What are the differences between these new laws, including ESRS and CSRD?

CSRD and ESRS are essentially the same thing – the Corporate Sustainability Reporting Directive is part of the EU Green Deal and was passed in Jan this year. The European Sustainability Reporting Standards define the criteria and indicators that apply within the CSRD… so by meeting them you are compliant with the CSRD.

What is the structure of fines if companies fail to report? 

Firstly, organisations have a maximum of 12 months after the balance sheet date, to submit the duly approved annual sustainability statements in the required electronic reporting format.

We are still waiting for final clarification of the process for evaluation and punitive measures. At the moment, if an organisation is guilty of being non-compliant with the CSRD it can expect administrative sanctions and three possible penalties: a public denunciation; an order to change conduct; and financial punishment of periodic penalty payments of up to EUR 50k amounting up to EUR 10 million or 5% of their annual revenue

Why are the new ESG laws (including ESRS & CSRD) in EU relevant to SME’s?

Let’s first define which companies have to submit ESG reports for 2024 – they need to have >500 employees and/or >40mEuro turnover and/or >20mEuro assets. So, at the moment the new ESG laws are not directly relevant to SMEs. However, an SME might be part of a supply chain for a company that does need to report, in which case you should expect to have to provide details about your Environmental, Social and Governance (ESG) performance.

However, the thresholds for companies that must report is reduced each year… at the moment listed SMEs with 10 employees or more will need to start reporting from 2027 and there are suggestions that all companies, listed or otherwise, with 40 employees or more having to report from 2028.

Who do we submit the ESG report to and how?

Companies will be expected to provide all ESRS related information in either their annual or management reports to the European Securities and Markets Authority (ESMA) in European Single Electronic Format (ESEF) digital format. This is to ensure that financial and ESG information is published at the same time and considered as a whole, rather than two separate entities. It is not yet clear which additional documents, for example for verification or as evidence, may be required to be reported.

In line with regulations, all sustainability information will need to be provided in XHTML format for standardisation and easier verification.

Does our ESG report need to be independently audited or verified?

Only public organisations will need to include an assurance report for sustainability disclosures subject to:

• On or before 1 October 2026, the European Commission will provide limited assurance standards for auditors to use when assessing the assurance of sustainability reports.
• On or before 1 October 2028, reasonable assurance standards will be provided—but only if it’s determined that reasonable assurance is feasible for auditors.

STEP 1: Policy Commitment

Develop, implement and communicate a policy on human rights due diligence. Incorporate your policy(s) and expectations in supplier and business relationships.

STEP 2: Process to Identify Risks

Develop a process to assess and identify the most significant risks within operators, suppliers and business relationships.

STEP 3: Act and Provide Remedy

Take action on the most significant risks. Develop and implement a remediation plan to cease, prevent and mitigate risks.

STEP 4: Track and Review Results

Track the implementation and results to evaluate the effectiveness of your due diligence processes. Implement continuous improvement and review process.

STEP 5: Communicate Publicly

Communicate human rights due diligence procedures, risks, activities and findings to stakeholders.

STEP 6: Cooperate for Remedy

Cooperate with other parties to enable remedy. Provide and promulgate grievance mechanisms.