CSDDD Supplier Contracts

What CSDDD requires in supplier contracts

CSDDD Article 10 requires companies to take appropriate measures to prevent or adequately mitigate potential adverse impacts identified through their due diligence. For indirect suppliers (tier 2+), one of the primary prevention tools is contractual — requiring tier 1 suppliers to cascade obligations down their own supply chains.

Required contractual content under CSDDD:

Code of conduct compliance: Suppliers must contractually commit to complying with the company's code of conduct — covering human rights standards, environmental requirements, and anti-corruption commitments aligned with CSDDD obligations.

Cascade obligations: Tier 1 suppliers must be required to impose equivalent obligations on their own suppliers — creating a contractual chain that extends due diligence obligations beyond the direct supply relationship.

Audit rights: The company must have contractual rights to audit supplier compliance — either directly or through third-party auditors. The right to audit is meaningless without a contractual basis.

Remediation cooperation: Suppliers must contractually commit to cooperate in remediation of identified adverse impacts — providing data, access, and corrective action plans when violations are found.

Termination rights: The company must have the contractual right to suspend or terminate the supplier relationship where adverse impacts cannot be remediated — as a last resort after other measures have failed.

The European Commission is required to publish model contractual clauses to help companies — particularly SMEs — implement these requirements efficiently.

The cascade challenge — tier 2 and beyond

The cascade requirement — that tier 1 suppliers impose CSDDD-equivalent obligations on their own suppliers — is one of the most operationally complex elements of CSDDD.

For a large manufacturer with 500 tier 1 suppliers, each of whom has 200 tier 2 suppliers, the contractual cascade extends to 100,000 relationships at tier 2 alone. Monitoring contractual compliance at this scale is impractical.

The proportionality principle: CSDDD acknowledges this through proportionality — companies must take measures commensurate with the severity and likelihood of adverse impacts. For low-risk tier 2 relationships, a standard supplier code of conduct cascade is sufficient. For high-risk tier 2 relationships (specific commodities, countries, sectors), more substantive contractual requirements and monitoring are expected.

Practical cascade mechanisms: Rather than bilateral contracts with every tier 2 supplier, practical approaches include: requiring tier 1 suppliers to adopt recognised industry standards (SA8000, BSCI code) that incorporate CSDDD-consistent requirements; participating in multi-stakeholder programmes (RBA, Better Cotton) that set standards across a supply chain; and requiring tier 1 suppliers to report on their own supplier due diligence as part of annual sustainability data collection.

The audit cascade: CSDDD allows companies to rely on audits conducted by industry initiatives — individual suppliers do not need to be audited separately if they participate in a recognised industry audit programme. This significantly reduces the practical burden of tier 2+ monitoring.

Supporting SME suppliers — the financial assistance obligation

CSDDD Article 10(2) includes an important protection for SME suppliers — companies subject to CSDDD must not require SME suppliers to bear disproportionate contractual burdens and must provide support where necessary.

Financial support: Where compliance with CSDDD-linked supplier requirements imposes disproportionate costs on SME suppliers, the company should consider providing financial support — co-financing certifications, funding capacity building programmes, or subsidising audit costs.

Capacity building: Many SME suppliers in developing countries lack the management systems, documentation capability, or technical knowledge to comply with CSDDD-consistent requirements. CSDDD-subject companies have an obligation to provide or facilitate capacity building rather than simply imposing requirements and terminating relationships when suppliers cannot comply.

Reasonable timeframes: SME suppliers must be given reasonable transition timeframes to achieve compliance — immediate termination of long-standing SME supplier relationships for CSDDD non-compliance, without support and transition time, is both commercially disruptive and inconsistent with CSDDD's intent.

The VSME standard: The EU's Voluntary SME Standard (VSME) for sustainability reporting provides a framework for SME suppliers to report the data their large customers need for CSDDD and CSRD compliance. Encouraging SME suppliers to adopt VSME reporting is a practical way to improve supply chain sustainability data quality while providing a proportionate reporting framework for SME suppliers.

Frequently asked questions