Our Commitment to Ethical Conduct, Compliance, and Responsible Data Use
At Kantar, we are committed to upholding the highest standards of integrity and transparency across our operations and relationships. This includes preventing bribery, fraud, and corruption of any kind, protecting data, and ensuring the responsible use of AI. These principles are embedded in the way we work and are reflected in the Kantar Business Principles [add link], which serve as the foundation for our commitments and expectations across the organisation. These same standards extend to our external partnerships through the Kantar Supplier Code of Conduct [insert link] and other contractual terms, which set out the behaviours and ethical standards we expect from all suppliers and partners acting on our behalf.
To support this commitment, we have established a comprehensive suite of policies that promote compliance with legal and ethical standards and foster a culture of honesty and accountability. The Kantar Policy Framework sets the tone from the top, with compliance and ethical behaviour championed by leadership. Each policy in the Kantar Policy Book is sponsored by a member of our Executive Leadership Team and maintained by designated Owners who ensure content remains relevant, current, and effective.
Raising Concerns and Reporting Issues at Kantar
We are committed to maintaining a safe, respectful, and accountable environment where colleagues and partners feel empowered to raise concerns without fear of retaliation. Whether the issue relates to potential breaches of our policies, ethical standards, or legal obligations, we encourage open and honest communication.
Concerns can be raised through normal reporting channels—such as line managers, HR, or other appropriate internal teams—as well as via our Right to Speak [link to new page where translations of the RTS policy and privacy notice will be listed] process. This dedicated mechanism, hosted by an independent third party, offers a confidential and, if preferred, anonymous way to report serious concerns that individuals may not feel comfortable raising directly. It is available to anyone who works with or for Kantar.
Every report is taken seriously, reviewed diligently, and investigated where appropriate. By fostering a culture of transparency and accountability, we protect our people, uphold our values, and strengthen trust across our business and stakeholder relationships.
Kantar is committed to the secure, ethical, and compliant use of data and technology across all aspects of our business. Our policies ensure that data is protected, handled responsibly, and used in ways that uphold individual rights, client trust, and legal obligations. These principles also guide our use of AI and digital systems, promoting transparency, fairness, and accountability in how we manage and apply technology.
Data Protection Policy: Part of our Data Protection Framework, this policy outlines how we manage personal data, respond to incidents, and uphold individual rights.
Data Ethics and Integrity Policy: Ensures responsible data collection and use, supports quality assurance, and promotes purpose-driven insights.
Cyber Security for Users Policy: Provides guidelines for protecting Kantar systems and data, covering asset management, training, and compliance.
Responsible Use of AI Policy: Promotes ethical and legal AI use, with principles of transparency, fairness, accountability, and resilience.
You can find out more about our Data Protection and AI practices here [links to content provided by Rav]
In addition to our internal reporting mechanisms, Kantar complies with all relevant statutory and regulatory obligations. This includes the timely and accurate reporting of matters to external authorities where required by law. We have clear procedures in place to ensure that serious concerns—such as those involving criminal activity, regulatory breaches, or significant risk—are escalated appropriately and reported to the relevant bodies.
Our commitment to regulatory compliance is embedded in our policies and supported by training, oversight, and governance structures that ensure we meet our legal responsibilities across all jurisdictions in which we operate.
Section 172 Statements
Global Tax Strategy
Kantar’s commitment to secure, ethical, and compliant practices is supported by a robust set of operational safeguards and technical controls. These measures ensure that our systems, data, and processes are protected against unauthorised access, misuse, and vulnerabilities. We apply industry standards and best practices across our infrastructure, including encryption, access management, incident response, and supplier oversight. This section provides further detail on how we implement these controls to uphold trust, protect privacy, and maintain compliance across our global operations.
You can find out more about how we keep our data secure here [links to content provided by Sean this text below is just a draft, final text to be provided by Sean]
Information Security Standards and Certifications
Kantar adheres to internationally recognised information security standards, including ISO/IEC 27001. These certifications validate our commitment to maintaining a secure environment for data and systems. Our compliance with these frameworks ensures that we apply rigorous controls, conduct regular assessments, and continuously improve our security posture.
Incident Management and Response Protocols
We have established clear protocols for identifying, managing, and responding to security incidents. This includes real-time monitoring, escalation procedures, and post-incident reviews to ensure lessons are learned and improvements are made. Our incident response teams are trained to act swiftly and effectively to minimise impact and restore operations.
Third-Party Risk and Supplier Controls
Kantar applies thorough due diligence when engaging third-party vendors and suppliers. We assess their compliance with relevant standards and monitor their performance on an ongoing basis. Contracts include clear expectations for data protection and security, and we conduct periodic reviews to mitigate risks.
Access and Identity Management
Access to Kantar systems and data is governed by role-based controls and authentication protocols. We implement multi-factor authentication where appropriate and conduct regular reviews to ensure access rights remain appropriate. These measures help prevent unauthorised access and support accountability.
Monitoring and Audit Practices
We continuously monitor our systems to detect anomalies and ensure compliance with internal and external requirements. Regular audits are conducted to evaluate the effectiveness of our controls and identify areas for improvement. Findings are reviewed by relevant stakeholders and inform updates to our policies and procedures.
Kantar acknowledges the significance of timely, accurate, and transparent reporting and is dedicated to fulfilling all statutory reporting obligations. Find our corporate governance disclosures by clicking the button below