on Algorithmic Transparency and Accountability. In 2023, we launched a taskforce to develop guidelines for using AI tools like ChatGPT, ensuring safe, effective and compliant use. In 2024, a section on responsible AI was added to the GFT Group Data Protection Policy and a GFT Group Data Protection Guideline for Responsible AI was issued. GFT has committed to the AI PACT, underscoring our pledge to transparency, fairness, and accountability in AI development and use.
