Consulting

Easton Row Consulting › Insights & Resources

Regulatory Guide · 2026

EU CSDD Readiness Guide
for Supply Chain Teams

The EU Corporate Sustainability Due Diligence Directive is now an operational requirement for organisations sourcing from global supply chains. This guide sets out the key obligations, timelines, and the practical steps your team needs to take — now.

Download PDF Guide Speak to an Adviser
Published2026
FormatPDF & Web
AuthorEaston Row Consulting
CostFree

The Directive

What is EU CSDD?

The Corporate Sustainability Due Diligence Directive (CSDD) requires companies to identify, prevent, and address adverse human rights and environmental impacts across their operations and value chains. It is the most significant expansion of supply chain legal obligations in the EU's legislative history.

Obligations extend to the entire value chain — upstream to raw material suppliers and downstream to distributors and end users. No sector is exempt. Non-EU companies generating €450M or more in EU revenue are also captured.

2027 Phase 1

Large EU Companies

5,000+ employees and €1.5B+ global turnover. Phase 1 companies must be fully compliant by July 2027.

2028 Phase 2

Mid-Large EU Companies

3,000+ employees and €900M+ turnover. One year after Phase 1 — supplier-facing timelines arrive earlier.

2029 Phase 3

Mid-Size EU Companies

1,000+ employees and €450M+ turnover. Also captures non-EU companies with significant EU revenue.

Important for suppliers: Even if your organisation does not directly meet the thresholds, your customers may impose equivalent contractual requirements 12–18 months before their own legal deadline. Gap assessments should begin now.

Core Requirements

The Five Core Obligations

01

Supply Chain Mapping

Identify and document all direct and indirect business partners across the entire value chain. Understand who makes what, where, and under what conditions.

  • Map Tier 1, Tier 2, and Tier 3 suppliers
  • Document product journeys from raw material to finished goods
  • Identify high-risk geographies and product categories
02

Risk Identification & Assessment

Conduct a thorough risk assessment to identify potential and actual adverse human rights and environmental impacts across your value chain.

  • Apply SMETA, RBA, or equivalent assessment frameworks
  • Assess country-level and sector-level risk profiles
  • Prioritise by severity and likelihood of adverse impact
03

Prevention & Mitigation

Implement measures to prevent identified risks from materialising — through supplier contracts, codes of conduct, and corrective action programmes.

  • Embed binding CSDD clauses in supplier contracts
  • Develop supplier capacity-building programmes
  • Set time-bound corrective action plans (CAPAs)
04

Remediation

Where harm has occurred, establish and implement remediation processes that genuinely address the adverse impact and make good to those affected.

  • Establish a worker-accessible grievance mechanism
  • Provide or facilitate access to remedy
  • Document and monitor remediation outcomes with evidence
05

Monitoring & Reporting

Maintain ongoing monitoring of your supply chain risk and publish an annual due diligence report in line with regulatory requirements.

  • Annual CSDD report made publicly available
  • Board-level oversight of due diligence programme
  • Auditable documentation trail maintained for regulatory scrutiny

Self-Assessment

CSDD Readiness Checklist

Use this 25-item checklist to assess your organisation's current readiness level. 20–25 items: strong foundation. 10–19: active remediation required. 0–9: urgent action needed.

Supply Chain Mapping

  • Tier 1 suppliers fully documented (name, location, category)
  • Tier 2 and beyond mapped for high-risk product categories
  • Country-level human rights risk assessment completed
  • Environmental risk mapped across supply tiers
  • Supplier information kept current (annual refresh minimum)

Policy & Governance

  • Human rights & environmental due diligence policy in place
  • Policy aligned to UN Guiding Principles and OECD Guidelines
  • Board-level ownership and sign-off established
  • Due diligence integrated into procurement/sourcing decisions
  • Supplier Code of Conduct updated with CSDD requirements

Risk Assessment

  • Formal risk assessment process documented and repeatable
  • Prioritisation methodology based on severity and likelihood
  • High-risk suppliers identified and action-planned
  • Sectoral and geographic risk factored into sourcing strategy
  • Risk assessment reviewed at minimum annually

Remediation & Grievance

  • Worker-accessible grievance mechanism in place
  • Mechanism tested and communicated to supply chain
  • CAPA (corrective action) process documented
  • Escalation and closure procedures defined
  • Remedy tracking and evidence retention in place

Monitoring & Reporting

  • Annual CSDD report structure prepared
  • KPIs defined for due diligence performance
  • Audit schedule aligned to risk level
  • Evidence trail maintained for regulatory scrutiny
  • Legal team briefed on disclosure obligations

Advisory Insight

The Most Common CSDD Gaps

Based on advisory experience across global supply chains.

Tier 2+ Blindspot

Challenge

Most organisations have reasonable visibility of Tier 1. CSDD requires mapping further upstream — where the highest human rights risks often sit.

Solution

Conduct a risk-based Tier 2/3 mapping exercise, prioritised by product category and country of origin.

Outdated Supplier Codes

Challenge

Standard supplier codes of conduct do not meet the specificity now required. CSDD demands contractual obligations, not just aspirations.

Solution

Update supplier agreements with binding CSDD clauses and graduated consequence frameworks.

Inaccessible Grievance Mechanisms

Challenge

Mechanisms exist on paper but are unknown to workers, not available in local languages, or too formal for practical use.

Solution

Test your grievance channel with supplier workers directly. Anonymity, local language, and simplicity are non-negotiable.

No Board Ownership

Challenge

Due diligence sits in procurement or sustainability teams. CSDD requires demonstrable board-level oversight — not just delegation downward.

Solution

Establish a board-approved due diligence policy and a named executive responsible for CSDD compliance.

Evidence Gaps

Challenge

Companies believe they are compliant but lack the documented evidence trail required to demonstrate it under regulatory scrutiny.

Solution

Build evidence retention into your audit and remediation processes from day one, not as an afterthought.

No Independent Verification

Challenge

Self-reported supplier assessments are unlikely to satisfy auditors. CSDD expects credible, defensible evidence of actual conditions.

Solution

Commission independent social compliance audits aligned to SMETA, RBA, or customer-specific frameworks.

Download the Full Readiness Guide

Get the complete EU CSDD Readiness Guide as a PDF — including the full checklist, obligations summary, and gap analysis. Free to download, no registration required.

Download PDF (Free) Or speak to an adviser →