Last updated: 14.3.2019
Digia’s CEO is responsible for corporate responsibility with the support of the Management Team and the Board of Directors approves a non-financial data report annually.
During 2018, Digia further developed its non-financial data reporting by using a materiality matrix to help the company define the most significant themes for its corporate and social responsibility. Digia examined responsibility from financial, social and environmental perspectives, and also
with regard to responsibility themes within its sector. Digia has also assessed the corporate liability risks associated with its own operations and business relations, and has adequate and appropriate processes in place to predict and take precautions against these risks.
Digia wants to create value for its stakeholders by engaging in responsible and profitable business. Profitable operations enable Digia to invest in business growth and provide its financial stakeholders with income. Digia’s material areas of corporate responsibility are anti-bribery and corruption, data security and protection, responsibility in customer relations, customers, taking care of employees, technological solutions, and taking environmental
responsibility into consideration.
Digia is an IT service company that helps its customers harness digitalisation opportunities and build ecosystems. Together with its customers, Digia develops and innovates solutions that support their business. The company adapts its expertise to their specific industries to help them develop digital services, manage operations and utilise information. Digia commercialises industry-specific solutions from its own and third-party products. The company makes complete and tangible solutions that generate value fast and which are adapted to the needs of the industry in question. The company employs approximately 1,100 experts in Finlandand Sweden. Digia is expanding its international presence together with its customers.
The company’s service model includes, for instance, consultation, service design, development partnership and continuous services. Digia has industry expertise particularly in the commercial, logistics and industrial sectors, in the public sector, and in banking and insurance. In 2018, Digia comprised four service areas: Digital Services, Integration and Information Management, Industry Solutions, and Financial Operations.
Corporate responsibility is an integral part of Digia’s business, and the company seeks to act responsibly in all its operations. Digia’s responsibility is based on our own ethical principles, the UN’s Universal Declaration of Human Rights, and the International Labour Organisation’s (ILO) standards. However, in our changing business environment, responsibility is based above all else on the continual monitoring and improvement of our operations.
Digia does not condone bribery or corruption in any form. The anti-bribery and anti-corruption policy covers all of Digia’s operations. Digia’s internal anti-bribery and anti-corruption policy underlines that Digia takes bribery and corruption seriously, and sets out rules and guidelines to promote ethical and lawful behaviour. We foster our reputation as an ethical company by creating awareness of the risks of bribery and corruption, such as their legal consequences, reputational risk, and the risk of exclusion from public-sector
Digia primarily operates in Finland and our operations mainly extend only to other low-risk countries (as classified by Transparency International). However, Digia has foreign partners in countries where the risk of bribery and corruption has increased. We pay attention to bribery and corruption in our dealings with partners, and exercise extreme caution in the selection of our partners. We also require our partners to commit to compliance with anti-bribery and corruption legislation.
Digia has organised training for personnel to help combat bribery and corruption. We will monitor the attendance rate for this training, and report further on it annually.
Digia has a channel through which personnel can report any suspected violations related to bribery and corruption. These reports can also be made anonymously. All of the reports are forwarded to Digia’s legal department for confidential handling.
Digia seeks to be a visionary partner and innovator for our customers in their operations, helping them to develop their own business in a changing, digitalising world. Digia works responsibly, helping its customers to find technologically suitable and secure solutions, and offers constant partnership
to enable customers to ensure uninterrupted business and to both predict and prevent any disturbances and operational interruptions.
Digia uses an ISO 9001-certified quality management system (Core Process Model) whose processes are utilised in all operations with a view to providing an optimal customer experience.
The high quality of services and products is an essential part of Digia’s business and the foundation for day-to-day operations. Digia’s quality policy supports the implementation of the company’s strategy and provides a common foundation for high-quality work in product and service development, delivery projects, continuous services, and support functions that increases customer satisfaction. Digia has defined company-level quality objectives and indicators for customer satisfaction, employee satisfaction, quality of projects and services, continuous process development. The system directs and provides guidelines for risk management at different levels of operations. Company-level risks are monitored and analysed on the
basis of the guidelines.
At the beginning of 2018, Digia also introduced a new customer account management model. The new model describes Digia’s key operating principles, responsibilities and practices that are applied when Digia works with its customers. With this overhaul, Digia seeks to further enhance customer experience, customer satisfaction, quality and efficiency, and thereby also increase net sales growth and improve profitability.
In the account management model, the customer is at the heart of Digia’s operations and development. The model has streamlined and harmonised responsibilities, and it has ensured that Digia’s organisation, steering, decision-making and processes constitute a uniform interface for customers. Digia’s Management Team monitors the functionality of the model and reports on performance to the Board of Directors.
Digia seeks a high level of data protection, data privacy and information security in all of its activities. Digia is committed to protecting the data, materials and devices in our possession regardless of who they belong to – Digia, our customers or our partners. We respect the privacy of our personnel, customers and partners in all our operations. Protecting customers’ privacy is an important element of our customer relationships.
Digia has identified the following risks in its own operations with regard to privacy and data protection: reputational risk, contractual risk, and the risk of sanctions. We maintain a high level of data protection and information security by training our personnel, administrative and technical controls, audits, and continually developing processes related to privacy and information security.
Digia’s overhauled data protection organisation came into force at the beginning of 2018. In the new setup, data protection and information security procedures and processes will be in the Senior Security Advisor’s area of responsibility. The Senior Security Advisor reports to Digia’s Director of Technology, who is on the Management Team. Every function also has a separately appointed person responsible for data protection and security. Digia’s data protection policy and practices, including those employed with customers and subcontractors, meet the additional obligations brought by the EU General Data Protection Regulation (GDPR) that came into force in 2018.
In 2018, information security processes were overhauled as part of Digia’s extensive process reform. The information security process overhaul is part of a larger effort to develop security management for closer alignment with the ISO 27001 model. In connection with this, the secure system development process was also updated, taking data protection and information security into consideration in agile software development projects as well.
Data protection and information security also form part of our personnel’s induction training. All employees have completed data protection training on the EU General Data Protection Regulation. Training is supplemented once a year.
We continually supervise our data protection and information security practices, and update our operating models as required to counter threats and risks. Data protection is included in Digia’s certified quality assurance system.
In addition to ordinary services, Digia provides its customers with services that meet particularly high information security/protection levels both on the customer’s own premises and at its three locations in its officially-audited (Facility Security Clearance) premises. These premises and operations in them are described separately as part of the processes guiding Digia’s operations. In 2018, audits of these premises and functions were carried out by parties such as the Finnish Security Intelligence Service and the Finnish
Digia aims to be a desired employer in the technology sector that supports the employee experience, personnel wellbeing and development of expertise. Skilled and motivated personnel are the cornerstone of Digia’s success.
The accelerating technological development and digitalisation of society fuel competition for professionals. Digia aims to provide its employees with a positive employee experience, which paves the way for a good customer
experience. The company makes outlays on developing high-quality supervisory work and the orientation training of new employees. In 2018, Digia launched the #DigiaCulture project, which seeks to strengthen and enhance everyday workplace culture in collaboration with Digia employees. Digia’s policy is to provide its employees with opportunities for career rotation, personal development and the maintenance of their competitiveness.
Digia is a flexible employer that gives space to diversity. The company treats all employees equally regardless of their gender, ethnicity, religion, age and other such factors. The diversity of the company increases human capital, which supports Digia employees’ occupational wellbeing, productivity and ability to renew themselves. The company’s employees have deep professional expertise, enabling peer learning.
Personnel development is guided by changes in the operating environment and society. An average of 46 hours of training per person were spent on competence development in 2018. The Digia Academy organised about 200 different training events during the year. The main focus of training was on organising coaching to support the technical and professional skills of experts. Digia aims to ensure that a large share of learning takes place by trying out and practicing new things in day-to-day work as well as through learning from others. Digia has active workplace tribes, whose major
task is to develop the competence of the tribe members and provide recommendations about company-level technology policies in the specialist area of the tribe.
The management of occupational wellbeing is part of strategic management to ensure productive business and employee wellbeing. In 2018, the development of operating models for the management of occupational wellbeing continued and a new working capacity index is in use for management purposes to measure and monitor the correct timing of the measures taken. Digia employs a bridge-builder model that bolsters the roles of personnel representatives in promoting occupational wellbeing.
Digia acquired the expertise required by its growth strategy not only through recruitment and subcontracting, but also by means of corporate acquisitions. In 2018, 71 new professionals joined Digia via corporate acquisitions. Digia’s
employee turnover in 2018 was 12.0% (2017: 10.8%).
Job satisfaction surveys are conducted annually. Based on the results of the 2018 personnel survey, the operating methods of Digia and its businesses as well as the employer experience of personnel have been developed further. In 2018, overall personnel satisfaction was 3.77 on a scale of 1–5 (2017: 3.64). Digia assesses that the major personnel risks concern retaining competent employees. Digia will make further outlays on this in 2019.
The company respects internationally recognised human and labour rights as well as cares for the wellbeing of its personnel, maintaining a safe and healthy working environment for all its employees. Digia has not performed a human rights assessment, but in the company’s opinion there are no significant risks of human rights violations inherent in our own operations. Digia’s supply chain does not, in the main, extend outside Finland.
Digia seeks to be a technological pioneer that promotes society with its products and services, providing solutions that support society and the environment. Technology is developing at an ever-faster pace. Digia keeps a close eye on megatrends and technological trends to acquire and maintain its technological capabilities.
Digia invests in new technologies that generate added value by developing them as part of its offering and by training personnel. In addition, Digia provides its employees with plenty of opportunities to innovate and develop their expertise. By doing so, Digia gives its customers access to state-of-the-art, technologically sustainable solutions and services that promote society and the environment. This is an essential aspect of Digia’s competitiveness in the market.
In addition to investing in its own technology, Digia is involved in a variety of technology networks and cooperates with different technology suppliers. Digia has, for instance, organised Digia API Hackademy events since 2017. Digia API Hackademy is a training programme in which participants team up to brainstorm and plan solutions to topical business challenges using open interfaces (API) and artificial intelligence technologies. The ideas created by the teams participating in API Hackademy 2018 included an IoT-enabled measuring device for the home care of the elderly and a smart refrigerator that alerts the user about products that are about to expire, thereby reducing food wastage.
Digia wants to provide its employees with a technologically smooth, safe and sustainable workplace by continuously modernising and developing its own systems and processes.
Digia shoulders its responsibility for the environment in all its choices. The company strives to account for the environmental impact of its activities, such as in procurement processes, and to make environmentally friendly choices. We do not see any significant environmental risks associated with Digia’s operations.
We also consider ourselves a producer of added value in the area of environmental responsibility. The digital services and solutions provided by Digia help our customers to reduce their environmental impacts by, for example, enabling a paperless approach.
We intend to increase our personnel’s environmental awareness through a variety of campaigns. Digia examines the environmental impacts of its own operations at its headquarters in Helsinki using the WWF Green Office system. After an office audit in 2016, Digia was granted a Green Office certificate.
|Area||Operating principles and processes||Objective||Indicators|| 2018
|Customers||To act as a responsible, reliable and truly caring business partner that helps customers find sustainable, technologically suitable and information secure solutions to develop their operations and business.||Responsibility and progressive activities in all business operations and ensuring data protection and information security.||Valid ISO 9001 certificate, net sales growth||18.6%||18.0%||Digia's reputation risk and weakening of competitiveness.|
|Preventing corruption and bribery||Policy, continuous education, whistleblowing channel||Personnel awareness of ethical activities||No reported violations||0||0||Digia's reputational risk, exclusions from public tenders.|
|Employee well-being and retention||Development of the leadership culture. Target and development discussions. Job rotation and employees’ opportunities for development, innovation and utilisation of human capital. Competitive benefits. Preventative measures. Coaching leadership models and processes. Rising trend in the employee satisfaction indicator.||To be a desired employer in the technology sector that supports the development of the expertise of its personnel. Enabler of a diverse and equal working community. Provider of a positive employee experience and occupational wellbeing.||Employee satisfaction and turnover, % Indicators of diversity and equality.||
|Working capacity risks, turnover|
|Data protection and information security||Training, audits of cooperation partners, continuously updating processes.||No data protection violations.||Number of violations||0||0||Risk to Digia's reputation, official sanctions, contractual risks.|
|Environmental responsibility||Accounting for environmental impacts in day-to-day business.||Increasing environmental awareness in day-to-day operations.||Number of environmental awareness campaigns for personnel throughout the Group.||3||1||No identifiable risks.|
More info about Digia's responsibility can be found from our Annual Report.