TELEPERFORMANCE_Registration_document_2017

ENVIRONMENTAL, LABOR AND SOCIAL INFORMATION

5.4 Social information

Vice-Presidents heads of Privacy/Data Protection Officers. The Global Privacy Office is responsible for implementing the Group’s global privacy policy and ensuring that Teleperformance is in full compliance with privacy regulations around the world, such as the European Commission’s General Data Protection Regulation (“GDPR”), which goes into effect as from May 25 th 2018. Also in 2017, Teleperformance created the Global Technology and Privacy Committee, which is chaired by the Chief Information Security Officer. The members of this Committee are the Global Chief Information Officer and all regional Chief Information Officers, as well as the Global Deputy Chief Compliance Officer and Chief Privacy Officer, and the regional Senior Vice Presidents heads of Privacy/Data Protection Officers. The main function of this Committee is to evaluate all new and existing technologies prior to deployment to ensure that a Privacy Impact Assessment (PIA) has been completed. This process ensures that Teleperformance evaluates the privacy implications of the technologies we use in collecting or processing data as both a Data Processor and a Data Controller. Teleperformance made a strategic decision in early 2017bto obtain Binding Corporate Rules (“BCRs”) certification from the European Commission. Upon implementation of the BCRs, our subsidiaries will agree to follow them (as both Data Controllers and Data Processors) which will allow Teleperformance to transfer and process data globally. The Group’s application for BCR certification was approved by the EU in January 2018. 5.4.3.7 Other action in support of human rights The Teleperformance Group has agreed to abide by the United Nations Global Compact, confirming its adherence to a set of fundamental values, in particular Principlesb1band 2: 1. Businesses should support and respect the protection of internationally proclaimed human rights; and 2. Ensure that they are not complicit in human rights abuses. Teleperformance upholds and defends human rights and ensures that these two principles are strictly applied by all of its subsidiaries. Accordingly, in all of its relations with stakeholders, Teleperformance ensures that it is not complicit in human rights abuses. Our commitment takes the form of encouragement to adopt the behavior advocated in our Code of Ethics, equal opportunities policy and supplier Code, which also stems from our corporate values: Integrity, Respect, Professionalism, Innovation and Commitment. Our operating procedures are designed to guarantee respect for human rights.

5.4.3.5 Measures taken to promote consumer health and safety The Group’s business entails no risk of harm to consumers’ health or physical safety. 5.4.3.6 Personal data protection and security The Group’s activity requires subsidiaries, acting as data controllers, to collect, process and transfer personal data regarding our employees. When acting on behalf of its clients, Teleperformance acts as a data processor and collects and processes personal data of the customers of its clients. The Group must not only meet legal requirements as well as any contractual commitments to its clients, but also more than 300bcompliance criteria in the field of security. Non-compliance with statutory and contractual requirements could lead to adverse consequences for the Group’s performance. In 2015, the Group implemented a set of security rules (“Global Essential Compliance and Security Policies” or “GECSPs”), designed to anticipate possible risks of fraud or violation of legal security rules. The Group established an internal compliance audit function, which reviews our operational sites on a rotating 24-month schedule for adherence to the GECSPs and client requirements. In addition, external auditors carry out audits of selected sites in order to assess compliance with the GECSPs and other security processes implemented in our sites. In addition, a Global Compliance and Security Council, chaired by the Global Deputy Chief Compliance Officer and Chief Privacy Officer meets monthly to review security incidents, if any, ensure regular compliance with the GECSPs, and quarterly to review results of the internal and external audits and other compliance matters. As Teleperformance places special attention on security matters, all regional CEOs and relevant operational and compliance Officers attend the Global Compliance and Security Council meetings. Also, as of February 1 st 2016, Teleperformance appointed a Worldwide Chief Legal Officer and Chief Compliance Officer, who reports directly to the Group Chairman and CEO. Teleperformance also appointed a Global Deputy Chief Compliance Officer and Chief Privacy Officer, who reports to the Chief Legal Officer and Chief Compliance Officer. These Officers provided a report of activities to the Board in 2017band, beginning in 2018, will provide reports of activities to the Audit and Compliance Committee of the Board. As part of the Group’s ongoing efforts to manage these functions proactively, we have also created the Global Privacy Office. This office is comprised of the Global Deputy Chief Compliance Officer and Chief Privacy Officer, along with 3bregional Senior

5

153

Teleperformance bb - bb Registration documentbb 2017