BY USE CASE
Secure Distributed Work
Boost Productivity
BY INDUSTRY
Data index
This report was prepared using the Global Reporting Initiative (GRI) Standards.
Organizational Profile
| Disclosure # | Description | Answer |
|---|---|---|
| 102-1 | Name of the organization | Citrix Systems, Inc. |
| 102-2 | Activities, brands, products, and services | Citrix is an enterprise software company focused on helping organizations deliver a consistent and secure work experience no matter where work needs to get done — in the office, at home, or in the field. We do this by delivering a digital workspace solution that gives each employee the resources and space they need to do their best work. Our digital workspace technologies deliver the applications and data employees need across any network with security, reliability and speed. Since 1989, Citrix has made it easier for people to access the applications and content they need to do their very best work – wherever and whenever work needs to get done. Over the years, Citrix’s technology has served more than 100 million users across 400,000 organizations – including nearly all of the Fortune 500 – trust Citrix to power a better way to work. |
| 102-3 | Location of headquarters | 851 West Cypress Creek Road Fort Lauderdale, Florida 33309 |
| 102-4 | Location of operations | We have 60 offices in 40 countries.1 We lease and sublease office space in the Americas, which is comprised of the United States, Canada and Latin America, EMEA, which is comprised of Europe, the Middle East and Africa, and APJ, which is comprised of Asia-Pacific and Japan. In addition, we own land and buildings in Fort Lauderdale, Florida and Chalfont St. Peter, United Kingdom.2 For a more detailed breakdown of locations of our operations, visit Citrix Worldwide. |
| 102-5 | Ownership and legal form | Citrix is publicly traded under the ticker symbol CTXS. |
| 102-6 | Markets served | Citrix serves the Americas, EMEA and APJ. |
| 102-7 | Scale of the organization | Citrix serves more than 100 million users, 10,000 partners and 400,000 customers across 100 countries.3 |
| 102-8 | Information on employees and other workers | As of December 31, 2021, we had approximately 8,500 employees in more than 40 countries, of which approximately 43% were in the U.S. and 57% were in our international locations. Our Investment in Human Capital |
| 102-9 | Supply chain | For our cloud-based solutions, we use a combination of co-located hosting facilities and increasingly use Microsoft Azure and AWS as well as other infrastructure-as-a-service providers. For our App Delivery and Security products, we use independent contractors to provide a redundant source of manufacture and assembly capabilities. Independent contractors provide us with the flexibility needed to meet our product quality and delivery requirements. We have manufacturing relationships that we enter into in the ordinary course of business, primarily with Flextronics, under which we have subcontracted the majority of our hardware manufacturing activity, generally on a purchase order basis. These third-party contract manufacturers also provide final test, warehousing and shipping services. This subcontracting activity extends from prototypes to full production and includes activities such as material procurement, final assembly, test, control, shipment to our customers and repairs. Together with our contract manufacturers, we design, specify and monitor the tests that are required to meet internal and external quality standards. Our contract manufacturers produce our products based on forecasted demand for our solutions. Each of the contract manufacturers procures components necessary to assemble the products in our forecast and test the products according to our specifications. We dual-source our components; however, in some instances, those sources may be located in the same geographic area. Accordingly, if a natural disaster occurs in one of those areas, we may need to seek additional sources. Products are then shipped to our distributors, VARs or end-users. If the products go unsold for specified periods of time, we may incur carrying charges or obsolete material charges for products ordered to meet our forecast or customer orders. In 2021, we did not experience any material difficulties or significant delays in the manufacture and assembly of our products.4 |
| 102-10 | Significant changes to the organization and its supply chain | We are evolving our business in three primary ways:
|
| 102-11 | Precautionary Principle or approach | We support a precautionary approach in establishing environmental objectives and implementing initiatives. |
| 102-12 | External initiatives | Afro Tech Grace Hopper Disability:IN, Out & Equal Diversity Best Practices Lesbians Who Tech RISE India Science-based Target initiative The Conference Board The National Society of Black Engineers (NSBE) The National Diversity Council United Nations Global Compact United Nations Sustainable Development Goals |
| 102-13 | Membership of associations | Confederation of British Industry (CBI) Disability:IN Girls Who Code College Loop Program National LGBT Chamber of Commerce National Minority Supplier Development Council Responsible Business Alliance We Mean Business Coalition Women’s Business Enterprise National Council |
1 https://www.citrix.com/about/
2 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=page&FilingId=14679772-60627-99178&CIK=0000877890&Index=1110
3 https://www.citrix.com/about/
4 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-outline.aspx?FilingId=14679772&Cik=0000877890&PaperOnly=0&HasOriginal=1
5 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-outline.aspx?FilingId=14679772&Cik=0000877890&PaperOnly=0&HasOriginal=1
Strategy
| Disclosure # | Description | Answer |
|---|---|---|
| 102-14 | Statement from senior decision-maker | Leadership |
| 102-15 | Key impacts, risks, and opportunities |
Ethics & Integrity
| Disclosure # | Description | Answer |
|---|---|---|
| 102-16 | Values, principles, standards, and norms of behavior | Our core values include Integrity, Respect, Curiosity, Courage and Unity. Citrix’s Corporate Governance Guidelines provide detail on our corporate governance policies. Our Code of Business Conduct and Supplier/Partner Code of Business Conduct provide guidelines to employees, suppliers and partners on their ethical and legal responsibilities. The Citrix Trust Center provides the latest information on our approach to security, privacy, and compliance. |
| 102-17 | Mechanisms for advice and concerns about ethics | Citrix has mechanisms for its employees and third parties to ask questions or report concerns about possible violations of our Code of Business Conduct, Citrix policies and laws. Our Code has procedures and contact information for raising such matters, and we provide in our Code that retaliation will not be tolerated. Our website publishes this grievance mechanism to other stakeholders. Citrix also makes this information available to our channel partners through our Partner Central portal.6 |
6 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
Governance
| Disclosure # | Description | Answer |
|---|---|---|
| 102-18 | Governance structure | Governance Corporate Governance 2022 Proxy Statement |
| 102-19 | Delegating authority | Governance Corporate Governance 2022 Proxy Statement |
| 102-20 | Executive-level responsibility for economic, environmental, and social topics | Governance Corporate Governance 2022 Proxy Statement |
| 102-21 | Consulting stakeholders on economic, environmental, and social topics | Stakeholder Engagement Materiality Assessment |
| 102-22 | Composition of the highest governance body and its committees | Governance Corporate Governance 2022 Proxy Statement |
| 102-23 | Chair of the highest governance body | Nanci E. Caldwell has served as a director of the Company since July 2008. In April 2018, Ms. Caldwell assumed the role of lead independent director. |
| 102-24 | Nominating and selecting the highest governance body | 2022 Proxy Statement |
| 102-25 | Conflicts of interest | 2022 Proxy Statement |
| 102-26 | Role of highest governance body in setting purpose, values, and strategy | Governance Corporate Governance 2022 Proxy Statement |
| 102-27 | Collective knowledge of highest governance body | 2022 Proxy Statement |
| 102-28 | Evaluating the highest governance body’s performance | 2022 Proxy Statement |
| 102-29 | Identifying and managing economic, environmental, and social impacts | Governance Corporate Governance 2022 Proxy Statement |
| 102-30 | Effectiveness of risk management processes | Risk Management Corporate Governance 2022 Proxy Statement |
| 102-31 | Review of economic, environmental, and social topics | Materiality Assessment |
| 102-32 | Highest governance body’s role in sustainability reporting | Sustainability Governance |
| 102-33 | Communicating critical concerns | 2022 Proxy Statement |
| 102-35 | Remuneration policies | 2022 Proxy Statement |
| 102-36 | Process for determining remuneration | 2022 Proxy Statement |
| 102-37 | Stakeholders’ involvement in remuneration | 2022 Proxy Statement |
| 102-38 | Annual total compensation ratio | 2022 Proxy Statement |
Stakeholder Engagement
| Disclosure # | Description | Answer |
|---|---|---|
| 102-40 | List of stakeholder groups | Our key stakeholder groups include: Shareholders: We hold regular shareholder engagement meetings with institutional investors who represent more than 21% of Citrix’s outstanding common stock. Customers: Our customers are among the largest enterprises and institutions in the world spanning every major industry vertical, including health care, financial services, technology, manufacturing, consumer and government agencies. Our largest customers are often our longest tenured customers. Technology Partners: We have a number of technology relationships in place to accelerate the development of existing and future solutions and our go-to-market initiatives, including Microsoft, Google, Google Systems Integrators and more. These relationships include cross-licensing, original equipment manufacturer (OEM), resell, joint reference architectures and other arrangements that result in better solutions for our customers. Employees: See Our Investment in Human Capital and GRI 102-8 for more information on our employees and how we engage them. Suppliers: We are a CDP Supply Chain member and are engaging with more than 100 key suppliers to collect primary data and climate strategy information. |
| 102-42 | Identifying and selecting stakeholders | Stakeholder Engagement |
| 102-43 | Approach to stakeholder engagement | Stakeholder Engagement |
| 102-44 | Key topics and concerns raised | Environment: Carbon emissions; climate change adaptation and resilience; energy consumption and product sustainability Social: Diversity, inclusion and belonging; health, safety and well-being; sustainable supply chain and procurement; training a “future-ready” workforce Governance: Board composition; business continuity; technology, data and information security and privacy; ethics, integrity and compliance |
Reporting Practice
| Disclosure # | Description | Answer |
|---|---|---|
| 102-46 | Defining report content and topic boundaries | Our ESG Reporting Materiality Assessment |
| 102-47 | List of material topics | Materiality Assessment |
| 102-48 | Restatements of information | Improving Measurement of Emissions Data As our data collection and measurement continues to improve, we have recalculated our 2019 baseline year emissions in order to better track our progress and make more accurate year-over-year comparisons |
| 102-49 | Changes in reporting | Improving Measurement of Emissions Data GRI 102-48 |
| 102-50 | Reporting period | January 1, 2021–December 31, 2021 |
| 102-51 | Date of most recent report | This is Citrix’s 3rd annual Sustainability Report. |
| 102-52 | Reporting cycle | Citrix conducts its sustainability reporting on an annual basis. |
| 102-54 | Claims of reporting in accordance with the GRI Standards | This report was prepared using the Global Reporting Initiative (GRI), the Sustainable Accounting Standards Board (SASB) and the Task Force on Climate-related Financial Disclosures (TCFD) standards. |
| 102-55 | GRI content index | GRI Index |
| 102-56 | External assurance | Our Sustainability Report and 2021 CDP Climate Change disclosure have been externally reviewed. External Assurance Statement |
Economic Performance
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Strategy Overview | |
| 201-2 | Financial implications and other risks and opportunities due to climate change | 2021 CDP Climate Change disclosure TCFD Index |
Indirect Economic Impacts
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Social Equity Corporate Social Responsibility Report at Citrix: 2021 Year in Review |
|
| 203-1 | Infrastructure investments and services supported | Social Equity Corporate Social Responsibility Report at Citrix: 2021 Year in Review |
| 203-2 | Significant indirect economic impacts | Social Equity Corporate Social Responsibility Report at Citrix: 2021 Year in Review |
Procurement Practices
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix Supplier Diversity Program | |
| 204-1 | Proportion of spending on local suppliers | Our diverse supplier spend was $45 million, surpassing our $32 million 2021 goal. |
Anti-corruption
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Code of Business Conduct Supplier/Partner Code of Business Conduct |
|
| 205-1 | Operations assessed for risks related to corruption | All operations are assessed for risks related to corruption. |
| 205-2 | Communication and training about anti-corruption policies and procedures | As part of our onboarding process, all new employees must receive training on anti-corruption policies and procedures. |
| 205-3 | Confirmed incidents of corruption and actions taken | Citrix did not experience any incidents of corruption in FY2021. |
Anti-competitive Behavior
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Code of Business Conduct Supplier/Partner Code of Business Conduct |
|
| 206-1 | Legal actions for anti-competitive behavior, anti-trust, and monopoly practices | No legal actions were taken against Citrix for anti-competitive behavior, anti-trust, or monopoly practices in FY2021. |
Tax
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement | |
| 207-1 | Approach to tax | Citrix enforces responsible tax administration via our global tax policies, arrangements and approach to tax risk management and planning. We seek to structure our affairs in a manner that supports our business operations and accurately reflects the economics of each transaction. Citrix seeks external expert advice where needed and seeks elimination or reduction of tax risk through transparent dialogue and communication with tax authorities.7 Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement |
| 207-2 | Tax governance, control, and risk management | Our Board of directors and officers seek compliance with tax legislation as key to managing our tax risk. Citrix’s global tax team seeks to identify, evaluate and manage tax risks to ensure that they remain in line with Citrix’s risk management policies. We encourage ethical and transparent business practices by developing processes and controls that monitor risk and ensure appropriate management oversight. We strive to manage and, where possible, eliminate, tax risk through the effectiveness of the organization’s internal controls relating to tax. We seek to be a responsible global tax citizen by complying with international tax laws and regulations in all of the territories in which we operate. We adhere to all of the rules that are relevant and applicable with respect to determining the bases for our worldwide tax liabilities, the timing for our tax payments, the filing of our tax returns and disclosures of all relevant facts and circumstances.8 |
| 207-3 | Stakeholder engagement and management of concerns related to tax | Citrix’s approach to stakeholder engagement is to adopt a policy of transparency with all governmental tax authorities. We aim to work collaboratively with tax authorities, including HM Revenue & Customs (HMRC). We recognize that there will be occasions where we will encounter areas of disagreement relating to interpretations of law and its applicability, and where this occurs, we will engage with HMRC in proactive discussions to bring issues to a rapid resolution wherever possible.9 |
7 https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html
8 https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html
9 https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html
Energy
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Emissions and Energy | |
| 302-1 | Energy consumption within the organization | 90,291,297 kWh |
| 302-2 | Energy consumption outside of the organization | 872,766,000 megajoules |
| 302-3 | Energy intensity | 0.271 joules/Total 2021 revenue USD (S1+S2+S3 – Cat 11) |
Emissions
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | 2021 CDP Climate Change disclosure Emissions and Energy |
|
| 305-1 | Direct (Scope 1) GHG emissions | Fleet/Heating: 3,344 MT CO2e |
| 305-2 | Energy indirect (Scope 2) GHG emissions | Purchased Electricity: 32,063 MT CO2e (location-based) |
| 305-3 | Other indirect (Scope 3) GHG emissions | (MT CO2e) Purchased goods and services: 109,861 Capital goods: 8,861 Fuel and energy-related activities: 7,969 Business travel: 3,455 Employee commuting: 317 Downstream transportation: 42 Product use (sold hardware): 108,161 |
| 305-4 | GHG emissions intensity |
2021 Total Revenue: $3.22 billion |
| 305-5 | Reduction of GHG emissions | 1,286 MT CO2e (0.5% increase from 2020) |
Supplier Environmental Assessment
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Sustainable Supply Chain and Procurement | |
| 308-1 | New suppliers that were screened using environmental criteria | As a CDP Supply Chain member, we engage with more than 100 key suppliers to collect primary data and climate strategy information. In our 2021 CDP survey of suppliers, for example, we found that overwhelming majorities have integrated climate change into their business strategy, are leading their climate governance efforts from the C-suite, and are engaging with their own suppliers regarding GHG emissions and climate change strategies. This year, we incorporated CDP Supply Chain data into our emissions inventory calculations for the first time. We evaluated supplier specific GHG reporting for 5 of Citrix’s top suppliers and calculated a supplier specific emission factor by multiplying the suppliers’ total Scope 1, 2 & 3 emissions. |
Employment
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Our Investment in Human Capital | |
| 401-1 | New employee hires and employee turnover | 2021 Hires = 1,515 2021 Total Attrition: 24.9% 2021 Voluntary attrition: 16.6% |
| 401-2 | Benefits provided to full-time employees that are not provided to temporary or part-time employees | Citrix offers competitive and meaningful compensation and benefits programs that meet the diverse needs of our employees, while also reflecting local market practices. In addition to competitive salaries and bonuses, we offer a robust employment total rewards package that promotes employee well-being and includes retirement planning, health care, extended parental leave, paid time off and appreciation events for employees. We grant equity-based compensation to a significant portion of our employees and provide the opportunity for equity ownership through our employee stock purchase plan. We also offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors.10 |
| 401-3 | Parental leave | Citrix provides up to 18 weeks of 100% paid leave — including benefits — for full-time employees who are new parents to care for a newborn or newly adopted child. New parents include moms, dads and partners. This paid leave is in addition to the nine paid holidays and other paid time-off from Citrix for family-focused time.11 |
10 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14679772&CIK=0000877890&Index=10000
11 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14679772&CIK=0000877890&Index=10000
Occupational Health and Safety
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix seeks to continuously improve its health and safety performance and create a culture that values everyone’s safety and well-being. To deliver our commitments, we will:
|
|
| 403-1 | Occupational health and safety management system | Preserving the health and safety of Citrix employees and others working in our offices is essential. Citrix’s Health and Safety Guidelines describe our occupational Health and Safety Management System. While accountability for this system rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved. The Global Health and Safety Team will be supporting the development and implementation of a business-focused Health and Safety strategy, with an aim for continuous improvement.13 |
| 403-4 | Worker participation, consultation, and communication on occupational health and safety | Our new Health and Safety Management System encourages employees to report incidents and be our eyes and ears for health, safety and security.14 |
| 403-5 | Worker training on occupational health and safety | All health and safety training will be offered through the Citrix Learning Center.15 While accountability for the Health and Safety Management System rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved. |
| 403-6 | Promotion of worker health | We offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors. During the COVID-19 pandemic, our primary focus has been on the safety and well-being of our employees and their families. A large majority of our workforce worked off-premise throughout most of 2021. For offices that reopened, we leveraged the advice and recommendations of medical experts to implement new protocols to ensure the safety of our employees, including face coverings, temperature checks, health certifications, social distancing and capacity limits. We also extended paid time-off and sick leave benefits for employees directly impacted by COVID-19. |
| 403-7 | Prevention and mitigation of occupational health and safety impacts directly linked by business relationships | As outlined in our Supplier/Partner Code of Conduct, preserving the health and safety of Supplier/Partner employees and others working in our offices is essential. Supplier/Partner employees must never engage in violence or other harmful actions and must commit to the health and safety of their employees.16 |
12 Citrix Health & Safety Guidelines PDF (7/27/21)
13 Citrix Health & Safety Guidelines PDF (7/27/21)
14 Citrix Health & Safety Guidelines PDF (7/27/21)
15 Citrix Health & Safety Guidelines PDF (7/27/21)
16 https://www.citrix.com/content/dam/citrix/en_us/documents/about/supplier-partner-code-of-business-conduct.pdf
Training and Education
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Training a “Future-Ready” Workforce | |
| 404-2 | Programs for upgrading employee skills and transition assistance programs |
|
| 404-3 | Percentage of employees receiving regular performance and career development reviews | At Citrix, our performance touchpoints are centered on coaching conversations, and employees can request as many touchpoints as they'd like per year. 95% of our employees received their year-end touchpoint for 2021. While all of our touchpoints have a focus on career, we also have a formalized career month each year in July, and at this time employees are encouraged to work with their managers to create a formalized career development plan. |
Diversity and Equal Opportunity
| Disclosure # | Description | Answer | |||
|---|---|---|---|---|---|
| Management Approach | Citrix Diversity and Inclusion |
||||
| 405-1 | Diversity of governance bodies and employees | Female | Male | ||
| Overall | 26% | 74% | |||
| People Managers | 29% | 71% | |||
| Leadership | 27% | 73% | |||
| Overall | People Managers | Leadership | |||
| White | 54% | 62% | 75% | ||
| Hispanic or Latino | 16% | 13% | 8% | ||
| Asian | 22% | 14% | 16% | ||
| Black or African American | 5% | 4% | 0% | ||
| Multicultural and Others | 3% | 4% | 1% | ||
We believe that a diverse board is an effective board. Racially, ethnically or gender diverse directors currently comprise 37.5% of the total Board of Directors. Mr. Bob Knowling identifies as Black, and Nanci Caldwell and Moira Kilcoyne identify as women.17 Citrix Diversity and Inclusion |
|||||
| 405-2 | Ratio of basic salary and remuneration of women to men | Citrix Systems UK Limited’s Mean Gender Pay Gap has continued in a downward trend from 13.2% in 2019/20 to 12% in 2020/21. Citrix R&D Limited’s mean gender pay gap result for 2020/21 was 31%. Citrix 2021 Gender Pay Gap Results (data limited to Citrix Systems UK Limited and Citrix R&D Limited) |
|||
17 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14874564&Cik=0000877890#D117673DDEF14A_HTM_TOC
Non-discrimination
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach |
Citrix will not tolerate discrimination or harassment based on race, color, ethnicity, religion, gender, national origin, pregnancy, childbirth or related medical conditions, disability, age, marital status, genetic carrier status, veteran status, citizenship, sexual orientation, gender identity or other characteristic that is protected by law. |
|
| 406-1 | Incidents of discrimination and corrective actions taken | We had 13 discrimination cases (2 Disability, 2 Hostile Work Environment, 1 National Origin, 7 Race/Color/Ethnicity and 1 Religion). Corrective Action/remediation will include coaching, executive coaching, written warning, promotion for a complainant, training, reminder of policies, and process improvements. |
Child Labor
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers. |
|
| 408-1 | Operations and suppliers at significant risk for incidents of child labor | Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers. Citrix is committed to adhering to all applicable employment laws and including but not limited to laws relating to child labor, wages, hours and working conditions, and to working with socially responsible partners that embrace high standards of ethical behavior and treat their employees fairly and with respect. Citrix supports fair and living wages for all employees. Citrix partners’ commitment to the health and safety of their employees is also important to us, and Citrix will avoid working with partners that do not comply with laws relating to child labor, wages, hours, and working conditions. Suppliers/Partners are also required to take affirmative steps to combat, slavery and trafficking in persons and forced or child labor.18 Code of Business Conduct |
18 https://www.citrix.com/content/dam/citrix/en_us/documents/about/supplier-partner-code-of-business-conduct.pdf
https://www.citrix.com/content/dam/citrix/en_us/documents/about/code-of-business-conduct.pdf
Forced or Compulsory Labor
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers. |
|
| 409-1 | Operations and suppliers at significant risk for incidents of forced or compulsory labor |
A substantial portion of our workforce consists of skilled labor. In addition, all employees hired by Citrix are subject to a background check. Citrix also uses independent contractors. Because of the nature of the types of jobs performed by our independent contractors, we believe the risk of modern slavery in their performance for Citrix is low. Citrix generally uses placement agencies to source independent contractors. These agencies are selected following a standard sourcing process with defined business criteria. We have established policies and compliance and other procedures applicable to Citrix and/or third-party manufacturers to mitigate the risks of modern slavery in the supply chains for our products. Our approach is to focus on our direct suppliers since this is the level of the supply chain where we believe that we have the most influence and can therefore be the most effective. We believe our principal risk of modern slavery is that forced labor could occur without our knowledge in violation of our policies in upper tiers of the supply chain.19 |
19 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
Human Rights Assessment
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Modern Slavery Act Statement | |
| 412-1 | Operations that have been subject to human rights reviews or impact assessments | We assess the effectiveness of the actions being taken to assess and address modern slavery risks through ongoing engagement with our principal third-party manufacturer, the findings of our vendor due diligence program and the number and type of complaints received through our grievance mechanism.20 |
| 412-2 | Employee training on human rights policies or procedures | We provide mandatory internal training intended to ensure that all our employees observe and understand our Code of Business Conduct, the underlying policies, law and regulations and their applicability to our business. In addition, our principal third-party manufacturer has indicated that it provides training on forced labor and human trafficking to its employees.21 |
| 412-3 | Significant investment agreements and contracts that include human rights clauses or that underwent human rights screening | Citrix has a risk-based vendor due diligence program which, among other things, screens for certain labor violations. Citrix’s standard contract and purchase agreement language requires our suppliers to act in a manner consistent with our Supplier/Partner Code of Business Conduct. We will not do business with partners that do not comply with laws relating to child labor, wages, hours and working conditions. If we learn that our vendors, contractors or consultants have acted in a manner inconsistent with our ethical standards, we will take appropriate action.22 |
20 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
21 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
22 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
Supplier Social Assessment
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | Citrix Supplier Diversity Program Expanding Supplier Diversity |
|
| 414-1 | New suppliers that were screened using social criteria | Citrix Supplier Diversity Program |
Public Policy
| Disclosure # | Description | Answer |
|---|---|---|
| Management Approach | The Company does not make any contributions to an individual politician, candidate or holder of a governmental office or political party. | |
| 415-1 | Political contributions | Our Political Contributions Policy addresses political contributions and expenditures as well as contributions made to trade associations and 501(c)(4) organizations that may be used for political activity. |
Our reporting aligns with the SASB Software & IT Services sector standards.
Environmental Footprint of Hardware Infrastructure
| Code | Metric | Reference |
|---|---|---|
130a.1 |
(1) Total energy consumed, (2) percentage grid electricity, (3) percentage renewable |
|
| 130a.2
|
(1) Total water withdrawn, (2) total water consumed, percentage of each in regions with High or Extremely High Baseline Water Stress | We’re looking into how we can track this on a global level and plan to report on this data in the future. |
| 130a.3
|
Discussion of the integration of environmental considerations into strategic planning for data center needs
|
CDP Climate Change disclosure
|
Data Privacy & Freedom of Expression
| Code | Metric | Reference |
|---|---|---|
| 220a.1 | Description of policies and practices relating to behavioral advertising and user privacy | Technology, Data, and Information Security |
Data Security
| Code | Metric | Reference |
|---|---|---|
| 230a.2 | Description of approach to identifying and addressing data security risks, including use of third-party cybersecurity standards | Technology, Data, and Information Security Regulation of privacy and data security may adversely affect sales of our products and services and result in increased compliance costs. |
Recruiting & Managing a Global, Diverse & Skilled Workforce
| Code | Metric | Reference | |||
|---|---|---|---|---|---|
| 330a.1 | Percentage of employees that are (1) foreign nationals and (2) located offshore |
|
|||
| Location/Region | Employee Count | % | |||
| U.S. | 3,676 | 43% | |||
| America (Non-U.S.) | 289 | 3% | |||
| EMEA | 1,709 | 20% | |||
| APJ | 913 | 11% | |||
| India | 1,982 | 23% | |||
| 330a.2 | Employee engagement as a percentage | Talent Recruitment, Development, and Retention According to our 2021 Global Employee Survey, our Engagement Index Score was 61%. |
|||
| 330a.3 | Percentage of gender and racial/ethnic group representation for (1) management, (2) technical staff, and (3) all other employees | See GRI 405-1 | |||
Managing Systemic Risks from Technology Disruptions
| Code | Metric | Reference |
|---|---|---|
| 550a.2 | Description of business continuity risks related to disruptions of operations | Our cloud-based solutions are primarily operated through third-party cloud service providers, which we do not control and which may be subject to actual or perceived damage, interruption, vulnerabilities and other cyber-related risks. Customers of our cloud-based solutions need to be able to access our platform at any time, without interruption or degradation of performance, and we provide them with service-level commitments with respect to uptime. Third-party cloud providers run their own platforms that we access, and therefore, we are vulnerable to their service interruptions. We may experience interruptions, delays and outages in service and availability from time to time as a result of problems with our third-party cloud providers’ infrastructure. Lack of availability of this infrastructure could be due to a number of potential causes including technical failures, natural disasters, fraud or security attacks that we cannot predict or prevent. Such outages could lead to the triggering of our service level agreements and the issuance of credits to our cloud-offering customers, which may impact our business, results of operations and financial condition. In addition, if our security, or that of any of these third-party cloud providers, is compromised, our software is unavailable or our customers are unable to use our software within a reasonable amount of time or at all, then our business, results of operations and financial condition could be adversely affected. |
Task Force on Climate-related Financial Disclosures (TCFD).
Our reporting aligns with the standards set forth by TCFD. This is our inaugural TCFD Index.
Strategy
| Description of Request | Response |
|---|---|
| Describe the climate-related risks and opportunities the organization has identified over the short, medium, and long term. | Risks: Our worldwide operations are dependent on our network infrastructure, internal technology systems and website. Significant portions of our computer equipment, intellectual property resources and personnel, including critical resources dedicated to R&D and administrative support functions are located at our corporate HQ in Fort Lauderdale, Florida, an area particularly prone to hurricanes, and at our various locations in California, an area prone to earthquakes and wildfires. We also have operations in various domestic and international locations that expose us to additional diverse risks. The occurrence of natural disasters, such as extreme weather, hurricanes, floods or earthquakes; pandemics such as COVID-19, or other unanticipated catastrophes, such as telecommunications failures, cyberattacks, fires or terrorist attacks, at any locations in which we or key partners, suppliers and customers do business, could cause interruptions in our operations. Extensive or multiple disruptions in our own operations could have a material adverse effect on our results of operations. Given our geographical footprint, Citrix could experience a substantive impact to our business from a climate-related incident. Weather-related events driven by climate change could lead to severe physical damage to our locations as well as operational shutdown for certain locations. These risks are described further in our CDP Climate Change disclosure.23 Opportunities: As companies implement commitments to dramatically reducing GHG emissions including optimizing IT practices and curbing employee commuting, we may see an increase in revenues from our remote working and cloud services. As a result, this is driving the development of new products or services through R&D and innovation. Using Citrix Workspace allows customers to deploy low-energy devices, extend device lifecycles, enable carbon-zero cloud computing, drive down corporate office space needs and reduce employee commuting, resulting in reduced energy consumption and GHG emissions. |
| Describe the impact of climate-related risks and opportunities on the organization’s businesses, strategy, and financial planning. | Climate change considerations influence Citrix’s business strategy including R&D investment, client education initiatives and engagement as well as energy efficiency and carbon reduction measures across our operations. We believe we are addressing our GHG emissions by tackling the major sources of our emissions in an effective and pragmatic manner. Citrix recently joined the CDP Supply Chain program, which will inform our sustainable supply chain strategy and allow us to analyze the carbon impact of our supply chain in greater detail. In addition, our strategy to migrate data capacity from on-premise data centers to more efficient cloud providers continues to be influenced by climate-related opportunities. We have also made significant reduction in Rack Units (RUs) within our major data centers due to climate-related considerations. This strategy has resulted in multiple data center consolidation opportunities that Citrix is actively pursuing. Electricity consumption is currently the largest source of our direct emissions. To manage future transition risk, we currently integrate energy efficiency considerations into the procurement of IT assets. Our strategy has been influenced by stakeholder demand for greenhouse gas (GHG) reduction at the operational level, and our own ambition to optimize our operational footprint and reduce costs/GHGs. The most substantial strategic decision was to commit to a public GHG reduction target and engage our Real Estate/Facilities teams in energy efficiency projects. Our distributed work model enables us to be more resilient against the impacts of extreme weather events. |
| Describe the resilience of the organization’s strategy, taking into consideration different climate-related scenarios, including a 2°C or lower scenario. | In subsequent years Citrix plans to use scenario analysis as part of its alignment with the TCFD. Citrix has established the foundational elements required to execute on our corporate-wide climate change strategy. Our Senior Director, Sustainability and ESG has established a centralized function to oversee company-wide climate change initiatives including climate-related scenario analysis. This will be developed further over the next year. |
23 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=page&FilingId=14679772-99178-205050&CIK=0000877890&Index=11200
Governance
| Description of Request | Response |
|---|---|
| Describe the board’s oversight of climate-related risks and opportunities. | The Audit Committee of the Board of Directors of Citrix oversees climate-related risks identified and addressed by our Enterprise Risk Management (ERM) program and Citrix's global risk management framework. As part of its oversight function, the Audit Committee regularly reviews the compliance policies and processes by which our exposure to certain areas of risk—including climate-related risk—is assessed and managed. The Committee provides periodic reports to the full Board of Directors on such matters. |
| Describe management’s role in assessing and managing climate related risks and opportunities. | Citrix's ESG, climate, and sustainability initiatives are managed and led by the Head of Investor Relations, under the leadership of the Chief Financial Officer (CFO). This responsibility ensures that all activities are consistent and aligned with corporate strategy, including climate risks and opportunities. This team meets regularly (at least quarterly) with several other corporate functions involved in our strategy, including legal, facilities and real estate, supply chain and procurement, sales, marketing, IT and HR. Our CFO regularly reviews and approves updates and decisions related to our climate change and environmental sustainability strategy, such as investments in programs and initiatives that advance Citrix's strategy and goals. This includes initiatives covering our emissions reduction and renewable energy strategy, as well as Citrix's annual response to the CDP Climate questionnaire. Once per year, executive management, including our Chief Legal Officer, present a full readout of the Citrix’s execution of the annual Enterprise Risk Management process and framework—including identified risks driven by climate change, if material—to the Audit Committee. |
Metrics and Targets
| Description of Request | Response |
|---|---|
| Disclose the metrics used by the organization to assess climate-related risks and opportunities in line with its strategy and risk management process. | In strong support of the world’s urgent transition to a low-carbon economy, Citrix has initiated targets to reduce our total absolute GHG emissions by 30% by 2030 and reduce our emissions per unit of revenue by 50% by 2030. These goals will use our 2019 emissions as a baseline for factors included and cover Scopes 1, 2 and 3. We expect to refine these targets over the next 1-2 years to receive approval from the Science Based Target initiative (SBTi) to ensure our targets are consistent with Citrix doing its part to keep global warming well below 2°C. Please note, we have re-baselined our 2019 emissions to include additional Scope 3 categories and have used 2020 emissions in these categories as a proxy for 2019 figures. The Scope 3 categories previously included were categories 5 and 6. The added Scope 3 categories are category 1, 2, 3, 9 and 11. |
| Disclose Scope 1 and Scope 2 Greenhouse Gas (GHG) Emissions, and the Related Risks | GRI 305-1 |
| Disclose Scope 3 Greenhouse Gas (GHG) Emissions and the Related Risks | GRI 305-3 |
| Describe the targets used by the organization to manage climate-related risks and opportunities and performance against targets. | In 2020, we developed the following targets using a 2019 baseline level:
We report against these targets in our annual Sustainability Report. |
Risk Management
| Description of Request | Response |
|---|---|
Describe the organization’s processes for identifying and assessing climate-related risks |
We monitor and assess risks arising from climate change policy, legislation and regulation, innovations in the market and weather events. Our strategic planning process and risk management processes together are used to identify, assess and respond to climate-related risks and opportunities. Our corporate strategic planning leverages market intelligence regarding climate change derived from a variety of sources to provide an overall business impact analysis regarding our concentration of risk as well as identify opportunities. For example, our awareness of client-based commitments to reduce greenhouse gas (GHG) emissions (i.e., transition related opportunities) influences Citrix’s R&D investment strategy towards products that optimize IT practices and curb employee commuting thereby reducing clients’ carbon footprints. Market intelligence regarding climate change is obtained from a variety of sources to provide an overall business impact analysis regarding our concentration of risk. Citrix conducts recovery scenarios where specific steps are drafted for every business continuity plan to methodically recover the most critical processes while considering the most likely risks to where they operate (i.e., storms in south FL, fires in southern CA). We also implement geographical risk assessments, an ongoing process to analyze Citrix physical sites to determine the likelihood and impact of a range of threats (i.e., inclement weather). Risk assessments are conducted at least annually and adapted to new or less controlled categories of risk over time.24 |
Describe the organization’s processes for managing climate-related risks. |
The ERM program monitors various types of risk—including those driven by climate change—across many lines of insurance coverage and will propose insurance solutions or products based on our industry, size and business model in order to assess the probability and magnitude of substantive financial impacts and strategic impacts due to climate risks. The company-wide initiative, with the oversight of the Audit Committee of the Board of Directors, represents an integrated effort to (1) identify, assess, prioritize and monitor a broad range of risks – including those driven by climate change and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. For example, our risk model considers potential climate-driven physical risks to our global locations and business continuity that may occur due to extreme weather events driven by climate change such as hurricanes, floods, cyclones, etc. Citrix’s global property insurance program mitigates these identified climate-driven risks with insurance products targeted to identify, assess and respond to both Physical risks and Transitional risks at the facility-level. Coverage and portfolio risk profiles are assessed more than once per year. |
Describe how processes for identifying, assessing, and managing climate-related risks are integrated into the organization’s overall risk management. |
The ERM program process is a company-wide initiative that, with the oversight of the Audit Committee, represents an integrated effort to (1) identify, assess, prioritize and monitor a broad range of risks—including those driven by climate change—and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. The Chief Financial Officer (CFO) has oversight of the results of both our corporate strategic planning and risk management processes. The combined findings of these processes provide a view of Citrix’s climate-related risks and opportunities. |
24 Business Continuity email: Michael Allman 6/10
Citrix is part of a global business community that supports the UN SDGs, a set of 17 goals established by the UN General Assembly in 2015 to achieve a better and more sustainable future for all by 2030. Our sustainability strategy and approach are aligned with SDGs 2, 5, 8, 10, 13, 15 and 17. To learn more about how we support the global communities in which we live and work, visit our Corporate Social Responsibility Report at Citrix: 2021 Year in Review report.
- We engaged in partnerships with Feeding America, the Global Foodbanking Network and the World Food Programme, providing more than 4 million meals to those in need around the world.25
- Our COVID-19 Relief and Recovery program focused on nourishing bodies and minds by providing basic needs such as food and shelter. We set up a special employee relief campaign during India’s 2nd deadly wave of the virus, providing those in need with funding for vaccinations and oxygen cylinders, and protective equipment. We also supported nonprofits focused on hunger such as the Interfaith Food Bank of Raleigh, NC.
- We are committed to gender and underrepresented minority pay equity and are working to bridge the pay equity gap within Citrix.
- Citrix has increased the number of female executives by growing the diversity of our external networks and conducting targeted outreach for key positions.26
- We engage an independent pay equity study firm on an annual basis prior to compensation planning, to monitor, identify root causes and consider appropriate remediation as needed. See our Improving Gender Diversity at Citrix: Our 2021 Gender Pay Gap Results.
- Our technology solutions help address economic inequities by providing employers across every sector with the tools to expand recruiting and retention efforts across the world, and to provide improved availability of quality employment.
- We broaden economic opportunity by enabling a hybrid work model that increases employment opportunities across urban, suburban and rural locations, including in developing regions.
- Our Employee Resource Groups (ERGs) support underrepresented groups of Citrix employees through career development, networking and mentoring opportunities. We also provide a variety of educational resources and training to help our employees thrive and ensure a future-ready workforce that can meet the needs of the modern working world.
- We support students and youth through digital learning and training, helping them to prepare for careers in tech.27
- We partner with INROADS, to promote talent diversity and enable up to 10 Citrix interns to participate in scholarships and leadership development training.
See the Product Innovation section of this report for more information on how we are creating economic opportunities for our customers and their employees.
- Our enhanced Diversity, Inclusion and Belonging (DIB) strategy aims to create a work environment where Citrites can bring their whole selves to work.
- We maintained our Racial Equity Strategy and Racial Equity Working Group.
- We support individuals from underrepresented communities through our community investments.28
- We increased our diverse supplier spend to $45 million, surpassing our 2021 goal of $32 million.
- We continued implementing our Daring Dialogues learning series.
- Our Employee Resource Groups (ERGs) support underrepresented groups of employees within Citrix, including Citrix Asian Professionals, Enabled, Emerge, and Parents and Caregivers.
See the Social Equity section of this report for more information on our efforts to reduce inequalities inside and outside of Citrix.
- We continue to deploy Citrix Workspace technology that enables customers to have distributed location work models, and help to dramatically decrease transportation-related (including air and commuter travel) as well as computing-related GHG emissions.
- We initiated targets to reduce our total absolute GHG emissions by 30% and our emissions per unit of revenue by 50% by 2030.
- We sourced 100% of electricity consumption from renewable energy at our co-located data centers in Santa Clara and Doral, and 69% of energy consumption at our India operations from renewable sources.
See the Environmental Impact section of this report, our 2021 CDP Climate Change disclosure and the TCFD Index for more information on our climate actions.
- Our solutions continue to enable distributed location work models so that our customers can reduce the physical office space needed to operate their business. As customers decreased the amount of square footage occupied during the pandemic, this translated to a drop in building-related natural resource consumption.
- Similarly, Citrix transitioned to a majority off-premise workforce, reducing our real estate portfolio significantly and thus reducing our energy and water consumption and waste output. We are currently working to identify, measure and monitor the environmental impact of our real estate portfolio.
See the Sustainable Design section of this report for more information on how we are working to mitigate the impact of our real estate portfolio and operations on the natural environment.
- Realizing the UN SDGs 2030 Agenda requires a collaborative, global approach, we engaged in several partnerships to accelerate our progress against the interconnected 17 SDGs and 169 associated targets, including the UN Global Compact, the Science Based Targets initiative and the CDP Supply Chain program. Citrix is also a supporting member of the Confederation of British Industry (CBI) in the UK due to its involvement in COP26 and its Race to Zero campaign.
25 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf
26 https://www.citrix.com/about/diversity-inclusion/
27 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf
28 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf