If you’re an organisation with more than 50 employees or a municipality with over 10,000 inhabitants and you don’t have a secure way for individuals to report wrongdoing. Here is what you need to do to get compliant with the EU Whistleblowing Directive.
Follow the tips below to get closer to being compliant with the EU Whistleblowing Directive.
Create and manage secure reporting channels that keep the identity of the whistleblower and others named in the report, anonymous. Prevent unauthorised access to reports and maintain safe records.
Allow for written reports, via an online platform, email, or physical post, and/or verbal reports, by phone or voice messaging system. Upon request, also facilitate personal meetings.
Appoint a suitable person or department to be responsible for receiving and following up on reports. Including maintaining communication with the reporting person and providing diligent feedback.
Ensure reporting channels are easily accessible for all employees. Extend this to all stakeholders involved with your organisation; suppliers, shareholders, contractors, trainees, job applicants and so on.
Implement a procedure that confirms receipt of the report to the whistleblower within seven days and provides feedback to the reporting person within three months.
Continue to meet GDPR requirements, specifically think about how you handle personal data and check that your data is saved within the EU.
Philippa Johnsson, Whistlelink
Test our whistleblowing system free for a month
HAPPY TO MEET YOU!