symantec’s 2012 global reporting initiative index · 2020-05-05 · symantec’s 2012 global...

Symantec’s 2012 Global Reporting Initiative Index

Symantec uses the Global Reporting Initiative’s Sustainability Reporting Guidelines (GRI G3) in developing its corporate responsibility reports. The GRI checked Symantec’s FY12 report against its criteria and has certified the report at the B+ Application Level. Bureau Veritas provided limited assurance. The content index table below provides links to GRI disclosures and indicators.

Also, as a signatory to the United Nations Global Compact (UNGC), Symantec is required to annually communicate its progress in promoting the UNGC’s ten principles. The content index cross-references each of the ten principles to the location where they are discussed in our latest Corporate Responsibility Report and serves as Symantec’s Communication on Progress (COP).

+ Standard Disclosures Part I: Profile Disclosures

+ 1. STRATEGY AND ANALYSIS

Profile Disclosure LocationFull/Partial

UNGC Cross-Reference

1.1 Statement from the most senior decision-maker of the organization

PDF Report: CEO Letter, pages 7-8 Full

Statement of continuing support for the UNGC

1.2 Description of key impacts, risks, and opportunities

10-K pages 13-25

GRI Profile Disclosure 4.8

PDF Report: CEO Letter, pages 7-8

PDF Report: Management Approach, page 9

PDF Report: Performance Tables, pages 5-6

PDF Report: Our People, pages 14-20

PDF Report: The World, pages 22-30

PDF Report: Your Information, pages 32-38

Full

+ 2. ORGANIZATIONAL PROFILE



2.1 Name of the organization Symantec Corporation Full

2.2 Primary brands, products, and/or services

Corporate Fact Sheet

Corporate Profile

PDF Report: About Symantec, pages 3-4

Symantec outsources 100% of its global software and appliance manufacturing, storage, and distribution. Software manufacturing and distribution is consolidated into three suppliers globally, one each in North America; Europe, Middle East, and Africa; and Asia-Pacific/Japan regions. The North American supplier is a certified Minority Business Enterprise/Small Business Enterprise. Appliance manufacturing & distribution is consolidated into five suppliers globally.

Full

2.3 Operational structure of the organization, including main divisions, operating companies, subsidiaries, and joint ventures

10-K, page 4 and Exhibit 21.01 Full

2.4 Location of organization’s headquarters 350 Ellis Street, Mountain View, California, 94043 USA Full

2.5 Number of countries where the organization operates, and names of countries with either major operations or that are specifically relevant to the sustainability issues covered in the report

10-K, page 4

10-K, page 45

Operations in more than 48 countries including: United States, United Kingdom, Ireland, Singapore, India

Full

2.6 Nature of ownership and legal form

10-K, page 4

Corporate Fact Sheet

Symantec is a publicly owned C Corporation

Full

2.7 Markets served (including geographic breakdown, sectors served, and types of customers/beneficiaries)

10-K, page 4-9

We conduct our business in three geographic regions: Americas, which is comprised of the United States, Canada, and Latin America; Europe, the Middle East and Africa (“EMEA”); and Asia Pacific Japan (“APJ”).

Full

http://www.symantec.com/content/en/us/about/media/corporate_responsibility/b-symantec-(B+)-gri-application-level-check.pdf

http://www.symantec.com/content/en/us/about/media/pdfs/cdp-verification.pdf


http://www.symantec.com/content/en/us/about/media/pdfs/b-2012_corporate_responsibility_report.en-us.pdf#page=7

http://phx.corporate-ir.net/External.File?item=UGFyZW50SUQ9MTQyNTM5fENoaWxkSUQ9LTF8VHlwZT0z&t=1







http://www.symantec.com/content/en/us/about/media/Symantec_Corporate_Fact_Sheet.pdf

http://www.symantec.com/about/profile/

http://phx.corporate-ir.net/External.File?item=UGFyZW50SUQ9MTQyNTM5fENoaWxkSUQ9LTF8VHlwZT0z&t=1#page=4

http://www.symantec.com/about/profile/business.jsp




http://www.symantec.com/content/en/us/about/media/Symantec_Corporate_Fact_Sheet.pdf



+ 2. ORGANIZATIONAL PROFILE


2.8 Scale of the reporting organization

10-K, pages 6-9, 64-65


PDF Report: Our People, page 14

Full

2.9 Significant changes during the reporting period regarding size, structure, or ownership

10-K, pages 5-6 Full

2.10 Awards received in the reporting period

PDF Report: Awards and Recognition, page 12 Full

+ 3. REPORT PARAMETERS


3.1 Reporting period (e.g., fiscal/calendar year) for information provided.

This iteration of Symantec’s corporate responsibility report covers a reporting period corresponding to the company’s fiscal year 2012 (April 2011 to March 2012)

Full

3.2 Date of most recent previous report (if any).

Symantec’s 2011 Corporate Responsibility Report was released on September 28, 2011 and covered the company’s 2011 fiscal year (April 2010 to March 2011).

Full

3.3 Reporting cycle (annual, biennial, etc.)

Symantec releases biennial full corporate responsibility reports with annual UNGC COPs and updates to performance summaries and goals.

Full

3.4 Contact point for questions regarding the report or its contents.

PDF Report: About This Report, page 43 Full

3.5 Process for defining report content.

PDF Report: About This Report, page 43


The process by which we identified the stakeholders who we believe are most likely to use this report is based upon our evaluation of past report readership and feedback. We conducted a report feedback survey in which participants were asked to self identify with a stakeholder group. We received comments directly though our email address and at in person meetings. We also conducted outreach to specific stakeholder groups to better understand the type of corporate responsibility information they are likely to use. We cataloged the feedback that was provided as well as the stakeholder groups that were self-identified. As a result of this process, we expect that employees, customers, investors, and nongovernmental organizations (NGOs) will be the most frequent users of the FY12 CR report.

Materiality Analysis Process

We conduct our materiality analyses by compiling information regarding topics of potential interest from various source documents such as customer RFPs, investor information requests, media coverage, peer reports, industry and trade association documents, and internal and external surveys as well as direct stakeholder interviews. We score and rank the topics based on these evaluations, and further refine the placement of topics on our materiality matrix through internal discussions and deliberations with corporate responsibility team members and company managers and executives.

Linkage to GRI Guidance on Defining Report Content

The materiality analysis process we use, coupled with our extensive stakeholder engagement and outreach efforts, conforms to the GRI Guidance on Defining Report Content. Our process meets the GRI requirements for addressing the principles of Sustainability Context, Materiality, Completeness, and Stakeholder Inclusiveness.

Full

3.6 Boundary of the report (e.g., countries, divisions, subsidiaries, leased facilities, joint ventures, suppliers).

The data provided in this report reflects Symantec’s global operations, unless otherwise noted. The Huawei Symantec Joint Venture is not covered in this report as Symantec held a 49% interest in the company during FY12, and divested of Huawei Symantec Joint Venture to Huawei in March 2012, prior to the end of Symantec’s 2012 fiscal year.

Accident and injury statistics are US only as global statistics are not tracked.

Full

3.7 State any specific limitations on the scope or boundary of the report

The boundary of the FY12 report includes Symantec’s global operations. There may be specific limitations on certain aspects of data but those occurances are clearly indicated within the report.

Full

3.8 Basis for reporting on joint ventures, subsidiaries, leased facilities, outsourced operations, and other entities that can significantly affect comparability from period to period and/or between organizations.

Profile Indicator 3.06 Full










+ 3. REPORT PARAMETERS


3.9 Data measurement techniques and the bases of calculations, including assumptions and techniques underlying estimations applied to the compilation of the Indicators and other information in the report.

CDP Response, page 24

GHG emissions verification statement

In order to measure GHG emissions, Symantec used the following methodology:

The Greenhouse Gas Protocol: A Corporate Accounting and Reporting Standard (Revised Edition) in conjunction with the US EPA’s Climate Leaders Greenhouse Gas Protocol: Design Principals provide the overarching methodology for Symantec’s greenhouse gas inventory. The following source specific documents are used as guidance emission factors and the collection of activity data:

US EPA Climate Leaders: Mobile Source Guidance

US EPA Climate Leaders: Direct Emissions from Stationary Combustion

US EPA Climate Leaders: Indirect Emissions from Purchases/ Sales of Electricity and Steam

US EPA Climate Leaders: Direct HFC and PFC Emissions from Use of Refrigeration and Air Conditioning Equipment

The verification of GHG emissions reporting was conducted using the World Resources Institute (WRI)/World Business Council for Sustainable Development (WBCSD) Greenhouse Gas Protocol.

There were no decisions made to diverge from the GRI Indicator Protocols.

Full

3.10 Explanation of the effect of any re-statements of information provided in earlier reports, and the reasons for such re-statement (e.g.,mergers/acquisitions, change of base years/periods, nature of business, measurement methods).

PDF Report: Performance Data, page 42 Full

3.11 Significant changes from previous reporting periods in the scope, boundary, or measurement methods applied in the report.

No significant changes Full

3.12 Table identifying the location of the Standard Disclosures in the report.

Online GRI Index Full

3.13 Policy and current practice with regard to seeking external assurance for the report.

Assurance Statement

Symantec has externally assured its GHG emissions figures for FY12 with a global audit covering all three emissions scopes.

Full

+ 4. GOVERNANCE, COMMITMENTS, AND ENGAGEMENT


4.1 Governance structure of the organization, including committees under the highest governance body responsible for specific tasks, such as setting strategy or organizational oversight.

Proxy Statement, pages 5-16

Section III.B. of the Nominating and Governance Committee Charter

The Nominating and Governance Committee bears primary responsibility for corporate responsibility issues. It receives regular briefings on Symantec’s corporate responsibility objectives and performance and oversees the companys compliance with legal requirements and ethical standards.

As of July 2012, Symantec’s governance structure and committee composition changed along with the appointment of a new CEO. Please see Symantec’s Corporate Governance web pages for details.

Full

4.2 Indicate whether the Chair of the highest governance body is also an executive officer.

The roles of Symantec’s Chairman and CEO were separate during the FY12 reporting period.

As of July 25, 2012, the roles of the Chairman and CEO are combined. See: http://www.symantec.com/about/news/release/article.jsp?prid=20120725_01

Full

4.3 For organizations that have a unitary board structure, state the number of members of the highest governance body that are independent and/or non-executive members.

Proxy Statement, pages 6

Symantec has a unitary board structure. During the FY12 reporting period, we had a ten-member Board composed of nine independent directors and the CEO.

As of July 25, 2012, the roles of the Chairman of the Board and CEO are combined. See: http://www.symantec.com/about/news/release/article.jsp?prid=20120725_01

Full

https://www.cdproject.net/en-US/Results/Pages/Company-Responses.aspx?company=18125&page=24



http://www.symantec.com/corporate_responsibility/topic.jsp?id=gri_index

http://www.symantec.com/corporate_responsibility/topic.jsp?id=about_report

http://www.sec.gov/Archives/edgar/data/849399/000095012311082112/f59737dedef14a.htm

http://investor.symantec.com/phoenix.zhtml?c=89422&p=irol-govHighlights

http://www.symantec.com/corporate_responsibility/topic.jsp?id=our_approach

http://www.symantec.com/about/news/release/article.jsp?prid=20120725_01









4.4 Mechanisms for shareholders and employees to provide recommendations or direction to the highest governance body.

Symantec shareholders and employees may provide feedback to the Board of Directors by contacting our Corporate Secretary:

Symantec Corporation 350 Ellis Street, Mountain View, California 94043 USA Attn: Corporate Secretary

For more information, please see Contacting the Board of Directors on page 12 of the Company’s proxy statement.

The process for minority shareholders to submit shareholder resolutions and feedback to the Board of Directors is discussed on page 6 of the Company’s proxy statement, and in Article I of the Company’s Bylaws.

Employees may contact the Corporate Secretary to submit matters for the Board of Directors to review. Only one board member is an employee of the Company, the CEO; there is no direct works council representation.

Full

4.5 Linkage between compensation for members of the highest governance body, senior managers, and executives (including departure arrangements), and the organization’s performance (including social and environmental performance).

In furtherance of Symantec’s pay for performance philosophy, performance-based restricted stock units are granted to executive officers in lieu of time-based stock options. PRUs can be earned depending upon the achievement of specific performance metrics. Please see Compensation Discussion & Analysis (CD&A) in our proxy statement for further details.

Full

4.6 Processes in place for the highest governance body to ensure conflicts of interest are avoided.

Please see “Conflicts of Interest” described in section C.6. of the Corporate Governance Standards of the Board of Directors of Symantec Corporation, as amended and restated on 30 April 2012.

Full

4.7 Process for determining the qualifications and expertise of the members of the highest governance body for guiding the organization’s strategy on economic, environmental, and social topics.

Please refer to (i) Board Membership Criteria, section A.1. of the Corporate Governance Standards of the Board of Directors of Symantec Corporation, as amended and restated on 30 April 2012; (ii) Criteria for Nomination to the Board on page 11 of Symantec’s proxy statement; and (iii) Nominating Duties, section III.A. of the Charter of the Nominating and Governance Committee of the Board of Directors, as amended and restated on 23 January 2012.

Full

4.8 Internally developed statements of mission or values, codes of conduct, and principles relevant to economic, environmental, and social performance and the status of their implementation.

Company Charters

Global Anti-Corruption (Internal guidance document)

Charitable Contributions (Internal document)

Symantec’s values statement, privacy statement, and code of conduct apply to all of our global operations.

Additional policies reflecting Symantec’s environmental, social, and economic considerations include:

Human rights: Our human rights policy is based on the Universal Declaration of Human Rights and the International Labor Organizations core conventions.

Environment: An environmental policy, which was updated in FY12.

Supply chain: A Global Supply Chain and Fulfillment Code of Conduct and a Global Supplier Code of Conduct (which was developed during FY12 for roll-out in FY13).

We are also signatories of the United Nations Global Compact and supporters of the UN Women’s Empowerment Principles.

Full

4.9 Procedures of the highest governance body for overseeing the organization’s identification and management of economic, environmental, and social performance, including relevant risks and opportunities, and adherence or compliance with internationally agreed standards, codes of conduct, and principles.

Please refer to Corporate Governance Duties, section III.B. of the Charter of the Nominating and Governance Committee of the Board of Directors, which includes oversight of the Code of Conduct and Company’s policies and programs concerning corporate citizenship and social responsibility.

The Nominating and Governance Committee of the Board of Directors reviews Symantec’s sustainability performance annually, and receives updates regarding Corporate Responsiblity issues on a quarterly basis. Please refer to Corporate Governance Duties, section III.B. of the Charter of the Nominating and Governance Committee of the Board of Directors.

Full

4.10 Processes for evaluating the highest governance body’s own performance, particularly with respect to economic, environmental, and social performance.

Please refer to Board and Committee Effectiveness on page 7 of the Company’s proxy statement

Full



http://phx.corporate-ir.net/External.File?item=UGFyZW50SUQ9OTE4OTR8Q2hpbGRJRD0tMXxUeXBlPTM=&t=1


http://investor.symantec.com/phoenix.zhtml?c=89422&p=irol-govhighlights








http://www.symantec.com/about/careers/working/values.jsp

http://www.symantec.com/about/profile/policies/privacy.jsp

http://www.symantec.com/content/en/us/enterprise/other_resources/code-of-conduct.en-us.pdf

http://www.symantec.com/content/en/us/about/media/sym_human_rights_policy_statement.pdf

http://www.symantec.com/content/en/us/about/media/environmental_policy_statement.pdf

http://www.symantec.com/en/uk/themes/theme.jsp?themeid=procurement-COD-supp-chain-mft-fulfillment

http://www.symantec.com/en/uk/themes/theme.jsp?themeid=procurement-code-of-conduct

http://www.symantec.com/en/uk/themes/theme.jsp?themeid=procurement-code-of-conduct










4.11 Explanation of whether and how the precautionary approach or principle is addressed by the organization.

The precautionary principle is not applied specifically across the organization, nor in the development and introduction of new products. Symantec uses a model similar to the Precautionary Principle for risk management with regard to Business Continuity. Our Business Continuity team determines the impact likelihood of each threat occurring and conducts exercises to ensure full understanding of possible impact. This allows us to determine and report any unacceptable single points of failure.

Formula used to determine risk: Risk Value = Threat Impact x Threat Probability.

Full Principal 7

4.12 Externally developed economic, environmental, and social charters, principles, or other initiatives to which the organization subscribes or endorses.

PDF Report: UNGC Support & Activities, page 11

United Nations Women’s Empowerment Principles

United Nations Convention Against Corruption

Universal Declaration of Human Rights

ILO Core Conventions

USGBC LEED and US EPA Energy Star programs

Full

4.13 Memberships in associations (such as industry associations) and/or national/international advocacy organizations in which the organization: * Has positions in governance bodies; *Participates in projects or committees; * Provides substantive funding beyond routine membership dues; or * Views membership as strategic.

Trade and industry associations: • Business Software Alliance (BSA)• Information Technology Industry Council (ITI)• TechAmerica• TechNet

Environmental/Climate Change policy: • Business for Innovative Climate & Energy Policy (BICEP)

Diversity and Gender: • Anita Borg Institute• National Center for Women & Information Technology (NCWIT)

CyberCrime Prevention: • National Cyber Forensic Training alliance (NCFTA)• National Center for Justice and the Rule of Law (NCRLJ)• National White Collar Crime Consortium (NW3C)

Full

Symantec’s involvement in UNGC Network activities

4.14 List of stakeholder groups engaged by the organization.

Stakeholder Engagement

PDF Report: About This Report, page 43Full

4.15 Basis for identification and selection of stakeholders with whom to engage.

We identify our stakeholders by considering to what degree they are significantly affected by Symantec’s actions and whether or not a given stakeholder’s actions significantly impact our company. We survey and interact with a representative set of organizations and individuals to establish the landscape of stakeholder concerns and determine whether deeper engagement is called for on certain issues with certain stakeholder groups. For the purposes of the FY12 CR report, we revisited our 2008 and 2010 analysis of stakeholders and then revised the list of stakeholders to engage or not engage based on the prioritization and time and budget constraints.

Full

4.16 Approaches to stakeholder engagement, including frequency of engagement by type and by stakeholder group.

Ongoing Engagement with shareholders and socially responsible investors is principally achieved through the regular issuance of financial statements, our annual 10-K and proxy statement, as well as responses to analyst surveys & questionnaires throughout the year.

Consumer and enterprise customers and channel partners are surveyed continuously throughout the year depending on the customer segment and geography.

Employees are surveyed twice a year (one smaller ‘pulse survey’ in the fall) and a large survey in the spring.

Community members are engaged through our CR Report, post-report surveys and email feedback, and in-person presentations, as well as through our philanthropic initiatives.

NGOs and nonprofit organizations are engaged continously throughout the year with meetings, phone conversations, volunteer projects, and feedback.

Regulators, depending on the regulatory body, are engaged per normal schedule of interaction.

Additionally, at the end of our last reporting cycle, we collected feedback on our CR Report from a distinguished panel of sustainability practitioners, through a series of in-depth interviews. In our FY12 CR Report, we have reported on our efforts to incorporate much of this feedback into our corporate responsibility disclosures.

Full

http://www.symantec.com/corporate_responsibility/topic.jsp?id=stakeholder_engagement






4.17 Key topics and concerns that have been raised through stakeholder engagement, and how the organization has responded to those key topics and concerns, including through its reporting.

Symantec Corporate Responsibility Snapshot, Issue 14: Stakeholder Perspectives, December 2011


PDF Report: The World, pages 25, 28-30

PDF Report: Your Information, page 33, 36

Full

+ Standard Disclosures Part II: Disclosures on Management Approach (DMAs)

Description LocationFull/Partial


Disclosure on Management Approach ECPrinciples 1, 4, 6, 7

EC. Economic performance

2012 Annual Report, pages 1-3

10-K, The World, pages 5-12

CDP response, pages 4-5, 7-8, 10


Full

EC. Market presence 10-K, pages 5-12, 13-25 Full

EC. Indirect economic impacts

PDF Report: Profile Disclosure 4.8


PDF Report: Our People, pages 15, 18-20



PDF Report: Performance Data, page 40

Full

Disclosure on Management Approach ENPrinciples 7, 8, 9

EN. Materials

Environmental Policy Statement

CR Microsite links: Environmental Performance

PDF Report: Performance Highlights & Goals, page 5

PDF Report: The World, page 22-23, 27

PDF Report: Performance Date, page 41

Full

EN. Energy


Symantec IT Energy ROI Tool


PDF Report: The World, page 22-26

Full

EN. Water Not Reported Full

EN. Biodiversity Not Reported Full

EN. Emissions, effluents and waste


CDP Verification Statement

CDP Response, pages 4-5, 9-10, 14-22

PDF Report: CEO Letter, page 8



PDF Report: Performance data, page 41

Full

EN. Products and services


Symantec IT Energy ROI Tool

CDP Response, pages 4-5


PDF Report: The World, page 5

PDF Report: Data Tables, page 41

Full

EN. ComplianceCDP Response, pages 4-5, 13, 18

PDF Report: The World, pages 22, 27Full




http://phx.corporate-ir.net/External.File?item=UGFyZW50SUQ9NDc4NDk4fENoaWxkSUQ9NTExNjY4fFR5cGU9MQ==&t=1


https://www.cdproject.net/en-US/Results/Pages/Company-Responses.aspx?company=18125









http://www.imakenews.com/symantec_globalgreennews/e_article001546844.cfm?x=b11,0,w

http://www.symantec.com/corporate_responsibility/topic.jsp?id=environmental_performance




http://eval.symantec.com/mktginfo/enterprise/fact_sheets/b-symc_it_energy_roi_tool_DS_20025235.en-us.pdf











http://eval.symantec.com/mktginfo/enterprise/fact_sheets/b-symc_it_energy_roi_tool_DS_20025235.en-us.pdf








Description Location Full/PartialUNGC Cross-Reference

EN. Transport



CR Microsite link: Environmental Performance




Full

EN. Overall



PDF Report: CEO Letter, page 8

CR Microsite link: Environmental Performance




Full

Disclosure on Management Approach LA Principles 1, 3, 6

LA. Employment

Code of Conduct

Human Rights policy


PDF Report: Performance Highlights and Goals, page 5



Full

LA. Labor/management relations

Code of Conduct

Human Rights policy



PDF Report: Our People, page 14-15


Full

LA. Occupational health and safetyPerformance Indicator LA.07


Partial - No occupational health and safety indicators are fully reported

LA. Training and education

Code of Conduct

Human Rights policy



PDF Report: Our People, page 14-17


Full

LA. Diversity and equal opportunity






Full

Disclosure on Management Approach HR Principles 1 through 6

HR. Investment and procurement practices

10-K, page 52

Symantec Global Procurement Website



Full

HR. Non-discrimination No related indicators have been fully responded to. Not Reported

HR. Freedom of association and collective bargaining

Human Rights policy

Performance Indicator HR.05


Full







































http://www.symantec.com/en/uk/themes/theme.jsp?themeid=procurement-index






Description Location Full/PartialUNGC Cross-Reference

HR. Child labor

Human Rights policy




Full

HR. Forced and compulsory labor

Human Rights policy



Full

HR. Security practices

Human Rights policy


Symantec does not establish specific goals related to building and personnel security practices.

Symantec has established Service Level Agreements with all of our significant suppliers, including all suppliers who provide man guarding services. Symantec has developed a supplier management program that centers around quarterly business reviews and establishes goals and performance measures. Our security suppliers report to Symantec Regional Security Managers who work with suppliers on operational issues with oversight responsibility from an enterprise-wide service delivery Director. Symantec has an ongoing security awareness program that reaches all regions and we have an annual security survey that measures our performance against technology company norms, from an employee perspective, with a “voice of the company” component that solicits freeform feedback that we incorporate into our future planning.

Full

HR. Indigenous rights Not Material Not Reported

Disclosure on Management Approach SO

Principle 10

SO. Community Not Material Not Reported

SO. Corruption

Code of Conduct

Anti-corruption and Bribery policy (Internal guidance document)

Performance Indicator SO.02




Full

SO. Public policy

Global Political Contributions Policy

Political Engagement page


PDF Report: Your Information, 32, 34-36

Full

SO. Anti-competitive behavior

Code of Conduct



Full

SO. Compliance

Code of Conduct

Supply Chain codes of conduct

Privacy Policy



PDF Report: Performance Highlights and Goals, page 5-6


PDF Report: Your Information, page 37

Full

Disclosure on Management Approach PR

Principles 1 and 8

PR. Customer health and safety Not Material Not Reported









http://www.symantec.com/content/en/us/about/media/pdfs/b-symantec_global_political_contributions_policy.en-us.pdf

http://www.symantec.com/about/government/political-engagement.jsp






http://www.symantec.com/en/uk/themes/theme.jsp?themeid=procurement-COD-supp-chain-mft-fulfillment







Description Location Full/Partial UNGC Cross-Reference

PR. Product and service labellingSymantec’s Customer-Driven Philosophy

Performance Indicator PR.05Full

This DMA relates only to Customer Satisfaction, as PR.05 is the only fully reported indicator for this aspect area.

PR. Marketing communications

Privacy Policy


PDF Report: Your Information, page 37-38

Full

PR. Customer privacy

Privacy Policy




Full

PR. CompliancePrivacy Policy

PDF Report: Your Information, page 37Full

+ Standard Disclosures Part III: Performance Indicators

+ ECONOMIC

Performance Indicator LocationFull/Partial


EC1. Direct economic value generated and distributed, including revenues, operating costs, employee compensation, donations and other community investments, retained earnings, and payments to capital providers and governments. (CORE)

10-K, pages 46-49, 64-67, 99-103



Full

EC2. Financial implications and other risks and opportunities for the organization’s activities due to climate change. (CORE)

CDP Response, pages 7, 15-18, 20-22 Full Principle 7

EC3. Coverage of the organization’s defined benefit plan obligations. (CORE)

10-K, pages 64, 94 Parital

EC4. Significant financial assistance received from government. (CORE)

Not MaterialNot Reported

EC5. Range of ratios of standard entry level wage compared to local minimum wage at significant locations of operation. (ADDITIONAL)

Not reported Principle 1

EC6. Policy, practices, and proportion of spending on locally-based suppliers at significant locations of operation. (CORE)

Symantec’s Global Sourcing & Procurement Policy is applied worldwide.

Symantec’s sourcing decisions are primarily based on the overall best value for the organization. There are many elements that define best value including location, environmental considerations, corporate responsibility considerations, location, transportation, warranties etc. No specific local buying policy is in place.

In our software Supply Chain, leadtime is at a premium--thus local suppliers would have an advantage. Local in this context is local to our outsource manufacturers.

Full

http://www.symantec.com/themes/theme.jsp?themeid=customer_driven















http://www.symantec.com/corporate_responsibility/topic.jsp?id=gri_index#


+ ECONOMIC



EC7. Procedures for local hiring and proportion of senior management hired from the local community at significant locations of operation. (CORE)

Symantec does not have a policy for strictly hiring local residents at significant locations of operations. However, Symantec prefers to have its workforce at significant locations reflect the immediate community in which it operates and as a result the vast majority of its hires are from the local region. There is deliberate flexibility within this practice due to Symantec’s overall philosophy to hire the best candidate for the position and to increase the diversity of its workforce by casting a wider net. Remaining open to candidates from outside the local area allows Symantec to consider all qualified applicants and provides Symantec with the best opportunity to satisfy both objectives of hiring the best qualified candidate and to achieve its diversity goals.

For purposes of this question, Symantec defines senior management as the following positions: CEO, Group President, SVP, VPS, EVP, VP. Due to the demanding nature of these positions, the performance expectations of individuals who occupy these positions, and the size and complexity of Symantec Corporation as a global entity, it is in Symantec’s best interest to invest recruiting resources commensurate with the skill, experience, and knowledge required to be successful at these levels. As a result, Symantec’s executive recruiting efforts involve an exhaustive talent search. While certain geographical regions may have a greater concentration of qualified candidates for executive positions, most regions do not offer the degree of choice necessary to find the very best candidate possible. Symantec’s experience has been that there is a favorably greater number of qualified candidates to consider if our search includes all qualified candidates, regardless of their location. However, Symantec is pleased that its executive recruiting approach has produced a 71% local executive hire rate for 2011.

Full Principle 6

EC8. Development and impact of infrastructure investments and services provided primarily for public benefit through commercial, in-kind, or pro bono engagement. (CORE)



Symantec has an Internet Safety Advocate in each major region keeping current on children’s internet usage needs and the problems they face with bullying, too much computer time, online gaming, etc. Our Norton Online Family product was developed based on these needs.

With each nonprofit we work with, we perform a needs assessment, asking what problems they face, and what resources could help them the most. Together we design a grant portflio based on their needs and our available funding. Symantec’s software donation program is open in most countries where our partner Tech Soup Global has nonprofit partners. These countries are chosen based on unique needs and capacities.

Full

EC9. Understanding and describing significant indirect economic impacts, including the extent of impacts. (ADDITIONAL)






No specific examples of negative economic impacts are available.

Symantec’s employee volunteerism programs and philanthropic initiatives help to advance the goals of the UNGC and assist in furthering progress towards meeting UN Millenium Development Goals, specifically with regard to women’s rights and empowerment.

Full

+ ENVIRONMENTAL

Performance Indicator Location Full/PartialUNGC Cross-Reference

EN1. Materials used by weight or volume. (CORE) Not Material Not Reported Principle 8

EN2. Percentage of materials used that are recycled input materials. (CORE)

PDF Report: Performance Data, page 41 Full Principle 8

EN3. Direct energy consumption by primary energy source. (CORE) PDF Report: Performance Data, page 41 Full Principle 8

EN4. Indirect energy consumption by primary source. (CORE) PDF Report: Performance Data, page 41 Partial Principle 8

EN5. Energy saved due to conservation and efficiency improvements. (ADDITIONAL)

Not Material Not Reported Principle 8

EN6. Initiatives to provide energy-efficient or renewable energy based products and services, and reductions in energy requirements as a result of these initiatives. (ADDITIONAL)


Performance Indicator EN.05


Full Principle 8














+ ENVIRONMENTAL


EN7. Initiatives to reduce indirect energy consumption and reductions achieved. (ADDITIONAL)


PDF Report: The World, pages 22-23, 25-26Full Principle 8

EN8. Total water withdrawal by source. (CORE) Not Material Not Reported Principle 8

EN9. Water sources significantly affected by withdrawal of water. (ADDITIONAL)


EN10. Percentage and total volume of water recycled and reused. (ADDITIONAL)


EN11. Location and size of land owned, leased, managed in, or adjacent to, protected areas and areas of high biodiversity value outside protected areas. (CORE)


EN12. Description of significant impacts of activities, products, and services on biodiversity in protected areas and areas of high biodiversity value outside protected areas. (CORE)


EN13. Habitats protected or restored. (ADDITIONAL) Not Material Not Reported Principle 8

EN14. Strategies, current actions, and future plans for managing impacts on biodiversity. (ADDITIONAL)


EN15. Number of IUCN Red List species and national conservation list species with habitats in areas affected by operations, by level of extinction risk. (ADDITIONAL)


EN16. Total direct and indirect greenhouse gas emissions by weight. (CORE)

CDP Response, pages 23-31, 40-41

PDF Report: Performance Data, page 41Full Principle 8

EN17. Other relevant indirect greenhouse gas emissions by weight. (CORE)


PDF Report: Performance Data, page 41Full Principle 8

EN18. Initiatives to reduce greenhouse gas emissions and reductions achieved. (ADDITIONAL)

The World, pages 23-24

PDF Report: Performance Data, page 41Full

Principles 7 and 8

EN19. Emissions of ozone-depleting substances by weight. (CORE)Symantec has no ozone-depleting substances to report at this time.

Full Principle 8

EN20. NOx, SOx, and other significant air emissions by type and weight. (CORE)

Symantec’s baseline consists of four (4) greenhouse gases: CO2 (Carbon Dioxide), CH4 (Methane), N2O (Nitrous Oxide), HFCs (Hydroflurocarbons). Symantec currently has no emissions from PFCs or SF6.

FY12CO2 (Carbon Dioxide): 188,835 CO2eCH4 (Methane): 3.95N2O (Nitrous Oxide): 3.3HFCs (Hydroflurocarbons): 0

Symatnec has no SOx emissions to report at this time.

The two fugitive emissions sources included in our Scope 1 emissions are:Refrigerants: 937 mt CO2eFire Supression: 545 mt CO2e

Symantec has no significant particulate matter to report at this time.

Partial Principle 8

EN21. Total water discharge by quality and destination. (CORE) Not Material Not Reported Principle 8











+ ENVIRONMENTAL


EN22. Total weight of waste by type and disposal method. (CORE)


Global total amount of waste in tonnes: 1. Compost - 3,499,730 (LB) 2. Reuse - N/A 3. Recycling - N/A 4. Recovery - N/A 5. Incineration (or use as fuel) - N/A 6. Landfill - 5,127,200 (LB) 7. Deep well injection - N/A 8. On-site storage - N/A 9. Mixed Recycling -2,379,130 (LB) 10. Cans & Bottles -53,300 (LB) 11. Cardboard - 1,620,450 (LB) 12. Printer Tonner - 3,120 (LB) 13. Bulbs/Lamps - 9,490 (LB) 14. Batteries - 24,050 (LB)

Data is based on information provided by our waste disposal contractor(s) at our Dublin, Ireland recycling site only.

Equipment that has reached the end of its useful life is sent to third party vendors for proper recycling. When possible, we utilize local contractors or large companies that recycle locally in order to support community economies while reducing transportation costs and CO2 emissions. These vendors offer services such as hardware retrieval, asset tag and identifier removal, sorting, and environmentally responsible data wiping, cleaning, and destruction procedures.

Partial Principle 8

EN23. Total number and volume of significant spills. (CORE)


EN24. Weight of transported, imported, exported, or treated waste deemed hazardous under the terms of the Basel Convention Annex I, II, III, and VIII, and percentage of transported waste shipped internationally.(ADDITIONAL)


EN25. Identity, size, protected status, and biodiversity value of water bodies and related habitats significantly affected by the reporting organization’s discharges of water and runoff. (ADDITIONAL)


EN26. Initiatives to mitigate environmental impacts of products and services, and extent of impact mitigation. (CORE)

CDP Response

PDF Report: The World, pages 23-24, 26Partial

Principles 7 and 8

EN27. Percentage of products sold and their packaging materials that are reclaimed by category. (CORE)


EN28. Monetary value of significant fines and total number of non-monetary sanctions for non-compliance with environmental laws and regulations. (CORE)

We maintain compliance with all applicable regulatory and legislative requirements. Symantec facilities did not experience any environmental incidents in FY12, nor were any environmental fines or penalties incurred.

Full Principle 8

EN29. Significant environmental impacts of transporting products and other goods and materials used for the organization’s operations, and transporting members of the workforce. (ADDITIONAL)


PDF Report: The World, pages 22, 24


Significant impacts are related to the use of fuels and release of Scope 1 GHG emissions. (Direct fuel use: natural gas, propane, diesel, gasoline, refrigerants, gas fire suppression systems.)

Full Principle 8

EN30. Total environmental protection expenditures and investments by type. (ADDITIONAL)

Not Material Not ReportedPrinciples 7 and 8









+ SOCIAL: LABOR PRACTICES AND DECENT WORK


LA1. Total workforce by employment type, employment contract, and region. (CORE)


Full time employees: 20,953

Part time employees: 129

Full

LA2. Total number and rate of employee turnover by age group, gender, and region. (CORE)

Total employee turnover, FY12: Male: 2576 (18.05%) Female: 889 (16.44%) Americas: 1675 (17.47%) APJ: 597 (20.35%) EMEA: 619 (16.92%) India: 585 (16.58%)

Partial Principle 6

LA3. Benefits provided to full-time employees that are not provided to temporary or part-time employees, by major operations. (ADDITIONAL)

Employee Benefits

Employees actively working at least twenty (20) hours per week are eligible to participate in Symantec’s Benefit Programs. Employees who actively work less than 20 hours per week are only eligible to participate in our paid time off and holiday pay program at a pro-rated rate.

Full

LA4. Percentage of employees covered by collective bargaining agreements. (CORE)

We support employees rights to freedom of association; eighteen percent of Symantec employees are covered by collective bargaining agreements and/or belong to works councils.

Full Principle 3

LA5. Minimum notice period(s) regarding significant operational changes, including whether it is specified in collective agreements. (CORE)


LA6. Percentage of total workforce represented in formal joint management-worker health and safety committees that help monitor and advise on occupational health and safety programs. (ADDITIONAL)


LA7. Rates of injury, occupational diseases, lost days, and absenteeism, and number of work-related fatalities by region. (CORE)


(U.S. incident and illness data only.)

The data represents all injuries and illnesses reported to the Corporate Security and Safety Team in the US over FY12 and includes minor first aid injuries.

Lost days are calculated on calender days.

The days lost commence the day following the incident/ injury.

Symantec operates in accordance with local regulatory requirements including standards and rules established for the reporting of accidents and incidents. Symantec uses an internal database system for the logging and monitoring of accidents and incidents when they occur. This system is used to generate internal incident reports and is used when further incident investigation is required. Symantec also uses collected injury and illness data for regulatory reporting to OHSA, the HSE, HSA and others. OHSA data is made available to employees via the Symantec Intranet.

Partial Principle 1

LA8. Education, training, counseling, prevention, and risk-control programs in place to assist workforce members, their families, or community members regarding serious diseases. (CORE)


LA9. Health and safety topics covered in formal agreements with trade unions. (ADDITIONAL)

Not Material Not Reported

LA10. Average hours of training per year per employee by employee category. (CORE)

Average number of hours of training per year per employee by employee category: Directors and above 27 Managers 36 Individual Contributors 32

Full


http://www.symantec.com/content/en/us/about/benefits/benefits_home.html



+ SOCIAL: LABOR PRACTICES AND DECENT WORK


LA11. Programs for skills management and lifelong learning that support the continued employability of employees and assist them in managing career endings. (ADDITIONAL)

PDF Report: Our People, pages 15-17

Symantec provides tuition reimbursement for college entrance exams, exam preparation courses, and job-related courses leading to a degree (for examples AA/AS, BA/BS, MBA) from an accredited college or university that directly relate to the employees career development within Symantec.

Symantec does not currently offer sabbaticals to employees.

Symantec provides resources through our Employee Assistance Program (EAP) and 401(k) Provider Putnam that help employees understand the financial and emotional impacts of retirement.

Severance payments are provided to eligible employees at the Manager and Individual Contributor level, and are calculated according to the duration of recipients’ employment with the Company. Eligible employees at the Vice President level are also entitled to receive six months of outplacement services, at the Manager level entitlement is 3 months, and at the Individual Contributor level entitlement is one month including counseling and guidance. If an eligible employee timely elects COBRA continuation coverage under Symantec’s group insurance plans, Symantec will also subsidize the full amount of premiums for such eligible employees for the period of time upon which severance payments are paid under the plan. Symantec will subsidize premiums for continuation coverage at the same level of coverage in effect immediately before termination of employment for the applicable employee.

Full

LA12. Percentage of employees receiving regular performance and career development reviews. (ADDITIONAL)

PDF Report: Our People, page 16 Full

LA13. Composition of governance bodies and breakdown of employees per category according to gender, age group, minority group membership, and other indicators of diversity. (CORE)

Management Team

Committee Composition

Currently Symantec has one female Board member (10% of total) and one Board member representing the Hispanic minority population (10% of total).

PartialPrinciples 1 and 6

LA14. Ratio of basic salary of men to women by employee category. (CORE)


+ SOCIAL: HUMAN RIGHTS



HR1. Percentage and total number of significant investment agreements that include human rights clauses or that have undergone human rights screening. (CORE)

We did not enter into any significant contracts during FY12. Significant defined as, entry into a “material definitive agreement” or a “material amendment of a material definitive agreement” that is made in the “ordinary course of business” where the agreement involves a financial commitment equal to or greater than USD$10M over the term of the agreement (requires approval by the CFO).

FullPrinciples 1 through 6

HR2. Percentage of significant suppliers and contractors that have undergone screening on human rights and actions taken. (CORE)


All Symantec’s tier one supply chain suppliers have acknowledged that they will comply with Symantecs Global Supply Chain Manufacturing and Fulfillment Code of Conduct. In addition, the Code of Conduct has been added to new contracts that were agreed during FY12. During FY13 existing contracts will be updated to include Symantec’s Global Supply Chain Manufacturing and Fulfillment Code of Conduct. Symantec’s tier one supply chain suppliers will be audited for compliance during FY13.

No contracts were declined, had performance conditions imposed, or were subject to other actions as a result of human rights screening.


HR3. Total hours of employee training on policies and procedures concerning aspects of human rights that are relevant to operations, including the percentage of employees trained. (ADDITIONAL)


PDF Report: The World, pages 27-28Partial

Principles 1 through 6



http://www.symantec.com/about/profile/management/

http://investor.symantec.com/phoenix.zhtml?c=89422&p=irol-govCommComp





+ SOCIAL: HUMAN RIGHTS



HR4. Total number of incidents of discrimination and actions taken. (CORE)


Principle 6

HR5. Operations identified in which the right to exercise freedom of association and collective bargaining may be at significant risk, and actions taken to support these rights. (CORE)

No operations have been identified where employees’ right to exercise freedom of association or collective bargaining is at risk. Symantec did not undertake any specific measures related to workers’ rights to freedom of association and collective bargaining during the reporting period.

FullPrinciples 1, 2, 3

HR6. Operations identified as having significant risk for incidents of child labor, and measures taken to contribute to the elimination of child labor. (CORE)


None. Symantec does not see a significant risk for incidents of child labor to be exposed to hazardous work in its operations.


HR7. Operations identified as having significant risk for incidents of forced or compulsory labor, and measures to contribute to the elimination of forced or compulsory labor. (CORE)

None. Symantec does not see a risk of forced or complusory labor in its operations.

In FY12, Symantec introduced an audit procedure to assess high priority human rights risks as part of an ongoing series of country audits conducted by the Internal Audit team. The first such audit was conducted in Mexico and these new procedures will be implemented in all future country audits on a rolling basis.

Symantec also assembled a cross functional team to evaluate high prioirity human rights risk areas for the company, overall. The team is working on a revised version of our current human rights policy which we plan to roll out in FY13.


HR8. Percentage of security personnel trained in the organization’s policies or procedures concerning aspects of human rights that are relevant to operations. (ADDITIONAL)


Each year, all Symantec employees receive training on our corporate Code of Conduct, which covers our commitment to upholding the human rights of Symantec employees and those who work for or on behalf of the company.

These training requirements do not apply to third-party security personnel providing security services for Symantec.

FullPrinciples 1 and 2

HR9. Total number of incidents of violations involving rights of indigenous people and actions taken. (ADDITIONAL)

NoneNot Reported

Principles 1 and 2

+ SOCIAL: SOCIETY



SO1. Nature, scope, and effectiveness of any programs and practices that assess and manage the impacts of operations on communities, including entering, operating, and exiting. (CORE)


SO2. Percentage and total number of business units analyzed for risks related to corruption. (CORE)

Symantec’s annual audit plan is driven by its annual Global Risk Assessment (GRA). The GRA process includes interviewing several senior executives on the topic of risks facing the company. While all of Symantec’s business units are included in the GRA analysis, it is important to note that audits vary in size and scope so a percentage based on the number of audits performed provides only a simplistic view of audit coverage.

8 of 27 (30%) audits performed through the GRA in FY12 included test procedures that specifically covered provisions of the Foreign Corrupt Practices Act (FCPA). Fraud is also considered when we conduct audits that don’t have specific FCPA test procedures.

Full Principle 10

SO3. Percentage of employees trained in organization’s anti-corruption policies and procedures. (CORE)

PDF Report: Our People, page 14 Full Principle 10




+ SOCIAL: SOCIETY



SO4. Actions taken in response to incidents of corruption. (ADDITIONAL)

Employees may report concerns of corruption to their managers, anyone in their management reporting chain, a human resources representative, or the Office of Ethics. They may also report their concerns anonymously, if they prefer, by calling or going online to Symantecs EthicsLine, which is operated by an independent third party.

During FY2012, approximately 43 percent of concerns reported led to follow-up investigations; the remainder of inquiries by employees were made by employees seeking specific guidance on Symantec’s ethics policies (as opposed to making a claim or allegation). Other queries were related to human resources policies and other matters covered by the Code, such as data protection, procurement, and anti-corruption provisions.

All concerns expressed via the reporting channel are investigated at the direction of The Office of Ethics and Compliance and reported out to internal and external auditors as appropriate.

Symantec does not track or report the number of employees disciplined or dismissed for incidences of corruption.

No contracts with business partners were terminated or not renewed due to incidents of corruption during the reporting period.

No legal cases regarding corrupt practices by Symantec or its employees took place during the reporting period.

FullPrinciple 10

SO5. Public policy positions and participation in public policy development and lobbying. (CORE)

Recent Activities



Our lobbying efforts are in alignment with Symantec’s stated policies, goals and public positions.


SO6. Total value of financial and in-kind contributions to political parties, politicians, and related institutions by country. (ADDITIONAL)

In 2011, SymPAC made USD $37,000 in Federal PAC donations. A complete list of candidates that received contributions can be found on the Symantec Political Engagement website

FullPrinciple 10

SO7. Total number of legal actions for anti-competitive behavior, anti-trust, and monopoly practices and their outcomes. (ADDITIONAL)

None Full

SO8. Monetary value of significant fines and total number of non-monetary sanctions for non-compliance with laws and regulations. (CORE)

None Full

+ SOCIAL: PRODUCT RESPONSIBILITY


PR1. Life cycle stages in which health and safety impacts of products and services are assessed for improvement, and percentage of significant products and services categories subject to such procedures. (CORE)


PR2. Total number of incidents of non-compliance with regulations and voluntary codes concerning health and safety impacts of products and services during their life cycle, by type of outcomes.(ADDITIONAL)


PR3. Type of product and service information required by procedures, and percentage of significant products and services subject to such information requirements. (CORE)


PR4. Total number of incidents of non-compliance with regulations and voluntary codes concerning product and service information and labeling, by type of outcomes. (ADDITIONAL)


PR5. Practices related to customer satisfaction, including results of surveys measuring customer satisfaction. (ADDITIONAL)

Symantec’s Customer-Driven Philosophy

PDF Report: Your Information, page 38Full

PR6. Programs for adherence to laws, standards, and voluntary codes related to marketing communications, including advertising, promotion, and sponsorship. (CORE)

Privacy Policy

We did not sell products that are banned in any markets in FY12.

Full

http://www.symantec.com/about/government/recentactivities/





http://www.symantec.com/themes/theme.jsp?themeid=customer_driven




+ SOCIAL: PRODUCT RESPONSIBILITY


PR7. Total number of incidents of non-compliance with regulations and voluntary codes concerning marketing communications, including advertising, promotion, and sponsorship by type of outcomes.(ADDITIONAL)

We had no incidents of non-compliance with regulations or voluntary codes concerning marketing communications in FY12.

Full

PR8. Total number of substantiated complaints regarding breaches of customer privacy and losses of customer data. (ADDITIONAL)

None Not Reported Principle 1

PR9. Monetary value of significant fines for non-compliance with laws and regulations concerning the provision and use of products and services. (CORE)

None Full

symantec’s 2012 global reporting initiative index · 2020-05-05 · symantec’s 2012 global...

Documents