This statement constitutes the Modern Slavery Act Transparency Statement for Red Hat, Inc. and its subsidiaries (“Red Hat”) for the financial year ending 31 December 2020. As a global company, respect for human rights is an integral part of the corporate social responsibility commitments of Red Hat. We strongly oppose illegal human trafficking and forced labor (and all other forms of modern slavery) in any form. Accordingly, Red Hat strives to operate in accordance with the highest standards of conduct, ethics, and fair treatment and it is committed to improving our practices for identifying and minimizing the risk of modern slavery in our operations and supply chain.
Structure, Operations, and Supply Chain
Red Hat Inc., founded in 1993 and headquartered in the United States, has offices in more than 40 countries with over 18,000 employees located across the globe. Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux®, hybrid cloud, container, and Kubernetes technologies. Red Hat delivers hardened, open source solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge. By operating transparently and responsibly, we continue to be a catalyst in open source communities, helping customers build flexible, powerful IT infrastructure solutions.
Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. As a strategic partner to cloud providers, system integrators, application vendors, customers, and open source communities, Red Hat can help organizations prepare for the digital future.
Red Hat is wholly owned by International Business Machines Corporation (IBM), which is also headquartered in the United States. Red Hat was acquired by IBM in 2019 for US$34B, breaking the record for the largest software acquisition in history. Together, IBM and Red Hat will continue to innovate with a next-generation hybrid multicloud platform with a goal to redefine cloud for business.
As a services business that does not manufacture any tangible goods, Red Hat’s supply chain is limited and consists of goods and services procured to operate our business and enable our employees and partners to deliver our services. As such, we assess the risk of modern slavery or human trafficking occurring within our operations and supply chain to be relatively low. Notwithstanding this, we recognize that there is an inherently higher risk of modern slavery within some of our supply chains, particularly those that fall within higher risk product and service sectors, to include technology hardware, construction, food and beverage, and property and building services (e.g., cleaning, maintenance, and waste management). We recognize that this inherent risk is even higher for suppliers that have a global footprint, including in high-risk geographies.
We further consider Red Hat’s risk of modern slavery in its operations to be relatively low, given our hiring practices and the contractual, policy and statutory protections provided to all employees. We strive to only hire employees that are authorized to work in accordance with applicable employment laws in the country in which they are located. Additionally, we are committed to respecting human rights in our workplace and have a number of policies and processes in place to promote a safe, diverse, and inclusive workplace.
Actions Taken to Assess and Address Modern Slavery Risks
Red Hat takes a global framework approach in combatting modern slavery in our operations and supply chain. The following section provides an overview of actions taken by Red Hat to assess and address risks in our operations and supply chains, and the policies and processes currently in place to facilitate risk assessment, prevention, and mitigation across the globe:
Policies and Standards
- Red Hat Procurement Supplier Code of Conduct (Supplier Code). To ensure the integrity of supplier relationships across the globe, as part of Red Hat’s standard procurement process, Red Hat suppliers are required to operate in accordance with our Supplier Code of Conduct (or an equivalent code) and to apply this Supplier Code in all dealings with Red Hat. The Supplier Code applies to third parties supplying goods or services to or on behalf of Red Hat, including staffing agencies and independent contractors, and it incorporates Red Hat’s commitments regarding health and safety, labor and human rights, ethics, and other responsible business practices. In December 2019, Red Hat revised its Supplier Code in order to more clearly set forth minimum expectations for our suppliers and third-party labor providers related to ethical practices including addressing modern slavery and human trafficking risks in their business. A supplier’s violation of the requirements of the Supplier Code may result in the immediate suspension or termination of the supplier relationship. The Supplier Code is publicly available on Red Hat’s website at the following link: https://www.redhat.com/en/about/policies/procurement/supplier-code-of-conduct.
- Code of Business Conduct and Ethics (Code of Conduct). The Red Hat Code of Conduct, recently updated in June 2020, is the cornerstone of Red Hat’s compliance program that provides our employees with a clear understanding of the high standards for ethical conduct by which we conduct our business globally. Red Hat requires that all employees of Red Hat, Inc., and its subsidiaries, comply with this Code of Conduct, other Company Policies, and all laws, rules, and regulations applicable to Red Hat wherever it does business. The Code of Conduct also requires employees, officers and directors of Red Hat to deal honestly, ethically and fairly with its suppliers, customers, competitors and employees, and to ask questions, seek guidance, report suspected violations, and express any concerns regarding compliance with it. Employees are asked to certify that they understand and will follow the ethical principles and compliance rules outlined in the Code of Conduct upon hire, followed by annual re-certification each subsequent year.
- Employee Training. Red Hat’s Annual Compliance and Ethics Training program is also a part of Red Hat's bedrock commitment to maintaining a culture of compliance and ethical business practices in accordance with our Code of Conduct. Each year, Red Hat employees around the globe are required to complete compliance and ethics training on a variety of ethics and compliance topics. In the future, we will evaluate how we can enhance this training in order to more effectively address human rights and modern slavery issues across the organization.
- Red Hat Business Partner Code of Conduct (Partner Code). Red Hat relies on our partners to help us maintain the trust of our customers and broader community and, therefore, we only work with entities who we believe are honest and ethical, and who commit to do business ethically. The Partner Code applies to all Red Hat partners and their officers, directors, employees, independent contractors, and agents. Red Hat expects all partners to adhere to this Partner Code when conducting business with Red Hat and its customers, potential customers and other partners. If Red Hat believes that a partner has failed or may fail to comply with this Partner Code, Red Hat may immediately suspend or terminate its relationship with the partner. The Partner Code is publicly available on Red Hat’s website at the following link: https://www.redhat.com/en/about/red-hat-partner-agreements.
Due Diligence Actions to Identify Modern Slavery Risks
- Supplier Certification. As part of our standard procurement process, Red Hat suppliers must agree to comply with our Supplier Code, or make an equivalent commitment, at the outset of the relationship. A supplier’s failure to sign and return the Supplier Code certification may result in the supplier’s disqualification from providing future goods or services to Red Hat, Inc. or any of its subsidiaries. The Supplier Code expressly states that the supplier “shall comply with slavery, human trafficking and child (and minimum age) labor laws of the country or countries in which they conduct business, shall ensure that slavery, servitude, forced or compulsory labor (including prison labor) and human trafficking are not taking place in their supply chains, and shall deal honestly, ethically, and fairly in these relationships.”
- Supplier and Business Partner Due Diligence. All Red Hat suppliers and partners are subject to various forms of due diligence, including the verification of information provided to Red Hat. Additional selective, risk-based due diligence exercises are also performed on both Red Hat business partners and suppliers. During the current reporting period, Red Hat Inc. developed a new enhanced Supplier Validation Process for both existing and new suppliers, which incorporates a new supplier questionnaire, risk assessments, and more comprehensive anti-corruption compliance directives. The new supplier questionnaire includes questions that will help Red Hat assess potential modern slavery risks, including whether the supplier employs vulnerable workers (e.g., migrant workers or young workers). Under the new supplier validation program, Red Hat will also periodically revalidate certain suppliers based on their business and the goods or services they provide. The new supplier validation initiative launched in December 2020 with an initial pilot group of existing suppliers.
- Employee Certification. As noted above, all Red Hat employees are required to complete annual Compliance and Ethics Training, which requires all employees to review and re-certify their commitment to the Code of Conduct.
- Reporting Mechanisms. In order to encourage and foster a culture of reporting, Red Hat maintains a number of policies and reporting channels enabling employees, suppliers, business partners, and the general public to report potential violations of our standards, including illegal or unethical business practices. Red Hat policies also prohibit retaliation or other adverse action against those that raise concerns in accordance with these policies. Reporting channels include a global Compliance and Ethics Hotline that is available 24 hours a day, seven days a week and allows for reporting on a confidential or anonymous basis. During 2020, Red Hat also established a dedicated supplier concerns reporting channel (firstname.lastname@example.org), which is referenced in our Supplier Code. We continuously monitor these reporting mechanisms. To-date, we have received no reports involving complaints of modern slavery risks or incidents via these reporting channels.
Assessment of Effectiveness
In future years, Red Hat will continue to assess the effectiveness of our actions in combatting risks of Modern Slavery, including those policies, standards and due diligence actions outlined above. Red Hat is always seeking to improve in this area and it continues to review its human rights efforts, as well as best practices across different regions, to understand how we can further strengthen our commitment to ensure modern slavery and human trafficking are not taking place within our organization or our supply chains in the UK and globally. Red Hat will continue to implement our third-party due diligence processes, including the global launch of the newly revised and more robust Supplier Validation Process in 2021. As a part of this Supplier Validation Process, we will continue to seek responses to the modern slavery-related questions incorporated into our supplier questionnaire in order to further understand potential modern slavery risks in our supply chain. Red Hat will also establish a Modern Slavery Working Group, drawing upon global expertise across Red Hat, Inc. and its subsidiaries, in order to identify and consider other ways to improve our policies and processes in order to combat the risks of modern slavery. We will also continue to monitor our reporting mechanisms (including any whistleblower reports received through our Compliance and Ethics Hotline) to identify whether any of the reports reflect modern slavery incidents or risks.
This statement is being published in satisfaction of the statutory obligations under section 54 of the UK Modern Slavery Act (2015) on behalf of Red Hat Inc. and its subsidiaries, which includes Red Hat UK Limited. This statement was reviewed and approved by the Board of Directors of both Red Hat, Inc. and Red Hat UK Limited.