Last updated: 21.2.2020
Digia’s CEO is responsible for corporate responsibility with the support of the Management Team and the Board of Directors approves a non-financial data report annually.
During 2019, Digia continued to report on non-financial information from the perspective of the major corporate responsibility themes – financial, social, environmental and sectoral – defined using a materiality matrix. Digia examined responsibility from financial, social and environmental perspectives, and also with regard to responsibility themes within its sector. Digia has also assessed the corporate liability risks associated with its own operations and business relations, and has adequate and appropriate processes in place to predict and take precautions against these risks.
Digia wants to create value for its stakeholders by engaging in responsible and profitable business. Profitable operations enable Digia to invest in business growth and provide its financial stakeholders with income.
Digia’s material areas of corporate responsibility are anti-bribery and corruption, data security and protection, responsibility in customer relations, customers, taking care of employees, technological solutions, and taking environmental responsibility into consideration.
Description of business model
Digia is a software and service company whose service model includes, for instance, consultation, service design, development partnership and continuous services. Digia has industry expertise particularly in the commercial, logistics and industrial sectors, in the public sector, and in banking and insurance. In 2019, Digia consisted of five service areas: Digia Digital, Digia Business Platforms, Digia Financial Platforms, Digia Business Connect and Digia Customer Operations.
The foundations of responsible operations
Corporate responsibility is an integral part of Digia’s business, and the company seeks to act responsibly in all its operations. Digia’s responsibility is based on our own ethical principles, the UN’s Universal Declaration of Human Rights, and the International Labour Organisation’s (ILO) standards. However, in our changing business environment, responsibility is based above all else on the continual monitoring and improvement of our operations.
Preventing corruption and bribery
Digia takes bribery and corruption seriously and does not permit them in any form. The anti-bribery and anti-corruption policy covers all of Digia’s operations. Digia’s internal anti-bribery and anti-corruption policy underlines that Digia takes bribery and corruption seriously, and sets out rules and guidelines to promote ethical and lawful behaviour.
Digia primarily operates in Finland and our operations mainly extend only to other low-risk countries (as classified by Transparency International). However, Digia has foreign partners in countries where the risk of bribery and corruption has increased. We pay attention to bribery and corruption in our dealings with partners, and exercise extreme caution in the selection of our partners. We also require our partners to commit to compliance with antibribery and corruption legislation.
Digia has organised training for personnel to help combat bribery and corruption. Digia has a channel through which personnel can report any suspected violations related to bribery and corruption. These reports can also be made anonymously. All of the reports are forwarded to Digia’s legal department for confidential handling.
Responsibility in customer relationships
Digia seeks to be a visionary and reliable partner that helps its customers to develop their own business in the networked, data-driven world. Digia works responsibly, helping its customers to find technologically suitable and secure solutions, and offers constant partnership to enable customers to ensure uninterrupted business continuity and to both predict and prevent any disturbances and operational interruptions.
Digia uses an ISO 9001-certified quality management system (Core Process Model) whose processes are utilised in all operations with a view to providing an optimal customer experience. The high quality of services and products is an essential part of Digia’s business and the foundation for day-to-day operations. Digia’s quality policy supports the implementation of the company’s strategy and provides a common foundation for high-quality work in product and service development, delivery projects, continuous services, and support functions that increases customer satisfaction. Digia has defined company-level quality objectives and indicators for customer satisfaction, employee satisfaction, quality of projects and services and continuous process development. The system directs and provides guidelines for risk management at different levels of operations. Company-level risks are monitored and analysed on the basis of the guidelines.
Digia has an account management model that describes the operating principles and practices that are applied when Digia works with its customers. The account management model seeks to provide an even better customer experience, customer satisfaction, quality and efficiency – and thereby boost net sales growth and improve profitability.
In the account management model, the customer is at the heart of Digia’s operations and development. The model has streamlined and harmonised responsibilities, and it has ensured that Digia’s organisation, steering, decisionmaking and processes constitute a uniform interface for customers. Digia’s Management Team monitors the functionality of the model and reports on performance to the Board of Directors.
Data protection and information security
Digia seeks a high level of data protection, data privacy and information security in all of its activities. Digia is committed to protecting the data, materials and devices in our possession regardless of who they belong to – Digia, our customers or our partners. We respect the privacy of our personnel, customers and partners in all our operations. Protecting customers’ privacy is an important element of our customer relationships.
Digia has identified the following risks in its own operations with regard to privacy and data protection: reputational risk, contractual risk, and the risk of sanctions. We maintain a high level of data protection and information security by training our personnel, administrative and technical controls, audits, and continually developing processes related to privacy and information security.
Digia’s overhauled data protection organisation came into force at the beginning of 2018. The organisation was bolstered with new experts in 2019. The data protection organisation has improved practices and processes so that operations comply with the requirements of the EU General Data Protection Regulation. In addition, the company focused on internal and external technical data security and protection solutions in 2019. With regard to audits of compliance with statutory data protection obligations, in 2019 audit activities changed over to continuous audits following an annual calendar. Data security and protection audits focused especially on new subareas of business and operational improvements.
In 2019, the training of persons appointed to be responsible for data security and protection in the company’s business operations was developed further. The development of data security processes has continued and been mobilised at Digia level. Each Digia employee familiarises themselves with data security and protection procedures as part of the induction process. Mobilisation seeks to integrate data security and protection even more firmly
into everyday activities.
The data security process overhaul and its continuous development is part of a larger effort to develop security management for closer alignment with the ISO 27001 model. In addition to developing data security and protection at the Digia level, the data protection organisation works with our customers, helping them fulfil data security and protection obligations.
We continually supervise our data security and protection practices, and update our operating models as required to counter threats and risks. Data protection is included in Digia’s certified quality assurance system.
In addition to ordinary services, Digia provides customers with services that meet particularly high data security/protection levels both on the customer’s own premises and at four locations in our officially audited (Facility Security Clearance) premises. These premises and operations in them are described separately as part of the processes guiding Digia’s operations.
Digia aims to be a desired employer in the technology sector that supports personnel wellbeing and development of expertise. Skilled and motivated personnel are the cornerstone of Digia’s success.
Rapid technological development and digitalisation fuel competition for professionals. Digia aims to provide its employees with a positive employee experience, which paves the way for a good customer experience. The company makes outlays on developing high-quality supervisory work and the orientation training of new employees. In 2019, Digia launched the #DigiaCulture project, which seeks to strengthen and enhance everyday workplace culture in collaboration with Digia employees. Digia’s policy is to provide its employees with opportunities for career rotation, personal development and the maintenance of their competitiveness.
Digia is a flexible employer that gives space to diversity. The company treats all employees equally regardless of their gender, ethnicity, religion, age and other such factors. The diversity of the company increases human capital, which supports Digia employees’ occupational wellbeing, productivity and ability to renew themselves. The company’s employees have deep professional expertise, enabling peer learning.
Personnel development is guided by changes in the operating environment and society. An average of 47 hours of training per person were spent on competence development in 2019. The Digia Academy organised 217 different training events during the year. The main focus of training was on organising coaching to support the technical and professional skills of experts. Digia aims to ensure that a large share of learning takes place by trying out and practicing new things in day-to-day work as well as through learning from others. Digia has active workplace tribes, whose major task is to develop the competence of the tribe members through peer activities and provide recommendations about company-level technology policies in the specialist area of the tribe.
Continually monitoring and supporting personnel wellbeing play a key role. We support wellbeing in a number of ways, such as the even distribution of workloads and support for competence development. In 2018, Digia invested in improving the transparency and effectiveness of resourcing by, for example, introducing a new resourcing system and operating model. The mobilisation of the new operating model and user training for the resourcing system continued in 2019. Digia uses an early intervention model that supports success at work. Wellbeing is also supported with extensive benefits and flexible working arrangements. Digia acquired the expertise required by its growth strategy not only through recruitment and subcontracting, but also by means of corporate acquisitions. In 2019, 132 new professionals joined Digia via corporate acquisitions. Digia’s employee turnover in 2019 was 9.7 per cent (2018: 12.0%).
Job satisfaction surveys are conducted annually. Based on the results of the 2019 personnel survey, the operating methods of Digia and its businesses have been developed further to improve the employee experience. In 2019, overall personnel satisfaction was 3.9 on a scale of 1–5 (2018: 3.77). Digia assesses that the major personnel risks concern retaining competent employees. The company constantly invests in personnel commitment.
The company respects internationally recognised human and labour rights as well as cares for the wellbeing of its personnel, maintaining a safe and healthy working environment for all its employees. Digia has not performed a human rights assessment, but in the company’s opinion there are no significant risks of human rights violations inherent in our own operations. Digia’s supply chain does not, in the main, extend outside Finland.
Technological solutions promoting society and the environment
Digia aims to act as a technological pioneer whose products and services promote the development and wellbeing of society and the environment. Technology is developing at an ever-faster pace. Digia keeps a close eye on megatrends and technological trends to acquire and maintain its technological capabilities.
Digia invests in new technologies that generate added value by developing them as part of its offering and by training personnel. In addition, Digia provides its employees with plenty of opportunities to develop their expertise. By doing so, Digia gives its customers access to state-of-the-art, technologically sustainable solutions and services that promote society and the environment. This is an essential aspect of Digia’s competitiveness in the market.
In addition to investing in its own technology, Digia is involved in a variety of technology networks and cooperates with different technology suppliers. Digia has also organised Digia API Hackatemia events since 2017. Digia API Hackatemia is a training programme in which participants team up to brainstorm and plan solutions to topical business challenges using open interfaces (API) and artificial intelligence technologies.
Digia wants to provide its employees with a technologically smooth, safe and sustainable workplace by continuously modernising and developing its own systems and processes.
Digia shoulders its responsibility for the environment in all its choices. The company strives to account for the environmental impact of its activities, such as in procurement processes, and to make environmentally friendly choices. We do not see any significant environmental risks associated with Digia’s operations.
We also consider ourselves a producer of added value in the area of environmental responsibility. The digital services and solutions provided by Digia help our customers to reduce their environmental impacts by, for example, enabling a paperless approach.
We intend to increase our personnel’s environmental awareness through a variety of campaigns. Digia examines the environmental impacts of its own operations at its headquarters in Helsinki using the WWF Green Office system. After an office audit in 2016, Digia was granted a Green Office certificate.
|Area||Objective||Operating principles and processes||Indicators|| 2018
|Customers||To act as a responsible, reliable and truly caring business partner that helps customers find sustainable, technologically suitable and information secure solutions to develop their operations and business.||Responsibility and progressive activities in all business operations and ensuring data protection and information security. Training and continuously updating processes.||Valid ISO 9001 certificate, net sales growth.||yes, 17.6%||yes, 18.6%||Digia's reputation risk and weakening of competitiveness.|
|Preventing corruption and bribery||Personnel awareness of ethical activities.||Policy, continuous education, whistleblowing channe.s||No reported violations.||0||0||Digia's reputational risk, exclusions from public tenders.|
|Employee well-being and retention||To be a desired employer in the technology sector that supports the development of the expertise of its personnel. Enabler of a diverse and equal working community. Provider of a positive employee experience and occupational wellbeing.||Development of the leadership culture. Target and development discussions. Job rotation and employees’ opportunities for development, innovation and utilisation of human capital. Competitive benefits. Preventative measures. Coaching leadership models and processes. Rising trend in the employee satisfaction indicator.||Employee satisfaction and turnover, %.||
|Working capacity risks, turnover.|
|Data protection and information security||No data protection violations.||Training, audits of cooperation partners, continuously updating processes.||Number of violations.||0||0||Risk to Digia's reputation, official sanctions, contractual risks.|
|Environmental responsibility||Increasing environmental awareness in day-to-day operations.||
Accounting for environmental impacts in day-to-day business.
|Number of environmental awareness campaigns for personnel throughout the Group.||2||3||No identifiable risks.|
More info about Digia's responsibility can be found from our Annual Report.