GRI & UNGC Index - About this Report | Symantec
Symantec Corporation Corporate responsibility SHARE THIS PAGE

Our Approach


GRI & UNGC Index

Symantec uses the Global Reporting Initiative’s Sustainability Reporting Guidelines (GRI G3) in developing its corporate responsibility reports. The GRI checked Symantec’s FY12 report against its criteria and has certified the report at the B+ Application Level. Bureau Veritas provided limited assurance. The content index table below provides links to GRI disclosures and indicators.
Also, as a signatory to the United Nations Global Compact (UNGC), Symantec is required to annually communicate its progress in promoting the UNGC’s ten principles. The content index below cross-references each of the ten principles to the location where they are discussed in the FY12 report. The FY12 and FY13 Corporate Responsibility Reports combined serve as Symantec’s 2013 Communication on Progress (COP).
+ Standard Disclosures Part I: Profile Disclosures
+ 1. Strategy and Analysis
Profile Disclosure Location Full/Partial UNGC Cross-Reference
1.1 Statement from the most senior decision-maker of the organization PDF Report: CEO Letter, pages 7-8 Full Statement of continuing support for the UNGC
1.2 Description of key impacts, risks, and opportunities 10-K pages 13-25

GRI Profile Disclosure 4.8

PDF Report: CEO Letter, pages 7-8
PDF Report: Management Approach, page 9
PDF Report: Performance Tables, pages 5-6
PDF Report: Our People, pages 14-20
PDF Report: The World, pages 22-30
PDF Report: Your Information, pages 32-38

Full  
+ 2. Organizational Profile
Profile Disclosure Location Full/Partial UNGC Cross-Reference
2. 1 Name of the organization Symantec Corporation Full  
2.2 Primary brands, products, and/or services Corporate Fact Sheet
Corporate Profile

PDF Report: About Symantec, pages 3-4

Symantec outsources 100% of its global software and appliance manufacturing, storage, and distribution. Software manufacturing and distribution is consolidated into three suppliers globally, one each in North America; Europe, Middle East, and Africa; and Asia-Pacific/Japan regions. The North American supplier is a certified Minority Business Enterprise/Small Business Enterprise. Appliance manufacturing & distribution is consolidated into five suppliers globally.
Full  
2.3 Operational structure of the organization, including main divisions, operating companies, subsidiaries, and joint ventures 10-K, page 4 and Exhibit 21.01 Full  
2. 4 Location of organization's headquarters 350 Ellis Street
Mountain View, California
94043 USA
Full  
2.5 Number of countries where the organization operates, and names of countries with either major operations or that are specifically relevant to the sustainability issues covered in the report 10-K, page 4
10-K, page 45
Operations in more than 48 countries including: United States
United Kingdom
Ireland
Singapore
India
Full  
2.6 Nature of ownership and legal form 10-K, page 4
Corporate Fact Sheet

Symantec is a publicly owned C Corporation
Full  
2.7 Markets served (including geographic breakdown, sectors served, and types of customers/beneficiaries) 10-K, page 4-9

We conduct our business in three geographic regions: Americas, which is comprised of the United States, Canada, and Latin America; Europe, the Middle East and Africa ("EMEA"); and Asia Pacific Japan ("APJ").
Full  
2.8 Scale of the reporting organization 10-K, pages 6-9, 64-65

PDF Report: About Symantec, pages 3-4
PDF Report: Our People, page 14
Full  
2.9 Significant changes during the reporting period regarding size, structure, or ownership 10-K, pages 5-6 Full  
2.10 Awards received in the reporting period PDF Report: Awards and Recognition, page 12 Full  
+ 3. Report Parameters
Profile Disclosure Location Full/Partial UNGC Cross-Reference
3.1 Reporting period (e.g., fiscal/calendar year) for information provided. This iteration of Symantec's corporate responsibility report covers a reporting period corresponding to the company's fiscal year 2012 (April 2011 to March 2012) Full  
3.2 Date of most recent previous report (if any). Symantec's 2011 Corporate Responsibility Report was released on September 28, 2011 and covered the company's 2011 fiscal year (April 2010 to March 2011). Full  
3.3 Reporting cycle (annual, biennial, etc.) Symantec releases biennial full corporate responsibility reports with annual UNGC COPs and updates to performance summaries and goals. Full  
3.4 Contact point for questions regarding the report or its contents. PDF Report: About This Report, page 43 Full  
3.5 Process for defining report content. PDF Report: About This Report, page 43
PDF Report: Management Approach, page 9

The process by which we identified the stakeholders who we believe are most likely to use this report is based upon our evaluation of past report readership and feedback. We conducted a report feedback survey in which participants were asked to self identify with a stakeholder group. We received comments directly though our email address and at in person meetings. We also conducted outreach to specific stakeholder groups to better understand the type of corporate responsibility information they are likely to use. We cataloged the feedback that was provided as well as the stakeholder groups that were self-identified. As a result of this process, we expect that employees, customers, investors, and nongovernmental organizations (NGOs) will be the most frequent users of the FY12 CR report.

Materiality Analysis Process
We conduct our materiality analyses by compiling information regarding topics of potential interest from various source documents such as customer RFPs, investor information requests, media coverage, peer reports, industry and trade association documents, and internal and external surveys as well as direct stakeholder interviews. We score and rank the topics based on these evaluations, and further refine the placement of topics on our materiality matrix through internal discussions and deliberations with corporate responsibility team members and company managers and executives.

Linkage to GRI Guidance on Defining Report Content
The materiality analysis process we use, coupled with our extensive stakeholder engagement and outreach efforts, conforms to the GRI Guidance on Defining Report Content. Our process meets the GRI requirements for addressing the principles of Sustainability Context, Materiality, Completeness, and Stakeholder Inclusiveness.
Full  
3.6 Boundary of the report (e.g., countries, divisions, subsidiaries, leased facilities, joint ventures, suppliers). The data provided in this report reflects Symantec's global operations, unless otherwise noted. The Huawei Symantec Joint Venture is not covered in this report as Symantec held a 49% interest in the company during FY12, and divested of Huawei Symantec Joint Venture to Huawei in March 2012, prior to the end of Symantec's 2012 fiscal year.

Accident and injury statistics are US only as global statistics are not tracked.
Full  
3.7 State any specific limitations on the scope or boundary of the report The boundary of the FY12 report includes Symantec's global operations. There may be specific limitations on certain aspects of data but those occurances are clearly indicated within the report. Full  
3.8 Basis for reporting on joint ventures, subsidiaries, leased facilities, outsourced operations, and other entities that can significantly affect comparability from period to period and/or between organizations. Profile Indicator 3.06 Full  
3.9 Data measurement techniques and the bases of calculations, including assumptions and techniques underlying estimations applied to the compilation of the Indicators and other information in the report. CDP Response, page 24
GHG emissions verification statement

In order to measure GHG emissions, Symantec used the following methodology:

The Greenhouse Gas Protocol: A Corporate Accounting and Reporting Standard (Revised Edition) in conjunction with the US EPA's Climate Leaders Greenhouse Gas Protocol: Design Principals provide the overarching methodology for Symantec's greenhouse gas inventory. The following source specific documents are used as guidance emission factors and the collection of activity data:

  • US EPA Climate Leaders: Mobile Source Guidance
  • US EPA Climate Leaders: Direct Emissions from Stationary Combustion
  • US EPA Climate Leaders: Indirect Emissions from Purchases/ Sales of Electricity and Steam
  • US EPA Climate Leaders: Direct HFC and PFC Emissions from Use of Refrigeration and Air Conditioning Equipment


The verification of GHG emissions reporting was conducted using the World Resources Institute (WRI)/World Business Council for Sustainable Development (WBCSD) Greenhouse Gas Protocol.

There were no decisions made to diverge from the GRI Indicator Protocols.
Full  
3.10 Explanation of the effect of any re-statements of information provided in earlier reports, and the reasons for such re-statement (e.g.,mergers/acquisitions, change of base years/periods, nature of business, measurement methods). PDF Report: Performance Data, page 42
Full  
3.11 Significant changes from previous reporting periods in the scope, boundary, or measurement methods applied in the report. No significant changes Full  
3.12 Table identifying the location of the Standard Disclosures in the report. Online GRI Index Full  
3.13 Policy and current practice with regard to seeking external assurance for the report. Assurance Statement

Symantec has externally assured its GHG emissions figures for FY12 with a global audit covering all three emissions scopes.
Full  
+ 4. Governance, Commitments, and Engagement
Profile Disclosure Location Full/Partial UNGC Cross-Reference
4.1 Governance structure of the organization, including committees under the highest governance body responsible for specific tasks, such as setting strategy or organizational oversight. Proxy Statement, pages 5-16
Section III.B. of the Nominating and Governance Committee Charter

The Nominating and Governance Committee bears primary responsibility for corporate responsibility issues. It receives regular briefings on Symantec's corporate responsibility objectives and performance and oversees the companys compliance with legal requirements and ethical standards.

As of July 2012, Symantec's governance structure and committee composition changed along with the appointment of a new CEO. Please see Symantec's Corporate Governance web pages for details.
Full  
4.2 Indicate whether the Chair of the highest governance body is also an executive officer. The roles of Symantec's Chairman and CEO were separate during the FY12 reporting period.

As of July 25, 2012, the roles of the Chairman and CEO are combined. See:http://www.symantec.com/about/news/release/article.jsp?prid=20120725_01
Full  
4.3 For organizations that have a unitary board structure, state the number of members of the highest governance body that are independent and/or non-executive members. Proxy Statement, pages 6

Symantec has a unitary board structure. During the FY12 reporting period, we had a ten-member Board composed of nine independent directors and the CEO.

As of July 25, 2012, the roles of the Chairman of the Board and CEO are combined. See:http://www.symantec.com/about/news/release/article.jsp?prid=20120725_01
Full  
4.4 Mechanisms for shareholders and employees to provide recommendations or direction to the highest governance body. Symantec shareholders and employees may provide feedback to the Board of Directors by contacting our Corporate Secretary:

Symantec Corporation
350 Ellis Street
Mountain View, California 94043 USA
Attn: Corporate Secretary

For more information, please see Contacting the Board of Directors on page 12 of the Company's proxy statement.

The process for minority shareholders to submit shareholder resolutions and feedback to the Board of Directors is discussed on page 6 of the Company's proxy statement, and in Article I of the Company's Bylaws.

Employees may contact the Corporate Secretary to submit matters for the Board of Directors to review. Only one board member is an employee of the Company, the CEO; there is no direct works council representation.
Full  
4.5 Linkage between compensation for members of the highest governance body, senior managers, and executives (including departure arrangements), and the organization's performance (including social and environmental performance). In furtherance of Symantec's pay for performance philosophy, performance-based restricted stock units are granted to executive officers in lieu of time-based stock options. PRUs can be earned depending upon the achievement of specific performance metrics. Please see Compensation Discussion & Analysis (CD&A) in our proxy statement for further details. Full  
4.6 Processes in place for the highest governance body to ensure conflicts of interest are avoided. Please see "Conflicts of Interest" described in section C.6. of the Corporate Governance Standards of the Board of Directors of Symantec Corporation, as amended and restated on 30 April 2012. Full  
4.7 Process for determining the qualifications and expertise of the members of the highest governance body for guiding the organization's strategy on economic, environmental, and social topics. Please refer to (i) Board Membership Criteria, section A.1. of the Corporate Governance Standards of the Board of Directors of Symantec Corporation, as amended and restated on 30 April 2012; (ii) Criteria for Nomination to the Board on page 11 of Symantec's proxy statement; and (iii) Nominating Duties, section III.A. of the Charter of the Nominating and Governance Committee of the Board of Directors, as amended and restated on 23 January 2012. Full  
4.8 Internally developed statements of mission or values, codes of conduct, and principles relevant to economic, environmental, and social performance and the status of their implementation. Company Charters

Global Anti-Corruption (Internal guidance document)
Charitable Contributions (Internal document)

Symantec's values statement, privacy statement, and code of conduct apply to all of our global operations.

Additional policies reflecting Symantec's environmental, social, and economic considerations include:

Human rights:
Our human rights policy is based on the Universal Declaration of Human Rights and the International Labor Organizations core conventions.

Environment:
An environmental policy, which was updated in FY12.

Supply chain:
A Global Supply Chain and Fulfillment Code of Conduct and a Global Supplier Code of Conduct (which was developed during FY12 for roll-out in FY13).

We are also signatories of the United Nations Global Compact and supporters of the UN Women's Empowerment Principles.
Full  
4.9 Procedures of the highest governance body for overseeing the organization's identification and management of economic, environmental, and social performance, including relevant risks and opportunities, and adherence or compliance with internationally agreed standards, codes of conduct, and principles. Please refer to Corporate Governance Duties, section III.B. of the Charter of the Nominating and Governance Committee of the Board of Directors, which includes oversight of the Code of Conduct and Company's policies and programs concerning corporate citizenship and social responsibility.

The Nominating and Governance Committee of the Board of Directors reviews Symantec's sustainability performance annually, and receives updates regarding Corporate Responsiblity issues on a quarterly basis. Please refer to Corporate Governance Duties, section III.B. of the Charter of the Nominating and Governance Committee of the Board of Directors.
Full  
4.10 Processes for evaluating the highest governance body's own performance, particularly with respect to economic, environmental, and social performance. Please refer to Board and Committee Effectiveness on page 7 of the Company's proxy statement Full  
4.11 Explanation of whether and how the precautionary approach or principle is addressed by the organization. The precautionary principle is not applied specifically across the organization, nor in the development and introduction of new products. Symantec uses a model similar to the Precautionary Principle for risk management with regard to Business Continuity. Our Business Continuity team determines the impact likelihood of each threat occurring and conducts exercises to ensure full understanding of possible impact. This allows us to determine and report any unacceptable single points of failure.

Formula used to determine risk: Risk Value = Threat Impact x Threat Probability.
Full Principle 7
4.12 Externally developed economic, environmental, and social charters, principles, or other initiatives to which the organization subscribes or endorses. PDF Report: UNGC Support & Activities, page 11

United Nations Women's Empowerment Principles
United Nations Convention Against Corruption
Universal Declaration of Human Rights
ILO Core Conventions
USGBC LEED and US EPA Energy Star programs
Full  
4.13 Memberships in associations (such as industry associations) and/or national/international advocacy organizations in which the organization: * Has positions in governance bodies; *Participates in projects or committees; * Provides substantive funding beyond routine membership dues; or * Views membership as strategic. Trade and industry associations:
  • Business Software Alliance (BSA)
  • Information Technology Industry Council (ITI)
  • TechAmerica
  • TechNet


Environmental/Climate Change policy:
  • Business for Innovative Climate & Energy Policy (BICEP)

Diversity and Gender:
  • Anita Borg Institute
  • National Center for Women & Information Technology (NCWIT)

CyberCrime Prevention:
  • National Cyber Forensic Training alliance (NCFTA)
  • National Center for Justice and the Rule of Law (NCRLJ)
  • National White Collar Crime Consortium (NW3C)
Full Symantec's involvement in UNGC Network activities
4.14 List of stakeholder groups engaged by the organization. Stakeholder Engagement
PDF Report: About This Report, page 43
Full  
4.15 Basis for identification and selection of stakeholders with whom to engage. We identify our stakeholders by considering to what degree they are significantly affected by Symantec's actions and whether or not a given stakeholder's actions significantly impact our company. We survey and interact with a representative set of organizations and individuals to establish the landscape of stakeholder concerns and determine whether deeper engagement is called for on certain issues with certain stakeholder groups. For the purposes of the FY12 CR report, we revisited our 2008 and 2010 analysis of stakeholders and then revised the list of stakeholders to engage or not engage based on the prioritization and time and budget constraints. Full  
4.16 Approaches to stakeholder engagement, including frequency of engagement by type and by stakeholder group. Ongoing Engagement with shareholders and socially responsible investors is principally achieved through the regular issuance of financial statements, our annual 10-K and proxy statement, as well as responses to analyst surveys & questionnaires throughout the year.

Consumer and enterprise customers and channel partners are surveyed continuously throughout the year depending on the customer segment and geography.

Employees are surveyed twice a year (one smaller 'pulse survey' in the fall) and a large survey in the spring.

Community members are engaged through our CR Report, post-report surveys and email feedback, and in-person presentations, as well as through our philanthropic initiatives.

NGOs and nonprofit organizations are engaged continously throughout the year with meetings, phone conversations, volunteer projects, and feedback.

Regulators, depending on the regulatory body, are engaged per normal schedule of interaction.

Additionally, at the end of our last reporting cycle, we collected feedback on our CR Report from a distinguished panel of sustainability practitioners, through a series of in-depth interviews. In our FY12 CR Report, we have reported on our efforts to incorporate much of this feedback into our corporate responsibility disclosures.
Full  
4.17 Key topics and concerns that have been raised through stakeholder engagement, and how the organization has responded to those key topics and concerns, including through its reporting. Symantec Corporate Responsibility Snapshot, Issue 14: Stakeholder Perspectives, December 2011

PDF Report: Our People, page 14
PDF Report: The World, pages 25, 28-30
PDF Report: Your Information, page 33, 36
Full  
+ Standard Disclosures Part II: Disclosures on Management Approach (DMAs)
Description Location Full/Partial UNGC Cross-Reference
Disclosure on Management Approach EC     Principles 1, 4, 6, 7
EC. Economic performance 2012 Annual Report, pages 1-3
10-K, The World, pages 5-12
CDP response, pages 4-5, 7-8, 10

PDF Report: CEO Letter, pages 7-8
Full  
EC. Market presence 10-K, pages 5-12, 13-25 Full  
EC. Indirect economic impacts PDF Report: Profile Disclosure 4.8
PDF Report: UNGC Support & Activities, page 11
PDF Report: Our People, pages 15, 18-20
PDF Report: The World, pages 27-30
PDF Report: Your Information, pages 34-35
PDF Report: Performance Data, page 40
Full  
Disclosure on Management Approach EN     Principles 7, 8, 9
EN. Materials Environmental Policy Statement
CR Microsite links: Environmental Performance

PDF Report: Performance Highlights & Goals, page 5
PDF Report: The World, page 22-23, 27
PDF Report: Performance Date, page 41
Full  
EN. Energy Environmental Policy Statement
Symantec IT Energy ROI Tool

PDF Report: Performance Highlights & Goals, page 5
PDF Report: The World, page 22-26
Full  
EN. Water Not Reported Full  
EN. Biodiversity Not Reported Full  
EN. Emissions, effluents and waste Environmental Policy Statement
CDP Verification Statement
CDP Response, pages 4-5, 9-10, 14-22

PDF Report: CEO Letter, page 8
PDF Report: Performance Highlights & Goals, page 5
PDF Report: The World, page 22-26
PDF Report: Performance data, page 41
Full  
EN. Products and services Environmental Policy Statement
Symantec IT Energy ROI Tool
CDP Response, pages 4-5

PDF Report: Performance Highlights & Goals, page 6
PDF Report: The World, page 5
PDF Report: Data Tables, page 41
Full  
EN. Compliance CDP Response, pages 4-5, 13, 18

PDF Report: The World, pages 22, 27
Full  
EN. Transport Environmental Policy Statement
CDP Response, pages 4-5
CR Microsite link: Environmental Performance

PDF Report: Performance Highlights & Goals, page 5
PDF Report: The World, page 22
PDF Report: Data Tables, page 41
Full  
EN. Overall CDP Response, pages 4-5
Environmental Policy Statement
PDF Report: CEO Letter, page 8
CR Microsite link: Environmental Performance

PDF Report: Performance Highlights & Goals, page 5
PDF Report: The World, page 22-26
PDF Report: Data Tables, page 41
Full  
Disclosure on Management Approach LA     Principles 1, 3, 6
LA. Employment Code of Conduct
Human Rights policy

PDF Report: Management Approach, page 9
PDF Report: Performance Highlights and Goals, page 5
PDF Report: Our People, page 14
PDF Report: The World, page 27-28
Full  
LA. Labor/management relations Code of Conduct
Human Rights policy

PDF Report: UNGC Support & Activities, page 11
PDF Report: Performance Highlights and Goals, page 5
PDF Report: Our People, page 14-15
PDF Report: The World, page 27-28
Full  
LA. Occupational health and safety Performance Indicator LA.07
PDF Report: Performance Data, page 40
Partial - No occupational health and safety indicators are fully reported  
LA. Training and education Code of Conduct
Human Rights policy

PDF Report: Management Approach, page 9
PDF Report: Performance Highlights and Goals, page 5
PDF Report: Our People, page 14-17
PDF Report: The World, page 27-30
Full  
LA. Diversity and equal opportunity PDF Report: CEO Letter, pages 7-8
PDF Report: UNGC Support & Activities, page 11
PDF Report: Performance Highlights and Goals, page 5
PDF Report: Our People, pages 14, 18-20
PDF Report: The World, page 27-30
Full  
Disclosure on Management Approach HR     Principles 1 through 6
HR. Investment and procurement practices 10-K, page 52
Symantec Global Procurement Website

PDF Report: Performance Highlights and Goals, page 5
PDF Report: The World, page 27
Full  
HR. Non-discrimination No related indicators have been fully responded to. Not Reported  
HR. Freedom of association and collective bargaining Human Rights policy

Performance Indicator HR.05

PDF Report: The World, page 27
Full  
HR. Child labor Human Rights policy

Performance Indicator HR.06
Performance Indicator HR.07

PDF Report: The World, page 27
Full  
HR. Forced and compulsory labor Human Rights policy

Performance Indicator HR.07

PDF Report: The World, page 27
Full  
HR. Security practices Human Rights policy
Performance Indicator HR.08

Symantec does not establish specific goals related to building and personnel security practices.

Symantec has established Service Level Agreements with all of our significant suppliers, including all suppliers who provide man guarding services. Symantec has developed a supplier management program that centers around quarterly business reviews and establishes goals and performance measures. Our security suppliers report to Symantec Regional Security Managers who work with suppliers on operational issues with oversight responsibility from an enterprise-wide service delivery Director. Symantec has an ongoing security awareness program that reaches all regions and we have an annual security survey that measures our performance against technology company norms, from an employee perspective, with a "voice of the company" component that solicits freeform feedback that we incorporate into our future planning.
Full  
HR. Indigenous rights Not Material Not Reported  
Disclosure on Management Approach SO     Principle 10
SO. Community Not Material Not Reported  
SO. Corruption Code of Conduct

Anti-corruption and Bribery policy (Internal guidance document)

Performance Indicator SO.02
Performance Indicator SO.04
PDF Report: UNGC Support & Activities, page 11
PDF Report: Our People, page 14
Full  
SO. Public policy Global Political Contributions Policy
Political Engagement page

PDF Report: The World, page 25
PDF Report: Your Information, 32, 34-36
Full  
SO. Anti-competitive behavior Code of Conduct

Performance Indicator SO.07
PDF Report: UNGC Support & Activities, page 11
Full  
SO. Compliance Code of Conduct

Supply Chain codes of conduct
Privacy Policy

Performance Indicator SO.08

PDF Report: Management Approach, page 9
PDF Report: Performance Highlights and Goals, page 5-6
PDF Report: The World, pages 27-28
PDF Report: Your Information, page 37
Full  
Disclosure on Management Approach PR     Principles 1 and 8
PR. Customer health and safety Not Material Not Reported  
PR. Product and service labelling Symantec's Customer-Driven Philosophy

Performance Indicator PR.05
Full This DMA relates only to Customer Satisfaction, as PR.05 is the only fully reported indicator for this aspect area.
PR. Marketing communications Privacy Policy

PDF Report: Our People, page 19
PDF Report: Your Information, page 37-38
Full  
PR. Customer privacy Privacy Policy

PDF Report: Performance Highlights and Goals, page 6
PDF Report: Your Information, page 37
PDF Report: Performance Data, page 42
Full  
PR. Compliance Privacy Policy

PDF Report: Your Information, page 37
Full  
+ Standard Disclosures Part III: Performance Indicators
+ ECONOMIC
Performance Indicator Location Full/Partial UNGC Cross-Reference
EC1. Direct economic value generated and distributed, including revenues, operating costs, employee compensation, donations and other community investments, retained earnings, and payments to capital providers and governments. (CORE) 10-K, pages 46-49, 64-67, 99-103

PDF Report: About Symantec, pages 3-4
PDF Report: The World, pages 28-30
Full  
EC2. Financial implications and other risks and opportunities for the organization's activities due to climate change. (CORE) CDP Response, pages 7, 15-18, 20-22 Full Principle 7
EC3. Coverage of the organization's defined benefit plan obligations. (CORE) 10-K, pages 64, 94 Partial  
EC4. Significant financial assistance received from government. (CORE) Not Material Not Reported  
EC5. Range of ratios of standard entry level wage compared to local minimum wage at significant locations of operation. (ADDITIONAL) Not reported   Principle 1
EC6. Policy, practices, and proportion of spending on locally-based suppliers at significant locations of operation. (CORE) Symantec's Global Sourcing & Procurement Policy is applied worldwide.

Symantec's sourcing decisions are primarily based on the overall best value for the organization. There are many elements that define best value including location, environmental considerations, corporate responsibility considerations, location, transportation, warranties etc. No specific local buying policy is in place.

In our software Supply Chain, leadtime is at a premium--thus local suppliers would have an advantage. Local in this context is local to our outsource manufacturers.
Full  
EC7. Procedures for local hiring and proportion of senior management hired from the local community at significant locations of operation. (CORE) Symantec does not have a policy for strictly hiring local residents at significant locations of operations. However, Symantec prefers to have its workforce at significant locations reflect the immediate community in which it operates and as a result the vast majority of its hires are from the local region. There is deliberate flexibility within this practice due to Symantec's overall philosophy to hire the best candidate for the position and to increase the diversity of its workforce by casting a wider net. Remaining open to candidates from outside the local area allows Symantec to consider all qualified applicants and provides Symantec with the best opportunity to satisfy both objectives of hiring the best qualified candidate and to achieve its diversity goals.

For purposes of this question, Symantec defines senior management as the following positions: CEO, Group President, SVP, VPS, EVP, VP. Due to the demanding nature of these positions, the performance expectations of individuals who occupy these positions, and the size and complexity of Symantec Corporation as a global entity, it is in Symantec's best interest to invest recruiting resources commensurate with the skill, experience, and knowledge required to be successful at these levels. As a result, Symantec's executive recruiting efforts involve an exhaustive talent search. While certain geographical regions may have a greater concentration of qualified candidates for executive positions, most regions do not offer the degree of choice necessary to find the very best candidate possible. Symantec's experience has been that there is a favorably greater number of qualified candidates to consider if our search includes all qualified candidates, regardless of their location. However, Symantec is pleased that its executive recruiting approach has produced a 71% local executive hire rate for 2011.
Full Principle 6
EC8. Development and impact of infrastructure investments and services provided primarily for public benefit through commercial, in-kind, or pro bono engagement. (CORE) PDF Report: The World, pages 28-30
PDF Report: Your Information, pages 34-35

Symantec has an Internet Safety Advocate in each major region keeping current on children's internet usage needs and the problems they face with bullying, too much computer time, online gaming, etc. Our Norton Online Family product was developed based on these needs.

With each nonprofit we work with, we perform a needs assessment, asking what problems they face, and what resources could help them the most. Together we design a grant portflio based on their needs and our available funding. Symantec's software donation program is open in most countries where our partner Tech Soup Global has nonprofit partners. These countries are chosen based on unique needs and capacities.
Full  
EC9. Understanding and describing significant indirect economic impacts, including the extent of impacts. (ADDITIONAL) PDF Report: UNGC Support & Activities, page 11
PDF Report: Our People, pages 15, 18-20
PDF Report: The World, pages 27-30
PDF Report: Your Information, pages 34-35
PDF Report: Performance Data, page 40

No specific examples of negative economic impacts are available.

Symantec's employee volunteerism programs and philanthropic initiatives help to advance the goals of the UNGC and assist in furthering progress towards meeting UN Millenium Development Goals, specifically with regard to women's rights and empowerment.
Full  
+ ENVIRONMENTAL
Performance Indicator Location Full/Partial UNGC Cross-Reference
EN1. Materials used by weight or volume. (CORE) Not Material Not Reported Principle 8
EN2. Percentage of materials used that are recycled input materials. (CORE) PDF Report: Performance Data, page 41 Full Principle 8
EN3. Direct energy consumption by primary energy source. (CORE) PDF Report: Performance Data, page 41 Full Principle 8
EN4. Indirect energy consumption by primary source. (CORE) PDF Report: Performance Data, page 41 Partial Principle 8
EN5. Energy saved due to conservation and efficiency improvements. (ADDITIONAL) Not Material Not Reported Principle 8
EN6. Initiatives to provide energy-efficient or renewable energy based products and services, and reductions in energy requirements as a result of these initiatives. (ADDITIONAL) CDP Response, pages 12-14

Performance Indicator EN.05

PDF Report: The World, page 26

Full Principle 8
EN7. Initiatives to reduce indirect energy consumption and reductions achieved. (ADDITIONAL) CDP Response, pages 40-42

PDF Report: The World, pages 22-23, 25-26

Full Principle 8
EN8. Total water withdrawal by source. (CORE) Not Material Not Reported Principle 8
EN9. Water sources significantly affected by withdrawal of water. (ADDITIONAL) Not Material Not Reported Principle 8
EN10. Percentage and total volume of water recycled and reused. (ADDITIONAL) Not Material Not Reported Principle 8
EN11. Location and size of land owned, leased, managed in, or adjacent to, protected areas and areas of high biodiversity value outside protected areas. (CORE) Not Material Not Reported Principle 8
EN12. Description of significant impacts of activities, products, and services on biodiversity in protected areas and areas of high biodiversity value outside protected areas. (CORE) Not Material Not Reported Principle 8
EN13. Habitats protected or restored. (ADDITIONAL) Not Material Not Reported Principle 8
EN14. Strategies, current actions, and future plans for managing impacts on biodiversity. (ADDITIONAL) Not Material Not Reported Principle 8
EN15. Number of IUCN Red List species and national conservation list species with habitats in areas affected by operations, by level of extinction risk. (ADDITIONAL) Not Material Not Reported Principle 8
EN16. Total direct and indirect greenhouse gas emissions by weight. (CORE) CDP Response, pages 23-31, 40-41

PDF Report: Performance Data, page 41

Full Principle 8
EN17. Other relevant indirect greenhouse gas emissions by weight. (CORE) CDP Response, pages 23-31, 40-41

PDF Report: Performance Data, page 41

Full Principle 8
EN18. Initiatives to reduce greenhouse gas emissions and reductions achieved. (ADDITIONAL) The World, pages 23-24

PDF Report: Performance Data, page 41

Full Principles 7 and 8
EN19. Emissions of ozone-depleting substances by weight. (CORE) Symantec has no ozone-depleting substances to report at this time. Full Principle 8
EN20. NOx, SOx, and other significant air emissions by type and weight. (CORE) Symantec's baseline consists of four (4) greenhouse gases: CO2 (Carbon Dioxide), CH4 (Methane), N2O (Nitrous Oxide), HFCs (Hydroflurocarbons). Symantec currently has no emissions from PFCs or SF6.

FY12
CO2 (Carbon Dioxide): 188,835 CO2e
CH4 (Methane): 3.95
N2O (Nitrous Oxide): 3.3
HFCs (Hydroflurocarbons): 0

Symatnec has no SOx emissions to report at this time.

The two fugitive emissions sources included in our Scope 1 emissions are:
Refrigerants: 937 mt CO2e
Fire Supression: 545 mt CO2e

Symantec has no significant particulate matter to report at this time.

Partial Principle 8
EN21. Total water discharge by quality and destination. (CORE) Not Material Not Reported Principle 8
EN22. Total weight of waste by type and disposal method. (CORE) PDF Report: Data Tables, page 41

Global total amount of waste in tonnes:

1. Compost - 3,499,730 (LB)
2. Reuse - N/A
3. Recycling - N/A
4. Recovery - N/A
5. Incineration (or use as fuel) - N/A
6. Landfill - 5,127,200 (LB)
7. Deep well injection - N/A
8. On-site storage - N/A
9. Mixed Recycling -2,379,130 (LB)
10. Cans & Bottles -53,300 (LB)
11. Cardboard - 1,620,450 (LB)
12. Printer Tonner - 3,120 (LB)
13. Bulbs/Lamps - 9,490 (LB)
14. Batteries - 24,050 (LB)

Data is based on information provided by our waste disposal contractor(s) at our Dublin, Ireland recycling site only.

Equipment that has reached the end of its useful life is sent to third party vendors for proper recycling. When possible, we utilize local contractors or large companies that recycle locally in order to support community economies while reducing transportation costs and CO2 emissions. These vendors offer services such as hardware retrieval, asset tag and identifier removal, sorting, and environmentally responsible data wiping, cleaning, and destruction procedures.

Partial Principle 8
EN23. Total number and volume of significant spills. (CORE) Not Material Not Reported Principle 8
EN24. Weight of transported, imported, exported, or treated waste deemed hazardous under the terms of the Basel Convention Annex I, II, III, and VIII, and percentage of transported waste shipped internationally.(ADDITIONAL) Not Material Not Reported Principle 8
EN25. Identity, size, protected status, and biodiversity value of water bodies and related habitats significantly affected by the reporting organization's discharges of water and runoff. (ADDITIONAL) Not Material Not Reported Principle 8
EN26. Initiatives to mitigate environmental impacts of products and services, and extent of impact mitigation. (CORE)

CDP Response

PDF Report: The World, pages 23-24, 26

Partial Principles 7 and 8
EN27. Percentage of products sold and their packaging materials that are reclaimed by category. (CORE) Not Material Not Reported Principle 8
EN28. Monetary value of significant fines and total number of non-monetary sanctions for non-compliance with environmental laws and regulations. (CORE) We maintain compliance with all applicable regulatory and legislative requirements. Symantec facilities did not experience any environmental incidents in FY12, nor were any environmental fines or penalties incurred. Full Principle 8
EN29. Significant environmental impacts of transporting products and other goods and materials used for the organization's operations, and transporting members of the workforce. (ADDITIONAL) CDP Response, pages 23-31, 40-41

PDF Report: The World, pages 22, 24
PDF Report: Performance Data, page 41

Significant impacts are related to the use of fuels and release of Scope 1 GHG emissions. (Direct fuel use: natural gas, propane, diesel, gasoline, refrigerants, gas fire suppression systems.)

Full Principle 8
EN30. Total environmental protection expenditures and investments by type. (ADDITIONAL) Not Material Not Reported Principles 7 and 8
+ SOCIAL: LABOR PRACTICES AND DECENT WORK
Performance Indicator Location Full/Partial UNGC Cross-Reference
LA1. Total workforce by employment type, employment contract, and region. (CORE) PDF Report: Our People, page 14

Full time employees: 20,953
Part time employees: 129

Full  
LA2. Total number and rate of employee turnover by age group, gender, and region. (CORE) Total employee turnover, FY12:

Male: 2576 (18.05%)
Female: 889 (16.44%)

Americas: 1675 (17.47%)
APJ: 597 (20.35%)
EMEA: 619 (16.92%)
India: 585 (16.58%)

Partial Principle 6
LA3. Benefits provided to full-time employees that are not provided to temporary or part-time employees, by major operations. (ADDITIONAL) Employee Benefits

Employees actively working at least twenty (20) hours per week are eligible to participate in Symantec's Benefit Programs. Employees who actively work less than 20 hours per week are only eligible to participate in our paid time off and holiday pay program at a pro-rated rate.

Full  
LA4. Percentage of employees covered by collective bargaining agreements. (CORE) We support employees rights to freedom of association; eighteen percent of Symantec employees are covered by collective bargaining agreements and/or belong to works councils. Full Principle 3
LA5. Minimum notice period(s) regarding significant operational changes, including whether it is specified in collective agreements. (CORE) Not Material Not Reported Principle 3
LA6. Percentage of total workforce represented in formal joint management-worker health and safety committees that help monitor and advise on occupational health and safety programs. (ADDITIONAL) Not Material Not Reported Principle 1
LA7. Rates of injury, occupational diseases, lost days, and absenteeism, and number of work-related fatalities by region. (CORE)

PDF Report: Performance Data, page 40

(U.S. incident and illness data only.)

The data represents all injuries and illnesses reported to the Corporate Security and Safety Team in the US over FY12 and includes minor first aid injuries.

Lost days are calculated on calender days.

The days lost commence the day following the incident/ injury.

Symantec operates in accordance with local regulatory requirements including standards and rules established for the reporting of accidents and incidents. Symantec uses an internal database system for the logging and monitoring of accidents and incidents when they occur. This system is used to generate internal incident reports and is used when further incident investigation is required. Symantec also uses collected injury and illness data for regulatory reporting to OHSA, the HSE, HSA and others. OHSA data is made available to employees via the Symantec Intranet.

Partial Principle 1
LA8. Education, training, counseling, prevention, and risk-control programs in place to assist workforce members, their families, or community members regarding serious diseases. (CORE) Not Material Not Reported Principle 1
LA9. Health and safety topics covered in formal agreements with trade unions. (ADDITIONAL) Not Material Not Reported  
LA10. Average hours of training per year per employee by employee category. (CORE) Average number of hours of training per year per employee by employee category:

Directors and above 27
Managers 36
Individual Contributors 32

Full  
LA11. Programs for skills management and lifelong learning that support the continued employability of employees and assist them in managing career endings. (ADDITIONAL) PDF Report: Our People, pages 15-17

Symantec provides tuition reimbursement for college entrance exams, exam preparation courses, and job-related courses leading to a degree (for examples AA/AS, BA/BS, MBA) from an accredited college or university that directly relate to the employees career development within Symantec.

Symantec does not currently offer sabbaticals to employees.

Symantec provides resources through our Employee Assistance Program (EAP) and 401(k) Provider Putnam that help employees understand the financial and emotional impacts of retirement.

Severance payments are provided to eligible employees at the Manager and Individual Contributor level, and are calculated according to the duration of recipients' employment with the Company. Eligible employees at the Vice President level are also entitled to receive six months of outplacement services, at the Manager level entitlement is 3 months, and at the Individual Contributor level entitlement is one month including counseling and guidance. If an eligible employee timely elects COBRA continuation coverage under Symantec's group insurance plans, Symantec will also subsidize the full amount of premiums for such eligible employees for the period of time upon which severance payments are paid under the plan. Symantec will subsidize premiums for continuation coverage at the same level of coverage in effect immediately before termination of employment for the applicable employee.

Full  
LA12. Percentage of employees receiving regular performance and career development reviews. (ADDITIONAL) PDF Report: Our People, page 16 Full  
LA13. Composition of governance bodies and breakdown of employees per category according to gender, age group, minority group membership, and other indicators of diversity. (CORE) Management Team
Committee Composition

Currently Symantec has one female Board member (10% of total) and one Board member representing the Hispanic minority population (10% of total).

Partial Principles 1 and 6
LA14. Ratio of basic salary of men to women by employee category. (CORE) Not Material Not Reported Principle 6
+ SOCIAL: HUMAN RIGHTS
Performance Indicator Location Full/Partial UNGC Cross-Reference
HR1. Percentage and total number of significant investment agreements that include human rights clauses or that have undergone human rights screening. (CORE) We did not enter into any significant contracts during FY12. Significant defined as, entry into a "material definitive agreement" or a "material amendment of a material definitive agreement" that is made in the "ordinary course of business" where the agreement involves a financial commitment equal to or greater than USD$10M over the term of the agreement (requires approval by the CFO). Full Principles 1 through 6
HR2. Percentage of significant suppliers and contractors that have undergone screening on human rights and actions taken. (CORE) PDF Report: The World, page 27

All Symantec's tier one supply chain suppliers have acknowledged that they will comply with Symantecs Global Supply Chain Manufacturing and Fulfillment Code of Conduct. In addition, the Code of Conduct has been added to new contracts that were agreed during FY12. During FY13 existing contracts will be updated to include Symantec's Global Supply Chain Manufacturing and Fulfillment Code of Conduct. Symantec's tier one supply chain suppliers will be audited for compliance during FY13.

No contracts were declined, had performance conditions imposed, or were subject to other actions as a result of human rights screening.

Full Principles 1 through 6
HR3. Total hours of employee training on policies and procedures concerning aspects of human rights that are relevant to operations, including the percentage of employees trained. (ADDITIONAL) PDF Report: Our People, page 14
PDF Report: The World, pages 27-28
Partial Principles 1 through 6
HR4. Total number of incidents of discrimination and actions taken. (CORE) Not Material Not Reported Principle 6
HR5. Operations identified in which the right to exercise freedom of association and collective bargaining may be at significant risk, and actions taken to support these rights. (CORE) No operations have been identified where employees' right to exercise freedom of association or collective bargaining is at risk. Symantec did not undertake any specific measures related to workers' rights to freedom of association and collective bargaining during the reporting period. Full Principles 1, 2, 3
HR6. Operations identified as having significant risk for incidents of child labor, and measures taken to contribute to the elimination of child labor. (CORE) Performance Indicator HR.07

None. Symantec does not see a significant risk for incidents of child labor to be exposed to hazardous work in its operations.

Full Principles 1, 2, 5
HR7. Operations identified as having significant risk for incidents of forced or compulsory labor, and measures to contribute to the elimination of forced or compulsory labor. (CORE) None. Symantec does not see a risk of forced or complusory labor in its operations.

In FY12, Symantec introduced an audit procedure to assess high priority human rights risks as part of an ongoing series of country audits conducted by the Internal Audit team. The first such audit was conducted in Mexico and these new procedures will be implemented in all future country audits on a rolling basis.

Symantec also assembled a cross functional team to evaluate high prioirity human rights risk areas for the company, overall. The team is working on a revised version of our current human rights policy which we plan to roll out in FY13.

Full Principles 1, 2, 4
HR8. Percentage of security personnel trained in the organization's policies or procedures concerning aspects of human rights that are relevant to operations. (ADDITIONAL) PDF Report: The World, page 27

Each year, all Symantec employees receive training on our corporate Code of Conduct, which covers our commitment to upholding the human rights of Symantec employees and those who work for or on behalf of the company.

These training requirements do not apply to third-party security personnel providing security services for Symantec.

Full Principles 1 and 2
HR9. Total number of incidents of violations involving rights of indigenous people and actions taken. (ADDITIONAL) None Not Reported Principles 1 and 2
+ SOCIAL: SOCIETY
Performance Indicator Location Full/Partial UNGC Cross-Reference
SO1. Nature, scope, and effectiveness of any programs and practices that assess and manage the impacts of operations on communities, including entering, operating, and exiting. (CORE) Not Material Not Reported  
SO2. Percentage and total number of business units analyzed for risks related to corruption. (CORE) Symantec's annual audit plan is driven by its annual Global Risk Assessment (GRA). The GRA process includes interviewing several senior executives on the topic of risks facing the company. While all of Symantec's business units are included in the GRA analysis, it is important to note that audits vary in size and scope so a percentage based on the number of audits performed provides only a simplistic view of audit coverage.

8 of 27 (30%) audits performed through the GRA in FY12 included test procedures that specifically covered provisions of the Foreign Corrupt Practices Act (FCPA). Fraud is also considered when we conduct audits that don't have specific FCPA test procedures.

Full Principle 10
SO3. Percentage of employees trained in organization's anti-corruption policies and procedures. (CORE) PDF Report: Our People, page 14 Full Principle 10
SO4. Actions taken in response to incidents of corruption. (ADDITIONAL) Employees may report concerns of corruption to their managers, anyone in their management reporting chain, a human resources representative, or the Office of Ethics. They may also report their concerns anonymously, if they prefer, by calling or going online to Symantecs EthicsLine, which is operated by an independent third party.

During FY2012, approximately 43 percent of concerns reported led to follow-up investigations; the remainder of inquiries by employees were made by employees seeking specific guidance on Symantec's ethics policies (as opposed to making a claim or allegation). Other queries were related to human resources policies and other matters covered by the Code, such as data protection, procurement, and anti-corruption provisions.

All concerns expressed via the reporting channel are investigated at the direction of The Office of Ethics and Compliance and reported out to internal and external auditors as appropriate.

Symantec does not track or report the number of employees disciplined or dismissed for incidences of corruption.

No contracts with business partners were terminated or not renewed due to incidents of corruption during the reporting period.

No legal cases regarding corrupt practices by Symantec or its employees took place during the reporting period.

Full Principle 10
SO5. Public policy positions and participation in public policy development and lobbying. (CORE) Recent Activities

PDF Report: The World, page 25
PDF Report: Your Information, page 32

Our lobbying efforts are in alignment with Symantec's stated policies, goals and public positions.

Full Principles 1 through 10
SO6. Total value of financial and in-kind contributions to political parties, politicians, and related institutions by country. (ADDITIONAL) In 2011, SymPAC made USD $37,000 in Federal PAC donations. A complete list of candidates that received contributions can be found on the Symantec Political Engagement website Full Principle 10
SO7. Total number of legal actions for anti-competitive behavior, anti-trust, and monopoly practices and their outcomes. (ADDITIONAL) None Full  
SO8. Monetary value of significant fines and total number of non-monetary sanctions for non-compliance with laws and regulations. (CORE) None Full  
+ SOCIAL: PRODUCT RESPONSIBILITY
Performance Indicator Location Full/Partial UNGC Cross-Reference
PR1. Life cycle stages in which health and safety impacts of products and services are assessed for improvement, and percentage of significant products and services categories subject to such procedures. (CORE) Not Material Not Reported Principle 1
PR2. Total number of incidents of non-compliance with regulations and voluntary codes concerning health and safety impacts of products and services during their life cycle, by type of outcomes.(ADDITIONAL) Not Material Not Reported Principle 1
PR3. Type of product and service information required by procedures, and percentage of significant products and services subject to such information requirements. (CORE) Not Material Not Reported Principle 8
PR4. Total number of incidents of non-compliance with regulations and voluntary codes concerning product and service information and labeling, by type of outcomes. (ADDITIONAL) Not Material Not Reported Principle 8
PR5. Practices related to customer satisfaction, including results of surveys measuring customer satisfaction. (ADDITIONAL) Symantec's Customer-Driven Philosophy

PDF Report: Your Information, page 38

Full  
PR6. Programs for adherence to laws, standards, and voluntary codes related to marketing communications, including advertising, promotion, and sponsorship. (CORE)

Privacy Policy

We did not sell products that are banned in any markets in FY12.

Full  
PR7. Total number of incidents of non-compliance with regulations and voluntary codes concerning marketing communications, including advertising, promotion, and sponsorship by type of outcomes.(ADDITIONAL) We had no incidents of non-compliance with regulations or voluntary codes concerning marketing communications in FY12. Full  
PR8. Total number of substantiated complaints regarding breaches of customer privacy and losses of customer data. (ADDITIONAL) None Not Reported Principle 1
PR9. Monetary value of significant fines for non-compliance with laws and regulations concerning the provision and use of products and services. (CORE) None Full  


The Ten Principles of the United Nations Global Compact
1.

Businesses should support and respect the protection of internationally proclaimed human rights.

2.

Businesses should make sure that they are not complicit in human rights abuses.

3.

Businesses should uphold the freedom of association and the effective recognition of the right to collective bargaining.

4.

Businesses should uphold the elimination of all forms of forced and compulsory labor.

5.

Businesses should uphold the effective abolition of child labor.

6.

Businesses should uphold the elimination of discrimination in respect of employment and occupation.

7.

Businesses should support a precautionary approach to environmental challenges.

8.

Businesses should undertake initiatives to promote greater environmental responsibility.

9.

Businesses should encourage the development and diffusion of environmentally friendly technologies.

10.

Businesses should work against corruption in all its forms, including extortion and bribery.


SHARE THIS PAGE