Whistleblower-System:

Please Note:

Terms such as “he”, “his” or “him” may refer equally to persons of both male and female genders; for ease of reading, only the masculine form is used below. “Processor” and other masculine terms are generic masculine personal designations taken from the law in this way.

As a corporate group, we are convinced that our success is largely based on integrity, honesty, as well as respectful and fair business conduct. Without exception, we strive to adhere to the boundaries of the law and respect the moral concepts established in any country in which we operate. Therefore, we find it imperative that all our employees and business partners comply with applicable laws, avoid conflicts of interest, and respect the customs, traditions, and social values of the countries in which we operate. Even isolated incidents of violating the law may cause lasting damage to SARIA’s reputation and therefore lead to financial disadvantages. If you become aware of any irregularities, we strongly encourage you to report your findings!

With SARIA’s whistleblowing portal “Integrity Line”, every corporate entity organized under its parent SARIA SE & Co. KG (hereinafter referred to as SARIA) offers all of its employees and third parties the opportunity to report legal violations of both internal and external regulations. Confidentiality, anonymity, and data security are guaranteed. Every report received will be thoroughly examined and investigated.

Which reporting channels may I use to launch an investigation?

Reports may be submitted via the internet-based whistleblowing portal SARIA Integrity Line, available at https://saria.integrityline.org/index.php

Reports may also be submitted to the Compliance Organization in writing, electronically by e-mail, by telephone, or personally in verbal form. The contact details of the Compliance Organization responsible for your concerns can be found below.

Germany:
SARIA International GmbH
c/o Corporate Compliance
Norbert-Rethmann-Platz 1
59379 Selm
02592 210 238
compliance.saria@saria.de

Is my data protected?

To provide the highest degree of security for your data, the whistleblower system is hosted exclusively in an ISO 27001-certified data center located in Germany. We also ensure the technical safeguarding of your data by using only the latest encryption technologies and SSL certificates so that only the Data Controller and its Processors may access your data.

You can find more information about data protection here.

Will you store my data?

If you submit a report via SARIA’s Integrity Line, the data submitted is protected by encryption and can only be read by the Compliance Organization in charge of investigating your incident report. Your IP address is only used momentarily to be able to respond to your report and will no longer be available afterwards, as it is not part of any logs if you choose to report anonymously.

Furthermore, to ensure that accessing SARIA’s Integrity Line cannot be traced, we recommend accessing the whistleblowing portal in a trusted environment and by using your browser’s so-called private mode.

There is no storage of time data, geo data, or other metadata. Your login data for your personal and confidential e-mail account to stay in contact with the Compliance Organization, which is set up when submitting your report, is encrypted using a hash code and cannot be viewed by anyone but you.

On which topics can I provide information?

The topics of the compliance-relevant reporting areas have been defined as follows:

Bribery, corruption, kickbacks;
Antitrust issues;
Embezzlement, misappropriation, theft, fraud;
Unfair competition, taking advantage, conflicts of interest;
Manipulation of accounting;
Problems with import and export regulations;
Violation of the supply chain due diligence law;
Other issues.

Who receives my report?

In its efforts to investigate and address violations of the law or internal corporate procedures, SARIA has set up an international Compliance Organization consisting of several sub-units defined by their respective geographical or organizational scopes. Your reports will be submitted to the dedicated compliance staff part of the aforementioned sub-units. Individual agreements subject to domestic labor law ensure that the Compliance Officer responsible for your concerns may act as an independent body capable to neutrally follow-up on each of your reported concerns.

Who may contact the Compliance Organization to file reports?

SARIA’s Compliance Organization is available to anyone who can provide information about misconduct violating either directly the law or any other type of internal corporate guideline. Therefore, the scope of availability is not limited to employees but specifically includes customers, suppliers, and other third parties.

How do you safeguard the anonymity of the whistleblower?

When using SARIA’s Integrity Line, it is possible to submit reports anonymously. If you choose this option, anonymity is technically guaranteed by the system. If you choose to report misconduct via other channels, the compliance staff trusted with following up on your allegations will ensure anonymity. In addition to the measures concerning technical data protection, the staff of the Compliance Organization is either subject to professional confidentiality requirements or has been otherwise obligated to maintain confidentiality. Your identity will only be disclosed to the Compliance Organization and other persons within SARIA with your consent. Whistleblowers are therefore entirely free to decide whether to disclose their identity to certain parties or to remain completely anonymous.

What do you do with the information provided by me?

The Compliance Officer responsible to observe the legality of the conduct of the legal entity in which the violation is alleged to have occurred is responsible for processing the report. The Compliance Officer will examine the information received and carry out an initial legal assessment. Based on the conclusions of the initial legal assessment, the Compliance Organization initiates an investigation if necessary. Once the facts of the case have been fully revealed, evaluations and potential follow-measures are developed and enacted.

Should I worry about negative consequences when filing a report?

SARIA will ensure that the whistleblower will not be adversely affected in any way by SARIA as a result of any information given in good faith. Insofar as the whistleblower himself has participated in violations of internal guidelines, SARIA will consider the whistleblower’s contribution in averting potential corporate damages for the assessment of any punitive measures.

What happens if my information proves to be wrong in hindsight?

What matters is that you assumed the contents of your report to be true at the time you filed the report. Any report should be based on good faith and free of any abusive intention. If, after clarification of the facts, your report proves to be unjustified, you will not have to fear any form of sanctions. SARIA protects you against any disadvantages resulting from a report.

What happens if I am involved in a form of misconduct?

Even in cases where you are involved in the violation to be reported, we encourage you to report the facts of the misconduct in question. SARIA will ensure that no employee is disadvantaged in any way because of making a report in good faith. If the whistleblower himself has taken part in the misconduct reported, SARIA will consider the whistleblower’s contribution in averting potential corporate damages for the assessment of any punitive measures.

How can I file a report or launch an investigation?

Reports may be submitted to the Compliance Organization in writing, electronically by e-mail, by telephone, or personally in verbal form. The contact details of the Compliance Organization responsible for your concerns can be found here.

Germany:
SARIA International GmbH
c/o Corporate Compliance
Norbert-Rethmann-Platz 1
59379 Selm
02592 210 238
compliance.saria@saria.de

Reports may also be submitted via the internet-based whistleblowing portal SARIA Integrity Line, available at https://saria.integrityline.org/index.php

To submit a whistleblower report through the internet-based whistleblowing portal, access the following link https://saria.integrityline.org/index.php. You may proceed to file an incident report by

A reporting process can be initiated by performing the following four steps:

After selecting the country in which the misconduct occurred, you can submit a report using a total of eight relevant reporting categories in total. Each reporting category contains individual explanations of what subjects fall within each category. The reporting categories refer to the following circumstances:

- Bribery, corruption, kickbacks;
- Antitrust issues;
- Embezzlement, misappropriation, theft, fraud;
- Unfair competition, taking advantage, conflicts of interest;
- Manipulation of accounting;
- Problems with import and export regulations;
- Violation of the supply chain due diligence law;
- Other issues.

On the following page you may freely decide whether to file a report anonymously or not. If you decide to disclose your identity, you are required to insert your contact information. To complete the second step, you will be asked to read and confirm that you took note of the data privacy notice.
Subsequently, you are required to submit the facts of the case you wish to report to the Compliance Organization. Voluntarily, you may decide to add the following information:

- Persons involved in the incident;
- Chronological details of the incident;
- Geographical scope of the incident;
- Details on gaining awareness of the incident;
- Details on other persons being aware of the incident;
- Opportunity to inquire about further information from the Compliance Organization;
- Opportunity to upload documents (max. 20 MB).

In the final step, you are asked to check and confirm the information. In addition, the whistleblower is informed of the possibility of calling up the SARIA Integrity Line again after ten working days to follow up on the responses or queries from the unit responsible for processing the incident and, if necessary, to submit further information on the incident. For this purpose, anonymous whistleblowers are offered an anonymous mailbox. An incident number is assigned for access to the whistleblower’s personal and protected mailbox, with the help of which the whistleblower can maintain communication with the responsible office related to the report with the aid of a password selected by the whistleblower.

When can I expect a response?

After sending your report to the Compliance Organization, you will immediately receive an automatically generated notification of receipt. The duration of the material feedback on the outcome of the Compliance investigation may not exceed a time of three months and generally depends on factors such as the seriousness of the allegation and the involved labor necessary to conduct a thorough investigation as a result of your report.

How do you ensure IT-Security?

The operational security of the servers is ensured by IT service providers whose implemented information security management is certified according to ISO 27001.

Will I encounter any costs as a result of using SARIA’s Integrity line?

No. The use of the Integrity Line or SARIA’s Compliance Organization is free of charge.