Compliance

Compliance at Geberit

Compliance at Geberit does not just mean adhering to applicable laws and regulations, but also includes guidelines for social, economic and environmental responsibility. High ethical and social standards are defined and the company commits to integrity and sustainability. Compliance within the company is based on the Code of Conduct for Employees and the Code of Conduct for Suppliers. Both codes were revised in 2025 and adapted to the latest standards.

Topics

The main compliance activities for Geberit encompass the areas: antitrust legislation, corruption, data protection, product liability, environment, occupational health and safety, as well as fundamental employee rights and supplier compliance. Clear reporting processes, such as Code of Conduct reporting, as well as internal and external audits are implemented to check the corresponding regulations are being adhered to.

The Corporate Legal Services department is responsible for the topics of antitrust legislation, data protection and corruption. Product liability is the responsibility of Product Quality Management. Corporate Sustainability is responsible for the subjects of the environment, occupational health and safety. Corporate Human Resources is responsible for fundamental employee rights.

Corporate compliance organisation

A decentralised compliance organisation (see graphic) and a consistently implemented compliance programme in all relevant risk areas form the basis of the high-quality compliance standards at Geberit. The aim of the decentralised organisation is to entrench the various compliance topics as close as possible to the responsible departments and thus in day-to-day business. The responsibilities are clearly defined. Structured controlling and reporting processes within the individual departments ensure that the Group Executive Board and the Audit Committee of the Board of Directors are informed promptly and comprehensively.

Furthermore, the Geberit Integrity Line makes it possible for employees and suppliers to anonymously report non-compliance both with the Code of Conduct and with legal regulations. This reporting system thus meets both the requirements set by the EU Whistleblower Directive and national laws.

Focus on antitrust legislation and data protection

As in previous years, compliance activities again focused on antitrust legislation and data protection in 2025. Regular training sessions and internal audits demonstrated a well-developed sensitivity and advanced understanding among the employees.

In antitrust legislation, the training documents were fully updated and expanded with current practical examples, references to judicial/official decisions and more. As in previous years, both general and needs-based training courses were held on this key topic at the relevant Geberit companies and business areas in the reporting year.

In the area of data protection, the audit concept was fundamentally reorganised and the risk-based approach expanded. The addition of low-threshold compact reviews to existing audits, which are limited to an analysis of the procedural landscape, allows for effective auditing of the companies in the required intensity. The central documentation platform for data protection was also optimised. In addition to general and specific training courses for various departments and local companies, the focus of training courses in the reporting year was on the new documentation platform.

As a result, Geberit has effective and up-to-date instruments at its disposal for implementing applicable law and for the comprehensive and straightforward training of affected employees on the topics of antitrust legislation and data protection, and can inform them of the applicable legal regulations and the directives within the Group.