Data index

This report was prepared using the Global Reporting Initiative (GRI) Standards.

Organizational Profile

Disclosure # Description Answer
102-1 Name of the organization Citrix Systems, Inc.
102-2 Activities, brands, products, and services

Citrix is an enterprise software company focused on helping customers improve the productivity and user experience of their most valuable assets—their employees. We do this by creating a digital workspace that provides unified, secure, and reliable access to all applications and content employees need to be productive—anytime, anywhere, on any device. Our Networking solutions, which can be consumed via hardware or software, complement our Workspace solutions by delivering the applications and data employees need across any network with security, reliability, and speed.  

As our customers manage the complexity created by the proliferation of Software-as-a-Service (SaaS)-based applications and the emergence of hybrid multi-cloud environments, our solutions are designed to provide end-users with the simplicity of a common user experience while ensuring IT administrators are able to deliver applications and data with the security and controls necessary to protect the enterprise and its customers. We offer solutions and services that we categorize into three interrelated and complementary areas: Workspace, Networking and Professional Services. See Citrix Products for more information.

102-3 Location of headquarters 851 West Cypress Creek Road
Fort Lauderdale, Florida 33309
102-4 Location of operations We have 60 offices in 40 countries. We lease and sublease office space in the Americas, which is comprised of the United States, Canada, and Latin America, EMEA, which is comprised of Europe, the Middle East and Africa, and APJ, which is comprised of Asia-Pacific and Japan. In addition, we own land and buildings in Fort Lauderdale, Florida and Chalfont St. Peter, United Kingdom. For a more detailed breakdown of locations of our operations, visit Citrix Worldwide.
102-5 Ownership and legal form Citrix is publicly traded under the ticker symbol CTXS.
102-6 Markets served Citrix serves the Americas, EMEA and APJ.
102-7 Scale of the organization Citrix serves more than 100 million users, 10,000 partners and 400,000 customers across 100 countries.
102-8 Information on employees and other workers

As of December 31, 2020, we had approximately 9,000 employees in more than 40 countries, of which approximately 46% were in the U.S. and 54% were in our international locations. We welcomed 1,000 new employees to Citrix as a result of the Wrike acquisition in early 2021.  

Our Investment in Human Capital
2021 Proxy Statement
2020 Employer Information Report EEO-1
Historical Demographic Data

102-9 Supply chain

For our cloud-based solutions, we use a combination of co-located hosting facilities and increasingly use Microsoft Azure and AWS as well as other infrastructure-as-a-service providers. For our App Delivery and Security products, we use independent contractors to provide a redundant source of manufacture and assembly capabilities. Independent contractors provide us with the flexibility needed to meet our product quality and delivery requirements. We have manufacturing relationships that we enter into in the ordinary course of business, primarily with Flextronics, under which we have subcontracted the majority of our hardware manufacturing activity, generally on a purchase order basis. These third-party contract manufacturers also provide final test, warehousing, and shipping services. This subcontracting activity extends from prototypes to full production and includes activities such as material procurement, final assembly, test, control, shipment to our customers and repairs.  

Together with our contract manufacturers, we design, specify, and monitor the tests that are required to meet internal and external quality standards. Our contract manufacturers produce our products based on forecasted demand for our solutions. Each of the contract manufacturers procures components necessary to assemble the products in our forecast and test the products according to our specifications. We dual-source our components; however, in some instances, those sources may be located in the same geographic area. Accordingly, if a natural disaster occurs in one of those areas, we may need to seek additional sources. Products are then shipped to our distributors, VARs, or end-users. If the products go unsold for specified periods of time, we may incur carrying charges or obsolete material charges for products ordered to meet our forecast or customer orders. In 2020, we did not experience any material difficulties or significant delays in the manufacture and assembly of our products.

102-10 Significant changes to the organization and its supply chain We are evolving our business in three primary ways:
  • On-Premises to Cloud: As the share of applications and data continues to move rapidly from on-premises data centers to the cloud, our product development and engineering resources have increasingly focused on delivering cloud-based solutions;
  • Perpetual to Subscription: Our business model is shifting away from selling perpetual licenses towards subscription, or recurring contracts in the form of SaaS, on-premises term, and consumption-based agreements; and
  • Point Products to Platform: Our offerings and our go-to-market activities are shifting away from selling individual point products towards our platform solution, in a tiered offering that provides us the ability to deliver a variety of value-enhancing modules to our customers in the future.  

On January 16, 2021, we entered into a definitive agreement to acquire Wrike, Inc. (“Wrike”), a leader in the SaaS collaborative work management space, for $2.25 billion in cash. The transaction, which has been unanimously approved by the board of directors of both Citrix and Wrike, closed in the first half of 2021, subject to regulatory approvals and other customary closing conditions. We believe this acquisition will allow us to accelerate our strategy to build on and expand beyond the growing virtualization market by delivering a cloud-based digital workspace experience empowering all employees to securely access, collaborate and execute work in the most effective way across any work channel, device, or location.

102-11 Precautionary Principle or approach We support a precautionary approach in establishing environmental objectives and implementing initiatives.
102-12 External initiatives Afro Tech
Grace Hopper
Disability:IN, Out & Equal
Diversity Best Practices
Lesbians Who Tech
RISE India
Science-based Target initiative
The Conference Board
The National Society of Black Engineers (NSBE)
The National Diversity Council
United Nations Global Compact
United Nations Sustainable Development Goals
102-13 Membership of associations Confederation of British Industry (CBI)
Disability:IN
Girls Who Code College Loop Program
National LGBT Chamber of Commerce
National Minority Supplier Development Council 
Responsible Business Alliance
We Mean Business Coalition
Women’s Business Enterprise National Council

Strategy

Disclosure # Description Answer
102-14 Statement from senior decision-maker A Message from Our CFO
102-15 Key impacts, risks, and opportunities

Risk Management
2021 Proxy Statement
2021 Form 10-K - Risk Factors

Ethics & Integrity

Disclosure # Description Answer
102-16 Values, principles, standards, and norms of behavior

Our core values include Integrity, Respect, Curiosity, Courage and Unity.

Citrix’s Corporate Governance Guidelines provide detail on our corporate governance policies.

Our Code of Business Conduct and Supplier/Partner Code of Business Conduct provide guidelines to employees, suppliers and partners on their ethical and legal responsibilities.

The Citrix Trust Center provides the latest information on our approach to security, privacy, and compliance.
 

102-17 Mechanisms for advice and concerns about ethics Citrix has mechanisms for its employees and third parties to ask questions or report concerns about possible violations of our Code of Business Conduct, Citrix policies and laws. Our Code has procedures and contact information for raising such matters, and we provide in our Code that retaliation will not be tolerated. Our website publishes this grievance mechanism to other stakeholders. Citrix also makes this information available to our channel partners through our Partner Central portal.

Governance

Disclosure # Description Answer
102-18 Governance structure Governance
Corporate Governance
2021 Proxy Statement
102-19 Delegating authority Governance
Corporate Governance
2021 Proxy Statement
102-20 Executive-level responsibility for economic, environmental, and social topics Governance
Corporate Governance
2021 Proxy Statement
102-21 Consulting stakeholders on economic, environmental, and social topics Stakeholder Engagement
Materiality Assessment
102-22 Composition of the highest governance body and its committees Governance
Corporate Governance
2021 Proxy Statement
102-23 Chair of the highest governance body Nanci E. Caldwell has served as a director of the Company since July 2008. In April 2018, Ms. Caldwell assumed the role of lead independent director.
102-24 Nominating and selecting the highest governance body 2021 Proxy Statement
102-25 Conflicts of interest 2021 Proxy Statement
102-26 Role of highest governance body in setting purpose, values, and strategy Governance
Corporate Governance
2021 Proxy Statement
102-27 Collective knowledge of highest governance body 2021 Proxy Statement
102-28 Evaluating the highest governance body’s performance 2021 Proxy Statement
102-29 Identifying and managing economic, environmental, and social impacts Governance
Corporate Governance
2021 Proxy Statement
102-30 Effectiveness of risk management processes Governance
Corporate Governance
2021 Proxy Statement
102-31 Review of economic, environmental, and social topics Materiality Assessment
102-32 Highest governance body’s role in sustainability reporting Sustainability Governance
102-33 Communicating critical concerns 2021 Proxy Statement
102-35 Remuneration policies 2021 Proxy Statement
102-36 Process for determining remuneration 2021 Proxy Statement
102-37 Stakeholders’ involvement in remuneration 2021 Proxy Statement
102-38 Annual total compensation ratio 2021 Proxy Statement

Stakeholder Engagement

Disclosure # Description Answer
102-40 List of stakeholder groups

Our key stakeholder groups include:

Shareholders: We hold regular shareholder engagement meetings with institutional investors who represent more than 21% of Citrix’s outstanding common stock. This past year, we discussed important ESG issues of interest, including our response to COVID-19 and its impact on our business; our Diversity, Inclusion, and Belonging strategy; cybersecurity and data privacy; board composition and more. In general, feedback from our shareholders regarding our compensation programs and corporate governance practices was positive in 2020.

Customers: Our customers are among the largest enterprises and institutions in the world spanning every major industry vertical, including healthcare, financial services, technology, manufacturing, consumer, and government agencies. Our largest customers are often our longest tenured customers.

Technology Partners: We have a number of technology relationships in place to accelerate the development of existing and future solutions and our go-to-market initiatives, including Microsoft, Google, Google Systems Integrators and more. These relationships include cross-licensing, original equipment manufacturer (OEM), resell, joint reference architectures and other arrangements that result in better solutions for our customers. For more details on our technology relationships, see 2020 Form 10-K, pp. 5-6.

Employees: See Our Investment in Human Capital and GRI 102-8 for more information on our employees and how we engage them.

Suppliers: We are a CDP Supply Chain member and are engaging with more than 100 key suppliers to collect primary data and climate strategy information.

102-42 Identifying and selecting stakeholders Stakeholder Engagement
102-43 Approach to stakeholder engagement Stakeholder Engagement
102-44 Key topics and concerns raised

Environment: Carbon emissions; climate change adaptation and resilience; energy consumption and product sustainability

Social: Diversity, inclusion and belonging; health, safety, and well-being; sustainable supply chain and procurement; training a “future-ready” workforce

Governance: Board composition; business continuity; technology, data and information security and privacy; ethics, integrity, and compliance

Materiality Assessment

Reporting Practice

Disclosure # Description Answer
102-45 Entities included in the consolidated financial statements 2021 Form 10-K
102-46 Defining report content and topic boundaries Our ESG Reporting Materiality Assessment
102-47 List of material topics Materiality Assessment
102-48 Restatements of information Improving Measurement of Emissions Data
we have re-baselined our 2019 Scope 1 and Scope 2 emissions to include all facilities and office space, and our Scope 3 emissions to include additional categories and have used 2020 emissions in these categories as a proxy for 2019 figures. The Scope 3 categories previously included were categories 5 and 6. The added Scope 3 categories are category 1, 2, 3, 9, and 11.
102-49 Changes in reporting Improving Measurement of Emissions Data
GRI 102-48
102-50 Reporting period January 1, 2020–December 31, 2020
102-51 Date of most recent report This is Citrix’s second Sustainability Report. Our inaugural 2019 Sustainability Report was published in September 2020.
102-52 Reporting cycle Citrix conducts its sustainability reporting on an annual basis.
102-53 Contact point for questions regarding the report erica.christensen@citrix.com
102-54 Claims of reporting in accordance with the GRI Standards This report was prepared using the Global Reporting Initiative (GRI), the Sustainable Accounting Standards Board (SASB) and the Task Force on Climate-related Financial Disclosures (TCFD) standards.
102-55 GRI content index GRI Index
102-56 External assurance Our greenhouse gas emissions and diversity and inclusion metrics have been externally assured. External Assurance Statement

Economic Performance

Disclosure # Description Answer
  Management Approach 2021 Form 10-K
Strategy Overview
201-1 Direct economic value generated and distributed 2021 Form 10-K
201-2 Financial implications and other risks and opportunities due to climate change 2020 CDP Climate Change disclosure
TCFD Index

Indirect Economic Impacts

Procurement Practices

Disclosure # Description Answer
  Management Approach Citrix Supplier Diversity Program
204-1 Proportion of spending on local suppliers  Our diverse supplier spend was $32 million, surpassing our $30 million 2020 goal.

Anti-corruption

Disclosure # Description Answer
  Management Approach Code of Business Conduct
Supplier/Partner Code of Business Conduct
205-1 Operations assessed for risks related to corruption All operations are assessed for risks related to corruption.
205-2 Communication and training about anti-corruption policies and procedures As part of our onboarding process, all new employees must receive training on anti-corruption policies and procedures.
205-3 Confirmed incidents of corruption and actions taken Citrix did not experience any incidents of corruption in FY2020.

Anti-competitive Behavior

Disclosure # Description Answer
  Management Approach Code of Business Conduct
Supplier/Partner Code of Business Conduct
206-1 Legal actions for anti-competitive behavior, anti-trust, and monopoly practices No legal actions were taken against Citrix for anti-competitive behavior, anti-trust, or monopoly practices in FY2020.

Tax

Disclosure # Description Answer
  Management Approach Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement
207-1 Approach to tax 

Citrix enforces responsible tax administration via our global tax policies, arrangements and approach to tax risk management and planning. We seek to structure our affairs in a manner that supports our business operations and accurately reflects the economics of each transaction. Citrix seeks external expert advice where needed and seeks elimination or reduction of tax risk through transparent dialogue and communication with tax authorities.

Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement

207-2 Tax governance, control, and risk management 

Our Board of directors and officers seek compliance with tax legislation as key to managing our tax risk. Citrix’s global tax team seeks to identify, evaluate, and manage tax risks to ensure that they remain in line with Citrix’s risk management policies. We encourage ethical and transparent business practices by developing processes and controls that monitor risk and ensure appropriate management oversight. We strive to manage and, where possible, eliminate, tax risk through the effectiveness of the organization’s internal controls relating to tax.

We seek to be a responsible global tax citizen by complying with international tax laws and regulations in all of the territories in which we operate. We adhere to all of the rules that are relevant and applicable with respect to determining the bases for our worldwide tax liabilities, the timing for our tax payments, the filing of our tax returns and disclosures of all relevant facts and circumstances.

207-3 Stakeholder engagement and management of concerns related to tax  Citrix’s approach to stakeholder engagement is to adopt a policy of transparency with all governmental tax authorities. We aim to work collaboratively with tax authorities, including HM Revenue & Customs (HMRC). We recognize that there will be occasions where we will encounter areas of disagreement relating to interpretations of law and its applicability, and where this occurs, we will engage with HMRC in proactive discussions to bring issues to a rapid resolution wherever possible.

Energy

Disclosure # Description Answer
  Management Approach Emissions and Energy
302-1 Energy consumption within the organization 52,495,000 kWh
302-2 Energy consumption outside of the organization 1,354,612,594.81 megajoules
302-3 Energy intensity 0.477 joules/ Total 2020 revenue USD (S1+S2+S3 – Cat 11)

Emissions

Disclosure # Description Answer
  Management Approach 2020 CDP Climate Change disclosure
Emissions and Energy
305-1 Direct (Scope 1) GHG emissions Fleet/Heating: 3,336 MT CO2e
305-2 Energy indirect (Scope 2) GHG emissions Purchased Electricity: 18,082 MT CO2e (location-based, does not include data centers)
305-3 Other indirect (Scope 3) GHG emissions Scope 3 Category (MT CO2e)
Purchased goods and services: 121,468
Capital goods: 6,513
Fuel and energy-related activities: 5,498
Business travel: 7,801
Employee commuting (includes work from home emissions of employees): 2,710
Downstream transportation: 110
Product use (sold hardware): 115,943
305-4 GHG emissions intensity Revenue: $3.24 billion
Total GHGs (S1+S2+S3 MT CO2e): 281,461 (S2 is location-based)
GHG Intensity (MT CO2e/Revenue): 0.0000868706

305-5 Reduction of GHG emissions For more information, see our CDP Climate Change disclosure.

Supplier Environmental Assessment

Disclosure # Description Answer
  Management Approach Sustainable Supply Chain and Procurement
308-1 New suppliers that were screened using environmental criteria Citrix recently joined the CDP Supply Chain program to uncover the climate-related risks and opportunities within our supply chain. This initiative will inform our sustainable supply chain strategy and allow us to analyze the carbon impact of our supply chain in greater detail. We are currently in the process of developing environmental criteria by which to assess our suppliers. We anticipate that we will have more information to report in this area in 2021.

Employment

Disclosure # Description Answer
  Management Approach Our Investment in Human Capital
401-1 New employee hires and employee turnover

Hires: 1,584; 2020
Total Attrition: 10.9%

Our voluntary attrition rate was 7.8% during FY 2020, which is lower than our historical attrition rate. This lower attrition rate is in part due to the COVID-19 pandemic, which we believe has led to fewer people leaving their jobs during 2020.

401-2 Benefits provided to full-time employees that are not provided to temporary or part-time employees

Citrix offers competitive and meaningful compensation and benefits programs that meet the diverse needs of our employees, while also reflecting local market practices. In addition to competitive salaries and bonuses, we offer a robust employment total rewards package that promotes employee well-being and includes retirement planning, health care, extended parental leave, paid time off and appreciation events for employees. We grant equity-based compensation to a significant portion of our employees and provide the opportunity for equity ownership through our employee stock purchase plan. We also offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors.

Building on Benefits
Benefits & Rewards

401-3 Parental leave Citrix provides up to 18 weeks of 100% paid leave — including benefits — for full-time employees who are new parents to care for a newborn or newly adopted child. New parents include moms, dads, and partners. This paid leave is in addition to the nine paid holidays and other paid time-off from Citrix for family-focused time.

Occupational Health and Safety

Disclosure # Description Answer
  Management Approach

Citrix seeks to continuously improve its health and safety performance and create a culture that values everyone’s safety and well-being. To deliver our commitments, we will:

  • Meet or exceed applicable legal requirements; where laws and regulations do not provide adequate controls, we will adopt our own standards to protect our works
  • Identify risks arising from work activities and deploy preventative measures to minimize them
  • Engage the workforce in the promotion and achievement of high standards of occupational health and safety performance through collaboration with employees
  • Report and investigate all accidents, near misses and work-related ill health for system failures and establish measure to prevent reoccurrence
  • Ensure any business decisions consider the impact of health and safety of those affected
  • Communicate the health and safety policy and programs to all Citrix employees, contingency workers, visitors, contractors, and stakeholders.

Employee Health, Safety and Well-being

403-1 Occupational health and safety management system Preserving the health and safety of Citrix employees and others working in our offices is essential. Citrix’s Health and Safety Guidelines describe our occupational Health and Safety Management System. While accountability for this system rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved. The Global Health and Safety Team will be supporting the development and implementation of a business-focused Health and Safety strategy, with an aim for continuous improvement.
403-4 Worker participation, consultation, and communication on occupational health and safety We are currently recruiting internally for Safety and Security Champions to help us implement our new Health and Safety Management System, encourage employees to report incidents and be our eyes and ears for health, safety, and security.
403-5 Worker training on occupational health and safety All health and safety training will be offered through the Citrix Learning Center. While accountability for the Health and Safety Management System rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved.
403-6 Promotion of worker health

We offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors.

During the COVID-19 pandemic, our primary focus has been on the safety and well-being of our employees and their families. A large majority of our workforce worked off-premises throughout most of 2020. For offices that reopened, we leveraged the advice and recommendations of medical experts to implement new protocols to ensure the safety of our employees, including face coverings, temperature checks, health certifications, social distancing, and capacity limits. We also extended paid time-off and sick leave benefits for employees directly impacted by COVID-19. Starting in 2021, time in the office will no longer be prescribed, and individuals and teams are empowered to determine how they work best, based on their role.

Employee Health, Safety and Well-being

403-7 Prevention and mitigation of occupational health and safety impacts directly linked by business relationships As outlined in our Supplier/Partner Code of Conduct, preserving the health and safety of Supplier/Partner employees and others working in our offices is essential. Supplier/Partner employees must never engage in violence or other harmful actions and must commit to the health and safety of their employees.

Training and Education

Disclosure # Description Answer
  Management Approach Training a “Future Ready” Workforce
404-2 Programs for upgrading employee skills and transition assistance programs

In 2020, Citrix:

  • Virtualized all core learning programs to ensure we were able to continue supporting our employees in learning, development, and leadership
  • Held Fuel 45, which was 45 days focused on career development, growth and fueling feedback
  • Launched numerous new learning resources and tools to support employees with remote working, such as best practices for virtual working, managing virtual teams, health and wellbeing courses, workshops for managing priorities and resources for parent and caregivers
  • Provided on-demand, external coaching to our managers to help them manage stress and support their teams through COVID
  • Created an in-depth virtual manager toolkit, with everything from ideas for building team and connection, to prioritization, team effectiveness and managing teams virtually
  • Introduced two new mentoring programs; one program was for diverse HiPos in our executive succession pipeline, and the other for our HiPo Black Professionals. In both of these programs, employees are provided with external mentors who are senior executives from other companies.

Talent Recruitment, Development and Retention

404-3 Percentage of employees receiving regular performance and career development reviews At Citrix, our performance touchpoints are centered on coaching conversations, and employees can request as many touchpoints as they'd like per year. 97% of our employees received their year-end touchpoint for 2020. While all of our touchpoints have a focus on career, we also have a formalized career month each year in July, and at this time employees are encouraged to work with their managers to create a formalized career development plan. In 2020, 70% of our employees participate in the career touchpoint, in addition to their regular and year-end touchpoints.

Diversity and Equal Opportunity

Disclosure # Description Answer      
  Management Approach

Citrix Diversity and Inclusion
Diversity, Inclusion and Belonging

405-1 Diversity of governance bodies and employees   Female Male
Overall 26% 74%
People managers 29% 71%
Leadership 25% 75%
Board of Directors 18% 82%
  Overall People Managers Leadership
White 56% 63% 70%
Hispanic or Latino 16% 14% 9%
Asian 19% 16% 20%
Black or African American 5% 4% 0%
Multiracial 4% 3% 1%

We believe that a diverse board is an effective board. Racially, ethnically or gender diverse directors currently comprise 36% of the total Board of Directors. Mr. Bob Knowling identifies as Black, Dr. Ajei Gopal identifies as Asian, and Mses. Nanci Caldwell and Moira Kilcoyne identify as women.

Citrix Diversity and Inclusion
Diversity, Inclusion and Belonging
Board Composition

4.5-2 Ratio of basic salary and remuneration of women to men

At Citrix, gender and under-represented minority pay equity is a topic we have long been working on, and we are committed to ensuring that there is no gap within our own company. In 2020, Citrix retained Affirmity Workforce Analysis (AWA) and Lewis Silkin (UK) to conduct pay equity studies to evaluate the size and/or significance of disparities in earnings by gender globally as well as conduct the necessary country-specific pay equity analyses. Several different models and regression tests were conducted to examine disparities in base pay as well as total target pay, including variable pay, by gender globally and underrepresented minority (U.S.). Base pay and total pay were examined using the following groupings for comparison: job profile, years of service, average performance across the last three years, location, and salary range. Regarding data analyzed for underrepresented minority groups in the U.S. and gender globally, we found less than .04 percent potential issues, down from 0.5 percent in the prior year. During our 2021 compensation planning cycle, potential issues were analyzed to identify other potential explanations for disparities, and all appropriate remediation has been completed, as necessary. Annually, we expect to continue to engage an independent pay equity study firm prior to compensation planning so that we can continue to monitor, identify root causes, and consider appropriate remediation, as necessary.

Non-discrimination

Disclosure # Description Answer
  Management Approach

Code of Business Conduct

Citrix will not tolerate discrimination or harassment based on race, color, ethnicity, religion, gender, national origin, pregnancy, childbirth or related medical conditions, disability, age, marital status, genetic carrier status, veteran status, citizenship, sexual orientation, gender identity or other characteristic that is protected by law.

406-1 Incidents of discrimination and corrective actions taken We had 17 discrimination cases (3 Disability, 4 Gender and 10 Race). Corrective Action/remediation will include coaching, executive coaching, written warning, promotion for a complainant, training, reminder of policies and process improvements.

Child Labor

Disclosure # Description Answer
  Management Approach

Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.
Modern Slavery Act Statement

408-1 Operations and suppliers at significant risk for incidents of child labor

Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.

Citrix is committed to adhering to all applicable employment laws and including but not limited to laws relating to child labor, wages, hours and working conditions, and to working with socially responsible partners that embrace high standards of ethical behavior and treat their employees fairly and with respect. Citrix supports fair and living wages for all employees. Citrix partners’ commitment to the health and safety of their employees is also important to us, and Citrix will avoid working with partners that do not comply with laws relating to child labor, wages, hours, and working conditions. Suppliers/Partners are also required to take affirmative steps to combat, slavery and trafficking in persons and forced or child labor.

Code of Business Conduct
Supplier/Partner Code of Business Conduct
Modern Slavery Act Statement

Forced or Compulsory Labor

Disclosure # Description Answer
  Management Approach Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.
Modern Slavery Act Statement
409-1 Operations and suppliers at significant risk for incidents of forced or compulsory labor

A substantial portion of our workforce consists of skilled labor. In addition, all employees hired by Citrix are subject to a background check. Citrix also uses independent contractors. Because of the nature of the types of jobs performed by our independent contractors, we believe the risk of modern slavery in their performance for Citrix is low. Citrix generally uses placement agencies to source independent contractors. These agencies are selected following a standard sourcing process with defined business criteria.

We have established policies and compliance and other procedures applicable to Citrix and/or third-party manufacturers to mitigate the risks of modern slavery in the supply chains for our products. Our approach is to focus on our direct suppliers since this is the level of the supply chain where we believe that we have the most influence and can therefore be the most effective. We believe our principal risk of modern slavery is that forced labor could occur without our knowledge in violation of our policies in upper tiers of the supply chain.

Modern Slavery Act Statement

Human Rights Assessment

Disclosure # Description Answer
  Management Approach Modern Slavery Act Statement
412-1 Operations that have been subject to human rights reviews or impact assessments We assess the effectiveness of the actions being taken to assess and address modern slavery risks through ongoing engagement with our principal third-party manufacturer, the findings of our vendor due diligence program and the number and type of complaints received through our grievance mechanism.
412-2 Employee training on human rights policies or procedures We provide mandatory internal training intended to ensure that all our employees observe and understand our Code of Business Conduct, the underlying policies, law and regulations and their applicability to our business. In addition, our principal third-party manufacturer has indicated that it provides training on forced labor and human trafficking to its employees.
412-3 Significant investment agreements and contracts that include human rights clauses or that underwent human rights screening

Citrix has a risk-based vendor due diligence program which, among other things, screens for certain labor violations. Citrix’s standard contract and purchase agreement language requires our suppliers to act in a manner consistent with our Supplier/Partner Code of Business Conduct. We will not do business with partners that do not comply with laws relating to child labor, wages, hours and working conditions. If we learn that our vendors, contractors, or consultants have acted in a manner inconsistent with our ethical standards, we will take appropriate action.

Modern Slavery Act Statement

Supplier Social Assessment

Disclosure # Description Answer
  Management Approach Citrix Supplier Diversity Program
Expanding Supplier Diversity
414-1 New suppliers that were screened using social criteria

Citrix Supplier Diversity Program
Citrix Supplier Diversity Classifications
Expanding Supplier Diversity

Public Policy

Disclosure # Description Answer
  Management Approach The Company does not make any contributions to an individual politician, candidate or holder of a governmental office or political party.
415-1 Political contributions Our Political Contributions Policy addresses political contributions and expenditures as well as contributions made to trade associations and 501(c)(4) organizations that may be used for political activity.

Our reporting aligns with the Sustainability Accounting Standards Board (SASB) Software & IT Services sector standards.

Environmental Footprint of Hardware Infrastructure

Code Metric Reference

130a.1

(1) Total energy consumed, (2) percentage grid electricity, (3) percentage renewable

  1. 52,378 MWh
  2. 86% grid electricity
  3. 14% renewable energy
130a.2

 

(1) Total water withdrawn, (2) total water consumed, percentage of each in regions with High or Extremely High Baseline Water Stress We’re looking into how we can track this on a global level and plan to report on this data in the future.
130a.3

 

Discussion of the integration of environmental considerations into strategic planning for data center needs

 

CDP Climate Change disclosure

 

Data Privacy & Freedom of Expression

Code Metric Reference
220a.1 Description of policies and practices relating to behavioral advertising and user privacy Technology, Data and Information Security

Data Security

Code Metric Reference
230a.2 Description of approach to identifying and addressing data security risks, including use of third-party cybersecurity standards

Technology, Data, and Information Security

Regulation of privacy and data security may adversely affect sales of our products and services and result in increased compliance costs. For more details, see our 2021 Form 10-K - Risk Factors, p. 16.

Recruiting & Managing a Global, Diverse & Skilled Workforce

Code Metric Reference      
330a.1 Percentage of employees that are (1) foreign nationals and (2) located offshore
  1. 11.3% of employees are U.S. foreign nationals (473 out of the 4,180 U.S. active employees as of June 2021).
  2. Employees located offshore
Location/Region Employee Count %
U.S. 4,180 45%
Americas (Non-U.S.) 318 3%
EMEA 1,707 18%
APJ 970 10%
India 2,073 22%
330a.2 Employee engagement as a percentage

Talent Recruitment, Development and Retention

According to our 2020 Global Employee Survey, our Engagement Index Score was 81% favorable.

330a.3 Percentage of gender and racial/ethnic group representation for (1) management, (2) technical staff, and (3) all other employees See GRI 405-1.

Managing Systemic Risks from Technology Disruptions

Code Metric Reference
550a.2 Description of business continuity risks related to disruptions of operations Our cloud-based solutions are primarily operated through third-party cloud service providers, which we do not control, and which may be subject to actual or perceived damage, interruption, vulnerabilities, and other cyber-related risks. Customers of our cloud-based solutions need to be able to access our platform at any time, without interruption or degradation of performance, and we provide them with service-level commitments with respect to uptime. Third-party cloud providers run their own platforms that we access, and therefore, we are vulnerable to their service interruptions. We may experience interruptions, delays and outages in service and availability from time to time as a result of problems with our third-party cloud providers’ infrastructure. Lack of availability of this infrastructure could be due to a number of potential causes including technical failures, natural disasters, fraud, or security attacks that we cannot predict or prevent. Such outages could lead to the triggering of our service level agreements and the issuance of credits to our cloud-offering customers, which may impact our business, results of operations and financial condition. In addition, if our security, or that of any of these third-party cloud providers, is compromised, our software is unavailable or our customers are unable to use our software within a reasonable amount of time or at all, then our business, results of operations and financial condition could be adversely affected. For more details, see 2021 Form 10-K - Risk Factors, pp. 13-17.

Our reporting aligns with the standards set forth by Task Force on Climate-related Financial Disclosures (TCFD). This is our inaugural TCFD Index.

Strategy

Description of Request Response
Describe the climate-related risks and opportunities the organization has identified over the short, medium, and long term.

Risks: Our worldwide operations are dependent on our network infrastructure, internal technology systems and website. Significant portions of our computer equipment, intellectual property resources and personnel, including critical resources dedicated to R&D and administrative support functions are located at our corporate HQ in Fort Lauderdale, Florida, an area particularly prone to hurricanes, and at our various locations in California, an area prone to earthquakes and wildfires. We also have operations in various domestic and international locations that expose us to additional diverse risks. The occurrence of natural disasters, such as extreme weather, hurricanes, floods, or earthquakes; pandemics such as COVID-19, or other unanticipated catastrophes, such as telecommunications failures, cyberattacks, fires or terrorist attacks, at any locations in which we or key partners, suppliers and customers do business, could cause interruptions in our operations. Extensive or multiple disruptions in our own operations could have a material adverse effect on our results of operations. Given our geographical footprint, Citrix could experience a substantive impact to our business from a climate-related incident. Weather-related events driven by climate change could lead to severe physical damage to our locations as well as operational shutdown for certain locations. These risks are described further in our 2021 Form 10-K - Risk Factors and our CDP Climate Change disclosure.1

Opportunities: As companies implement commitments to dramatically reducing greenhouse gas (GHG) emissions including optimizing IT practices and curbing employee commuting, we may see an increase in revenues from our remote working and cloud services. As a result, this is driving the development of new products or services through R&D and innovation. Using Citrix Workspace allows customers to deploy low-energy devices, extend device lifecycles, enable carbon-zero cloud computing, drive down corporate office space needs, and reduce employee commuting, resulting in reduced energy consumption and GHG emissions.

Describe the impact of climate-related risks and opportunities on the organization’s businesses, strategy, and financial planning. Climate change considerations influence Citrix’s business strategy including R&D investment, client education initiatives and engagement as well as energy efficiency and carbon reduction measures across our operations. We believe we are addressing our GHG emissions by tackling the major sources of our emissions in an effective and pragmatic manner. Citrix recently joined the CDP Supply Chain program, which will inform our sustainable supply chain strategy and allow us to analyze the carbon impact of our supply chain in greater detail. In addition, our strategy to migrate data capacity from on-premises data centers to more efficient cloud providers continues to be influenced by climate-related opportunities. We have also made significant reduction in Rack Units (RUs) within our major data centers due to climate-related considerations. This strategy has resulted in multiple data center consolidation opportunities that Citrix is actively pursuing. Electricity consumption is currently the largest source of our direct emissions. To manage future transition risk, we currently integrate energy efficiency considerations into the procurement of IT assets. Our strategy has been influenced by stakeholder demand for greenhouse gas (GHG) reduction at the operational level, and our own ambition to optimize our operational footprint and reduce costs/GHGs. The most substantial strategic decision was to commit to a public GHG reduction target and engage our Real Estate/Facilities teams in energy efficiency projects, such as solar. Our distributed work model enables us to be more resilient against the impacts of extreme weather events.
Describe the resilience of the organization’s strategy, taking into consideration different climate-related scenarios, including a 2°C or lower scenario. Citrix is planning to implement a climate-related scenario analysis in the next two years. Internal analysis and alignment between teams is underway and will feed into Citrix's ability to use scenario analysis, as it relates to climate-related risks. We expect this analysis to be completed in 2022. We expect these results will inform Citrix's climate change and business strategy. In subsequent years Citrix plans to use scenario analysis as part of its alignment with the TCFD. Citrix has established the foundational elements required to execute on our corporate-wide climate change strategy. Our Senior Director, Sustainability and ESG has established a centralized function to oversee company-wide climate change initiatives including climate-related scenario analysis. This will be developed further over the next year. 

1 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=page&FilingId=14679772-99178-205050&CIK=0000877890&Index=11200

Governance

Description of Request Response
Describe the board’s oversight of climate-related risks and opportunities. The Audit Committee of the Board of Directors of Citrix oversees climate-related risks identified and addressed by our Enterprise Risk Management (ERM) program and Citrix's global risk management framework. As part of its oversight function, the Audit Committee regularly reviews the compliance policies and processes by which our exposure to certain areas of risk—including climate-related risk—is assessed and managed. The Committee provides periodic reports to the full Board of Directors on such matters.
Describe management’s role in assessing and managing climate related risks and opportunities. Citrix's ESG, climate, and sustainability initiatives are managed and led by the Head of Investor Relations, under the leadership of the Chief Financial Officer (CFO). This responsibility ensures that all activities are consistent and aligned with corporate strategy, including climate risks and opportunities. This team meets regularly (at least quarterly) with several other corporate functions involved in our strategy, including legal, facilities and real estate, supply chain and procurement, sales, marketing, IT and HR. Our CFO regularly reviews and approves updates and decisions related to our climate change and environmental sustainability strategy, such as investments in programs and initiatives that advance Citrix's strategy and goals. This includes initiatives covering our emissions reduction and renewable energy strategy, as well as Citrix's annual response to the CDP Climate questionnaire. Once per year, executive management, including our Chief Legal Officer, present a full readout of the Citrix’s execution of the annual Enterprise Risk Management process and framework—including identified risks driven by climate change, if material—to the Audit Committee.

 

Metrics and Targets

Description of Request Response
Disclose the metrics used by the organization to assess climate-related risks and opportunities in line with its strategy and risk management process. In strong support of the world’s urgent transition to a low-carbon economy, Citrix has initiated targets to reduce our total absolute GHG emissions by 30% by 2030 and reduce our emissions per unit of revenue by 50% by 2030. These goals will use our 2019 emissions as a baseline for factors included and cover Scopes 1, 2 and 3. We expect to refine these targets over the next 1-2 years to receive approval from the Science Based Target initiative (SBTi) to ensure our targets are consistent with Citrix doing its part to keep global warming well below 2°C. Please note, we have re-baselined our 2019 emissions to include additional Scope 3 categories and have used 2020 emissions in these categories as a proxy for 2019 figures. The Scope 3 categories previously included were categories 5 and 6. The added Scope 3 categories are category 1, 2, 3, 9 and 11.
Disclose Scope 1 and Scope 2 Greenhouse Gas (GHG) Emissions, and the Related Risks

GRI 305-1
GRI 305-2
Improving Measurement of Emissions Data
For a country-by-country breakdown of our Scope 1 GHG emissions, see our CDP Climate Change disclosure.

Disclose Scope 3 Greenhouse Gas (GHG) Emissions and the Related Risks

GRI 305-3
Improving Measurement of Emissions Data

Describe the targets used by the organization to manage climate-related risks and opportunities and performance against targets.

In 2020, we developed the following targets using a 2019 baseline level:

  1. Reduce absolute GHG emissions by 30%
  2. Decrease carbon intensity per unit of revenue by 50%

We will begin reporting against these targets in our 2021 Sustainability Report.

Risk Management

Description of Request Response

Describe the organization’s processes for identifying and assessing climate-related risks

We monitor and assess risks arising from climate change policy, legislation and regulation, innovations in the market and weather events. Our strategic planning process and risk management processes together are used to identify, assess, and respond to climate-related risks and opportunities. Our corporate strategic planning leverages market intelligence regarding climate change derived from a variety of sources to provide an overall business impact analysis regarding our concentration of risk as well as identify opportunities. For example, our awareness of client-based commitments to reduce GHG emissions (i.e., transition-related opportunities) influences Citrix’s R&D investment strategy towards products that optimize IT practices and curb employee commuting thereby reducing clients’ carbon footprints. Market intelligence regarding climate change is obtained from a variety of sources to provide an overall business impact analysis regarding our concentration of risk.

Citrix conducts recovery scenarios where specific steps are drafted for every business continuity plan to methodically recover the most critical processes while considering the most likely risks to where they operate (i.e., storms in south Florida, fires in southern California). We also implement geographical risk assessments, an ongoing process to analyze Citrix physical sites to determine the likelihood and impact of a range of threats (i.e., inclement weather). Risk assessments are conducted at least annually and adapted to new or less controlled categories of risk over time.

Describe the organization’s processes for managing climate-related risks.

The ERM program monitors various types of risk—including those driven by climate change—across many lines of insurance coverage and will propose insurance solutions or products based on our industry, size, and business model in order to assess the probability and magnitude of substantive financial impacts and strategic impacts due to climate risks. The company-wide initiative, with the oversight of the Audit Committee of the Board of Directors, represents an integrated effort to (1) identify, assess, prioritize, and monitor a broad range of risks – including those driven by climate change and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. For example, our risk model considers potential climate-driven physical risks to our global locations and business continuity that may occur due to extreme weather events driven by climate change such as hurricanes, floods, cyclones, etc. Citrix’s global property insurance program mitigates these identified climate-driven risks with insurance products targeted to identify, assess, and respond to both Physical risks and Transitional risks at the facility-level. Coverage and portfolio risk profiles are assessed more than once per year.

Climate Risk Mitigation
2021 Proxy Statement - Risk Oversight

Describe how processes for identifying, assessing, and managing climate-related risks are integrated into the organization’s overall risk management.

The ERM program process is a company-wide initiative that, with the oversight of the Audit Committee, represents an integrated effort to (1) identify, assess, prioritize, and monitor a broad range of risks—including those driven by climate change—and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. The Chief Financial Officer (CFO) has oversight of the results of both our corporate strategic planning and risk management processes. The combined findings of these processes provide a view of Citrix’s climate-related risks and opportunities.

Citrix is part of a global business community that supports the United Nations Sustainable Development Goals (UN SDGs), a set of 17 goals established by the UN General Assembly in 2015 to achieve a better and more sustainable future for all by 2030. Our sustainability strategy and approach are aligned with SDGs 2, 5, 8, 10, 13, 15 and 17. To learn more about how we support the global communities in which we live and work, visit our Corporate Social Responsibility Report at Citrix: 2020 Year in Review report.

  • We engaged in partnerships with Feeding America, the Global Foodbanking Network, and the World Food Programme, donating $1.4 million and providing more than 13 million meals to those in need around the world.
  • Our COVID-19 Relief and Recovery program focused on nourishing bodies and minds by providing basic needs such as food and shelter. We served more than 600,000 meals to marginalized communities impacted by the pandemic and supported local nonprofits focused on hunger such as the Interfaith Food Bank of Raleigh, North Carolina.
  • We are committed to gender and underrepresented minority pay equity and are working to bridge the pay equity gap within Citrix.
  • Citrix has recently increased the number of female executives by growing the diversity of our external networks and conducting targeted outreach for key positions.
  • We engage an independent pay equity study firm on an annual basis prior to compensation planning, to monitor, identify root causes and consider appropriate remediation as needed.
  • Our technology solutions help address economic inequities by providing employers across every sector with the tools to expand recruiting and retention efforts across the world, and to provide improved availability of quality employment.
  • We broaden economic opportunity by enabling a hybrid work model that increases employment opportunities across urban, suburban, and rural locations, including in developing regions.
  • Our Employee Resource Groups (ERGs) support underrepresented groups of Citrix employees through career development, networking, and mentoring opportunities. We also provide a variety of educational resources and training to help our employees thrive and ensure a future-ready workforce that can meet the needs of the modern working world.
  • We supported nearly 600,000 students and youth through digital learning and training, helping them to prepare for careers in tech.
  • We donated $150,000 to INROADS, to help businesses gain access to diverse talent and enable up to 10 Citrix interns to participate in scholarships and leadership development training.

See the Product Innovation section of this report for more information on how we are creating economic opportunities for our customers and their employees.

  • Our enhanced Diversity, Inclusion and Belonging (DIB) strategy aims to create a work environment where Citrites can bring their whole selves to work.
  • We launched our Racial Equity Strategy and established a Racial Equity Working Group.
  • We supported 26,584 individuals from underrepresented communities through our community investments.
  • We increased our diverse supplier spend to $32 million, surpassing our 2020 goal of $30 million.
  • We continued implementing our Daring Dialogues learning series.
  • We established four new Employee Resource Groups (ERGs) to support underrepresented groups of employees within Citrix, including Citrix Asian Professionals, Enabled, Emerge, and Parents and Caregivers.

See the Workplace Equity section of this report for more information on our efforts to reduce inequalities inside and outside of Citrix.

  • We continue to deploy Citrix Workspace technology that enables customers to have distributed location work models and help to dramatically decrease transportation-related (including air and commuter travel) as well as computing-related GHG emissions.
  • We initiated targets to reduce our total absolute GHG emissions by 30% and our emissions per unit of revenue by 50% by 2030.
  • We sourced 100% of electricity consumption from renewable energy at our co-located data centers in Santa Clara and Doral, and 74% of energy consumption at our India operations from renewable sources, avoiding 5,889 metric tons of CO2e.

See the Environmental Impact  section of this report, our 2020 CDP Climate Change disclosure and the TCFD Index for more information on our climate actions.

  • Our solutions continue to enable distributed location work models so that our customers can reduce the physical office space needed to operate their business. As customers decreased the amount of square footage occupied during the pandemic, this translated to a drop in building-related natural resource consumption.
  • Similarly, Citrix transitioned to a majority off-premises workforce, reducing our real estate portfolio significantly and thus reducing our energy and water consumption and waste output. We are currently working to identify, measure and monitor the environmental impact of our real estate portfolio.

See the Sustainable Design section of this report for more information on how we are working to mitigate the impact of our real estate portfolio and operations on the natural environment.

  • Realizing the UN SDGs 2030 Agenda requires a collaborative, global approach, we engaged in several partnerships to accelerate our progress against the interconnected 17 SDGs and 169 associated targets, including the UN Global Compact, the Science Based Targets initiative, and the CDP Supply Chain program. Citrix is also a supporting member of the Confederation of British Industry (CBI) in the UK due to its involvement in COP26 and its Race to Zero campaign.