Data index

This report was prepared using the Global Reporting Initiative (GRI) Standards.

Organizational Profile

Disclosure # Description Answer
102-1 Name of the organization Citrix Systems, Inc.
102-2 Activities, brands, products, and services Citrix is an enterprise software company focused on helping organizations deliver a consistent and secure work experience no matter where work needs to get done — in the office, at home, or in the field. We do this by delivering a digital workspace solution that gives each employee the resources and space they need to do their best work. Our digital workspace technologies deliver the applications and data employees need across any network with security, reliability and speed. Since 1989, Citrix has made it easier for people to access the applications and content they need to do their very best work – wherever and whenever work needs to get done. Over the years, Citrix’s technology has served more than 100 million users across 400,000 organizations – including nearly all of the Fortune 500 – trust Citrix to power a better way to work.
102-3 Location of headquarters 851 West Cypress Creek Road
Fort Lauderdale, Florida 33309
102-4 Location of operations We have 60 offices in 40 countries.1  We lease and sublease office space in the Americas, which is comprised of the United States, Canada and Latin America, EMEA, which is comprised of Europe, the Middle East and Africa, and APJ, which is comprised of Asia-Pacific and Japan. In addition, we own land and buildings in Fort Lauderdale, Florida and Chalfont St. Peter, United Kingdom.2  For a more detailed breakdown of locations of our operations, visit Citrix Worldwide.
102-5 Ownership and legal form Citrix is publicly traded under the ticker symbol CTXS.
102-6 Markets served Citrix serves the Americas, EMEA and APJ.
102-7 Scale of the organization Citrix serves more than 100 million users, 10,000 partners and 400,000 customers across 100 countries.3
102-8 Information on employees and other workers

As of December 31, 2021, we had approximately 8,500 employees in more than 40 countries, of which approximately 43% were in the U.S. and 57% were in our international locations.  

Our Investment in Human Capital TBD
2021 Employer Information Report EEO-1
Historical Demographic Data

102-9 Supply chain

For our cloud-based solutions, we use a combination of co-located hosting facilities and increasingly use Microsoft Azure and AWS as well as other infrastructure-as-a-service providers. For our App Delivery and Security products, we use independent contractors to provide a redundant source of manufacture and assembly capabilities. Independent contractors provide us with the flexibility needed to meet our product quality and delivery requirements. We have manufacturing relationships that we enter into in the ordinary course of business, primarily with Flextronics, under which we have subcontracted the majority of our hardware manufacturing activity, generally on a purchase order basis. These third-party contract manufacturers also provide final test, warehousing and shipping services. This subcontracting activity extends from prototypes to full production and includes activities such as material procurement, final assembly, test, control, shipment to our customers and repairs.

Together with our contract manufacturers, we design, specify and monitor the tests that are required to meet internal and external quality standards. Our contract manufacturers produce our products based on forecasted demand for our solutions. Each of the contract manufacturers procures components necessary to assemble the products in our forecast and test the products according to our specifications. We dual-source our components; however, in some instances, those sources may be located in the same geographic area. Accordingly, if a natural disaster occurs in one of those areas, we may need to seek additional sources. Products are then shipped to our distributors, VARs or end-users. If the products go unsold for specified periods of time, we may incur carrying charges or obsolete material charges for products ordered to meet our forecast or customer orders. In 2021, we did not experience any material difficulties or significant delays in the manufacture and assembly of our products.4

102-10 Significant changes to the organization and its supply chain

We are evolving our business in three primary ways:

  • On-Premise to Cloud: As the share of applications and data continues to move rapidly from on-premise data centers to the cloud, our product development and engineering resources have increasingly focused on delivering cloud-based solutions;
  • Perpetual to Subscription: Our business model is shifting away from selling perpetual licenses towards subscription, or recurring contracts in the form of SaaS, on-premise term, and consumption-based agreements; and
  • Point Products to Platform: Our offerings and our go-to-market activities are shifting away from selling individual point products towards our platform solution, in a tiered offering that provides us the ability to deliver a variety of value-enhancing modules to our customers in the future.5
102-11 Precautionary Principle or approach We support a precautionary approach in establishing environmental objectives and implementing initiatives.
102-12 External initiatives Afro Tech
Grace Hopper
Disability:IN, Out & Equal
Diversity Best Practices
Lesbians Who Tech
RISE India
Science-based Target initiative
The Conference Board
The National Society of Black Engineers (NSBE)
The National Diversity Council
United Nations Global Compact
United Nations Sustainable Development Goals
102-13 Membership of associations Confederation of British Industry (CBI)
Disability:IN
Girls Who Code College Loop Program
National LGBT Chamber of Commerce
National Minority Supplier Development Council
Responsible Business Alliance
We Mean Business Coalition
Women’s Business Enterprise National Council

1 https://www.citrix.com/about/
2 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=page&FilingId=14679772-60627-99178&CIK=0000877890&Index=1110
3 https://www.citrix.com/about/
https://otp.tools.investis.com/clients/us/citrix/SEC/sec-outline.aspx?FilingId=14679772&Cik=0000877890&PaperOnly=0&HasOriginal=1
5 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-outline.aspx?FilingId=14679772&Cik=0000877890&PaperOnly=0&HasOriginal=1

Strategy

Disclosure # Description Answer
102-14 Statement from senior decision-maker Leadership TBD
102-15 Key impacts, risks, and opportunities

Risk Management TBD
Form 10-K

Ethics & Integrity

Disclosure # Description Answer
102-16 Values, principles, standards, and norms of behavior

Our core values include Integrity, Respect, Curiosity, Courage and Unity.

Citrix’s Corporate Governance Guidelines provide detail on our corporate governance policies.

Our Code of Business Conduct and Supplier/Partner Code of Business Conduct provide guidelines to employees, suppliers and partners on their ethical and legal responsibilities.

The Citrix Trust Center provides the latest information on our approach to security, privacy, and compliance.

102-17 Mechanisms for advice and concerns about ethics Citrix has mechanisms for its employees and third parties to ask questions or report concerns about possible violations of our Code of Business Conduct, Citrix policies and laws. Our Code has procedures and contact information for raising such matters, and we provide in our Code that retaliation will not be tolerated. Our website publishes this grievance mechanism to other stakeholders. Citrix also makes this information available to our channel partners through our Partner Central portal.6

6 https://www.citrix.com/about/legal/modern-slavery-act-statement.html

Governance

Disclosure # Description Answer
102-18 Governance structure Governance TBD
Corporate Governance
Form 10-K
102-19 Delegating authority Governance TBD
Corporate Governance
Form 10-K
102-20 Executive-level responsibility for economic, environmental, and social topics Governance TBD
Corporate Governance
Form 10-K
102-21 Consulting stakeholders on economic, environmental, and social topics Stakeholder Engagement TBD
Materiality Assessment TBD
102-22 Composition of the highest governance body and its committees Governance TBD
Corporate Governance
Form 10-K
102-23 Chair of the highest governance body Nanci E. Caldwell has served as a director of the Company since July 2008. In April 2018, Ms. Caldwell assumed the role of lead independent director.
102-24 Nominating and selecting the highest governance body Form 10-K
102-25 Conflicts of interest Form 10-K
102-26 Role of highest governance body in setting purpose, values, and strategy Governance TBD
Corporate Governance
Form 10-K
102-27 Collective knowledge of highest governance body Form 10-K
102-28 Evaluating the highest governance body’s performance Form 10-K
102-29 Identifying and managing economic, environmental, and social impacts Governance TBD
Corporate Governance
Form 10-K
102-30 Effectiveness of risk management processes Risk Management TBD
Corporate Governance
Form 10-K
102-31 Review of economic, environmental, and social topics Materiality Assessment TBD
102-32 Highest governance body’s role in sustainability reporting Sustainability Governance TBD
102-33 Communicating critical concerns Form 10-K
102-35 Remuneration policies Form 10-K
102-36 Process for determining remuneration Form 10-K
102-37 Stakeholders’ involvement in remuneration Form 10-K
102-38 Annual total compensation ratio Form 10-K

Stakeholder Engagement

Disclosure # Description Answer
102-40 List of stakeholder groups

Our key stakeholder groups include:

Shareholders: We hold regular shareholder engagement meetings with institutional investors who represent more than 21% of Citrix’s outstanding common stock.

Customers: Our customers are among the largest enterprises and institutions in the world spanning every major industry vertical, including health care, financial services, technology, manufacturing, consumer and government agencies. Our largest customers are often our longest tenured customers.

Technology Partners: We have a number of technology relationships in place to accelerate the development of existing and future solutions and our go-to-market initiatives, including Microsoft, Google, Google Systems Integrators and more. These relationships include cross-licensing, original equipment manufacturer (OEM), resell, joint reference architectures and other arrangements that result in better solutions for our customers.

Employees: See Our Investment in Human Capital TBD and GRI 102-8 for more information on our employees and how we engage them.

Suppliers: We are a CDP Supply Chain member and are engaging with more than 100 key suppliers to collect primary data and climate strategy information.

102-42 Identifying and selecting stakeholders Stakeholder Engagement TBD
102-43 Approach to stakeholder engagement Stakeholder Engagement TBD
102-44 Key topics and concerns raised

Environment: Carbon emissions; climate change adaptation and resilience; energy consumption and product sustainability

Social: Diversity, inclusion and belonging; health, safety and well-being; sustainable supply chain and procurement; training a “future-ready” workforce

Governance: Board composition; business continuity; technology, data and information security and privacy; ethics, integrity and compliance

Materiality Assessment TBD

Reporting Practice

Disclosure # Description Answer
102-45 Entities included in the consolidated financial statements Form 10-K
102-46 Defining report content and topic boundaries Our ESG Reporting TBD
Materiality Assessment TBD
102-47 List of material topics Materiality Assessment TBD
102-48 Restatements of information Improving Measurement of Emissions Data TBD
As our data collection and measurement continues to improve, we have recalculated our 2019 baseline year emissions in order to better track our progress and make more accurate year-over-year comparisons
102-49 Changes in reporting Improving Measurement of Emissions Data
GRI 102-48
102-50 Reporting period January 1, 2021–December 31, 2021
102-51 Date of most recent report This is Citrix’s 3rd annual Sustainability Report.
102-52 Reporting cycle Citrix conducts its sustainability reporting on an annual basis.
102-53 Contact point for questions regarding the report erica.christensen@citrix.com
102-54 Claims of reporting in accordance with the GRI Standards This report was prepared using the Global Reporting Initiative (GRI), the Sustainable Accounting Standards Board (SASB) and the Task Force on Climate-related Financial Disclosures (TCFD) standards.
102-55 GRI content index GRI Index
102-56 External assurance Our Sustainability Report and 2021 CDP Climate Change disclosure have been externally reviewed.
External Assurance Statement

Economic Performance

Disclosure # Description Answer
  Management Approach Form 10-K
Strategy Overview
201-1 Direct economic value generated and distributed Form 10-K
201-2 Financial implications and other risks and opportunities due to climate change 2021 CDP Climate Change disclosure
TCFD Index

Indirect Economic Impacts

Disclosure # Description Answer
  Management Approach Social Equity TBD
Corporate Social Responsibility Report at Citrix: 2021 Year in Review
203-1 Infrastructure investments and services supported Social Equity TBD
Corporate Social Responsibility Report at Citrix: 2021 Year in Review
203-2 Significant indirect economic impacts Social Equity TBD
Corporate Social Responsibility Report at Citrix: 2021 Year in Review

Procurement Practices

Disclosure # Description Answer
  Management Approach Citrix Supplier Diversity Program
204-1 Proportion of spending on local suppliers  Our diverse supplier spend was $45 million, surpassing our $32 million 2021 goal.

Anti-corruption

Disclosure # Description Answer
  Management Approach Code of Business Conduct
Supplier/Partner Code of Business Conduct
205-1 Operations assessed for risks related to corruption All operations are assessed for risks related to corruption.
205-2 Communication and training about anti-corruption policies and procedures As part of our onboarding process, all new employees must receive training on anti-corruption policies and procedures.
205-3 Confirmed incidents of corruption and actions taken Citrix did not experience any incidents of corruption in FY2021.

Anti-competitive Behavior

Disclosure # Description Answer
  Management Approach Code of Business Conduct
Supplier/Partner Code of Business Conduct
206-1 Legal actions for anti-competitive behavior, anti-trust, and monopoly practices No legal actions were taken against Citrix for anti-competitive behavior, anti-trust, or monopoly practices in FY2021.

Tax

Disclosure # Description Answer
  Management Approach Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement
207-1 Approach to tax 

Citrix enforces responsible tax administration via our global tax policies, arrangements and approach to tax risk management and planning. We seek to structure our affairs in a manner that supports our business operations and accurately reflects the economics of each transaction. Citrix seeks external expert advice where needed and seeks elimination or reduction of tax risk through transparent dialogue and communication with tax authorities.7

Citrix Systems Inc. and Subsidiaries – Global Tax Policy Statement

207-2 Tax governance, control, and risk management 

Our Board of directors and officers seek compliance with tax legislation as key to managing our tax risk. Citrix’s global tax team seeks to identify, evaluate and manage tax risks to ensure that they remain in line with Citrix’s risk management policies. We encourage ethical and transparent business practices by developing processes and controls that monitor risk and ensure appropriate management oversight. We strive to manage and, where possible, eliminate, tax risk through the effectiveness of the organization’s internal controls relating to tax.

We seek to be a responsible global tax citizen by complying with international tax laws and regulations in all of the territories in which we operate. We adhere to all of the rules that are relevant and applicable with respect to determining the bases for our worldwide tax liabilities, the timing for our tax payments, the filing of our tax returns and disclosures of all relevant facts and circumstances.8

207-3 Stakeholder engagement and management of concerns related to tax 

Citrix’s approach to stakeholder engagement is to adopt a policy of transparency with all governmental tax authorities. We aim to work collaboratively with tax authorities, including HM Revenue & Customs (HMRC). We recognize that there will be occasions where we will encounter areas of disagreement relating to interpretations of law and its applicability, and where this occurs, we will engage with HMRC in proactive discussions to bring issues to a rapid resolution wherever possible.9

7 https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html
https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html
https://www.citrix.com/about/legal/global-tax-policy-statement-uk.html

Energy

Disclosure # Description Answer
  Management Approach Emissions and Energy TBD
302-1 Energy consumption within the organization 90,291,297 kWh
302-2 Energy consumption outside of the organization 872,766,000 megajoules
302-3 Energy intensity 0.271 joules/Total 2021 revenue USD (S1+S2+S3 – Cat 11)

Emissions

Disclosure # Description Answer
  Management Approach 2021 CDP Climate Change disclosure
Emissions and Energy TBD
305-1 Direct (Scope 1) GHG emissions Fleet/Heating: 3,344 MT CO2e
305-2 Energy indirect (Scope 2) GHG emissions Purchased Electricity: 32,063 MT CO2e (location-based)
305-3 Other indirect (Scope 3) GHG emissions (MT CO2e)
Purchased goods and services: 109,861
Capital goods: 8,861
Fuel and energy-related activities: 7,969
Business travel: 3,455
Employee commuting: 317
Downstream transportation: 42
Product use (sold hardware): 108,161
305-4

GHG emissions intensity

2021 Total Revenue: $3.22 billion
Total GHGs (S1+S2+S3 MT CO2e): 257,938
GHG Intensity (MT CO2e/Revenue): 0.00008010
For more information, see our CDP Climate Change disclosure.

305-5 Reduction of GHG emissions 1,286 MT CO2e (0.5% increase from 2020)

Supplier Environmental Assessment

Disclosure # Description Answer
  Management Approach Sustainable Supply Chain and Procurement TBD
308-1 New suppliers that were screened using environmental criteria As a CDP Supply Chain member, we engage with more than 100 key suppliers to collect primary data and climate strategy information. In our 2021 CDP survey of suppliers, for example, we found that overwhelming majorities have integrated climate change into their business strategy, are leading their climate governance efforts from the C-suite, and are engaging with their own suppliers regarding GHG emissions and climate change strategies. This year, we incorporated CDP Supply Chain data into our emissions inventory calculations for the first time. We evaluated supplier specific GHG reporting for 5 of Citrix’s top suppliers and calculated a supplier specific emission factor by multiplying the suppliers’ total Scope 1, 2 & 3 emissions.

Employment

Disclosure # Description Answer
  Management Approach Our Investment in Human Capital TBD
401-1 New employee hires and employee turnover 2021 Hires = 1,515
2021 Total Attrition: 24.9%
2021 Voluntary attrition: 16.6%

401-2 Benefits provided to full-time employees that are not provided to temporary or part-time employees

Citrix offers competitive and meaningful compensation and benefits programs that meet the diverse needs of our employees, while also reflecting local market practices. In addition to competitive salaries and bonuses, we offer a robust employment total rewards package that promotes employee well-being and includes retirement planning, health care, extended parental leave, paid time off and appreciation events for employees. We grant equity-based compensation to a significant portion of our employees and provide the opportunity for equity ownership through our employee stock purchase plan. We also offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors.10

Building on Benefits TBD
Benefits & Rewards

401-3 Parental leave

Citrix provides up to 18 weeks of 100% paid leave — including benefits — for full-time employees who are new parents to care for a newborn or newly adopted child. New parents include moms, dads and partners. This paid leave is in addition to the nine paid holidays and other paid time-off from Citrix for family-focused time.11


10 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14679772&CIK=0000877890&Index=10000
11 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14679772&CIK=0000877890&Index=10000

Occupational Health and Safety

Disclosure # Description Answer
  Management Approach Citrix seeks to continuously improve its health and safety performance and create a culture that values everyone’s safety and well-being. To deliver our commitments, we will:

 

  • Meet or exceed applicable legal requirements; where laws and regulations do not provide adequate controls, we will adopt our own standards to protect our works
  • Identify risks arising from work activities and deploy preventative measures to minimize them
  • Engage the workforce in the promotion and achievement of high standards of occupational health and safety performance through collaboration with employees
  • Report and investigate all accidents, near misses and work-related ill health for system failures and establish measure to prevent reoccurrence
  • Ensure any business decisions consider the impact of health and safety of those affected
  • Communicate the health and safety policy and programs to all Citrix employees, contingency workers, visitors, contractors and stakeholders.12

Employee Health, Safety and Well-being TBD

403-1 Occupational health and safety management system Preserving the health and safety of Citrix employees and others working in our offices is essential. Citrix’s Health and Safety Guidelines describe our occupational Health and Safety Management System. While accountability for this system rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved. The Global Health and Safety Team will be supporting the development and implementation of a business-focused Health and Safety strategy, with an aim for continuous improvement.13
403-4 Worker participation, consultation, and communication on occupational health and safety Our new Health and Safety Management System encourages employees to report incidents and be our eyes and ears for health, safety and security.14
403-5 Worker training on occupational health and safety All health and safety training will be offered through the Citrix Learning Center.15   While accountability for the Health and Safety Management System rests with the senior leadership team, each employee has an individual responsibility to understand and follow our Health and Safety policy and to actively participate in training and programs to ensure our goals are achieved.
403-6 Promotion of worker health

We offer benefits to support our employees’ physical and mental health by providing tools and resources to help them improve or maintain their health and encourage healthy behaviors.

During the COVID-19 pandemic, our primary focus has been on the safety and well-being of our employees and their families. A large majority of our workforce worked off-premise throughout most of 2021. For offices that reopened, we leveraged the advice and recommendations of medical experts to implement new protocols to ensure the safety of our employees, including face coverings, temperature checks, health certifications, social distancing and capacity limits. We also extended paid time-off and sick leave benefits for employees directly impacted by COVID-19.

Employee Health, Safety and Well-being TBD

403-7 Prevention and mitigation of occupational health and safety impacts directly linked by business relationships

As outlined in our Supplier/Partner Code of Conduct, preserving the health and safety of Supplier/Partner employees and others working in our offices is essential. Supplier/Partner employees must never engage in violence or other harmful actions and must commit to the health and safety of their employees.16


12 Citrix Health & Safety Guidelines PDF (7/27/21)
13 Citrix Health & Safety Guidelines PDF (7/27/21)
14 Citrix Health & Safety Guidelines PDF (7/27/21)
15 Citrix Health & Safety Guidelines PDF (7/27/21)
16 https://www.citrix.com/content/dam/citrix/en_us/documents/about/supplier-partner-code-of-business-conduct.pdf

Training and Education

Disclosure # Description Answer
  Management Approach Training a “Future-Ready” Workforce TBD
404-2 Programs for upgrading employee skills and transition assistance programs
  • Virtual programs supporting our employees in learning, development and leadership
  • Learning resources and tools to support employees with remote working, such as best practices for virtual working, managing virtual teams, health and wellbeing courses, workshops for managing priorities and resources for parent and caregivers
  • On-demand, external coaching for managers to help manage stress and support their teams
  • Virtual manager toolkit, providing ideas for team building and connection, prioritization, team effectiveness and managing teams virtuallyMentoring programs for diverse High Potential employees (HiPos) in our executive succession pipeline, and for our HiPo Black Professionals. In both programs, employees are provided with external mentors who are senior executives from other companies.

Talent Recruitment, Development, and Retention TBD

404-3 Percentage of employees receiving regular performance and career development reviews At Citrix, our performance touchpoints are centered on coaching conversations, and employees can request as many touchpoints as they'd like per year. 95% of our employees received their year-end touchpoint for 2021. While all of our touchpoints have a focus on career, we also have a formalized career month each year in July, and at this time employees are encouraged to work with their managers to create a formalized career development plan.

Diversity and Equal Opportunity

Disclosure # Description Answer      
  Management Approach

Citrix Diversity and Inclusion
Diversity, Inclusion and Belonging TBD

405-1 Diversity of governance bodies and employees   Female Male
Overall 26% 74%
People Managers 29% 71%
Leadership 27% 73%
  Overall People Managers Leadership
White 54% 62% 75%
Hispanic or Latino 16% 13% 8%
Asian 22% 14% 16%
Black or African American 5% 4% 0%
Multicultural and Others 3% 4% 1%

We believe that a diverse board is an effective board. Racially, ethnically or gender diverse directors currently comprise 37.5% of the total Board of Directors. Mr. Bob Knowling identifies as Black, and Nanci Caldwell and Moira Kilcoyne identify as women.17

Citrix Diversity and Inclusion
Diversity, Inclusion and Belonging TBD
Board Composition TBD

405-2 Ratio of basic salary and remuneration of women to men

Citrix Systems UK Limited’s Mean Gender Pay Gap has continued in a downward trend from 13.2% in 2019/20 to 12% in 2020/21. Citrix R&D Limited’s mean gender pay gap result for 2020/21 was 31%.

Citrix 2021 Gender Pay Gap Results (data limited to Citrix Systems UK Limited and Citrix R&D Limited)

17 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=html&FilingId=14874564&Cik=0000877890#D117673DDEF14A_HTM_TOC

Non-discrimination

Disclosure # Description Answer
  Management Approach

Code of Business Conduct

Citrix will not tolerate discrimination or harassment based on race, color, ethnicity, religion, gender, national origin, pregnancy, childbirth or related medical conditions, disability, age, marital status, genetic carrier status, veteran status, citizenship, sexual orientation, gender identity or other characteristic that is protected by law.

406-1 Incidents of discrimination and corrective actions taken We had TBD discrimination cases

Child Labor

Disclosure # Description Answer
  Management Approach

Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.

Modern Slavery Act Statement

408-1 Operations and suppliers at significant risk for incidents of child labor

Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.

Citrix is committed to adhering to all applicable employment laws and including but not limited to laws relating to child labor, wages, hours and working conditions, and to working with socially responsible partners that embrace high standards of ethical behavior and treat their employees fairly and with respect. Citrix supports fair and living wages for all employees. Citrix partners’ commitment to the health and safety of their employees is also important to us, and Citrix will avoid working with partners that do not comply with laws relating to child labor, wages, hours, and working conditions. Suppliers/Partners are also required to take affirmative steps to combat, slavery and trafficking in persons and forced or child labor.18

Code of Business Conduct
Supplier/Partner Code of Business Conduct
Modern Slavery Act Statement

18 https://www.citrix.com/content/dam/citrix/en_us/documents/about/supplier-partner-code-of-business-conduct.pdf
https://www.citrix.com/content/dam/citrix/en_us/documents/about/code-of-business-conduct.pdf

Forced or Compulsory Labor

Disclosure # Description Answer
  Management Approach

Citrix prohibits and will not tolerate slavery or trafficking in persons or the use of forced or child labor by anyone in the Citrix Community, including Citrix partners and suppliers.

Modern Slavery Act Statement

409-1

Operations and suppliers at significant risk for incidents of forced or compulsory labor

A substantial portion of our workforce consists of skilled labor. In addition, all employees hired by Citrix are subject to a background check. Citrix also uses independent contractors. Because of the nature of the types of jobs performed by our independent contractors, we believe the risk of modern slavery in their performance for Citrix is low. Citrix generally uses placement agencies to source independent contractors. These agencies are selected following a standard sourcing process with defined business criteria.

We have established policies and compliance and other procedures applicable to Citrix and/or third-party manufacturers to mitigate the risks of modern slavery in the supply chains for our products. Our approach is to focus on our direct suppliers since this is the level of the supply chain where we believe that we have the most influence and can therefore be the most effective. We believe our principal risk of modern slavery is that forced labor could occur without our knowledge in violation of our policies in upper tiers of the supply chain.19

Modern Slavery Act Statement

19 https://www.citrix.com/about/legal/modern-slavery-act-statement.html

Human Rights Assessment

Disclosure # Description Answer
  Management Approach Modern Slavery Act Statement
412-1 Operations that have been subject to human rights reviews or impact assessments We assess the effectiveness of the actions being taken to assess and address modern slavery risks through ongoing engagement with our principal third-party manufacturer, the findings of our vendor due diligence program and the number and type of complaints received through our grievance mechanism.20
412-2 Employee training on human rights policies or procedures We provide mandatory internal training intended to ensure that all our employees observe and understand our Code of Business Conduct, the underlying policies, law and regulations and their applicability to our business. In addition, our principal third-party manufacturer has indicated that it provides training on forced labor and human trafficking to its employees.21
412-3 Significant investment agreements and contracts that include human rights clauses or that underwent human rights screening

Citrix has a risk-based vendor due diligence program which, among other things, screens for certain labor violations. Citrix’s standard contract and purchase agreement language requires our suppliers to act in a manner consistent with our Supplier/Partner Code of Business Conduct. We will not do business with partners that do not comply with laws relating to child labor, wages, hours and working conditions. If we learn that our vendors, contractors or consultants have acted in a manner inconsistent with our ethical standards, we will take appropriate action.22

Modern Slavery Act Statement

20 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
21 https://www.citrix.com/about/legal/modern-slavery-act-statement.html
22 https://www.citrix.com/about/legal/modern-slavery-act-statement.html

Supplier Social Assessment

Disclosure # Description Answer
  Management Approach Citrix Supplier Diversity Program
Expanding Supplier Diversity TBD
414-1 New suppliers that were screened using social criteria

Citrix Supplier Diversity Program
Citrix Supplier Diversity Classifications
Expanding Supplier Diversity TBD

Public Policy

Disclosure # Description Answer
  Management Approach The Company does not make any contributions to an individual politician, candidate or holder of a governmental office or political party.
415-1 Political contributions Our Political Contributions Policy addresses political contributions and expenditures as well as contributions made to trade associations and 501(c)(4) organizations that may be used for political activity.

Our reporting aligns with the SASB Software & IT Services sector standards.

Environmental Footprint of Hardware Infrastructure

Code Metric Reference

130a.1

(1) Total energy consumed, (2) percentage grid electricity, (3) percentage renewable

  1. 90,291 MWh
  2. 55% grid electricity
  3. 45% renewable energy
130a.2

 

(1) Total water withdrawn, (2) total water consumed, percentage of each in regions with High or Extremely High Baseline Water Stress We’re looking into how we can track this on a global level and plan to report on this data in the future.
130a.3

 

Discussion of the integration of environmental considerations into strategic planning for data center needs

 

CDP Climate Change disclosure

 

Data Privacy & Freedom of Expression

Code Metric Reference
220a.1 Description of policies and practices relating to behavioral advertising and user privacy Technology, Data, and Information Security TBD

Data Security

Code Metric Reference
230a.2 Description of approach to identifying and addressing data security risks, including use of third-party cybersecurity standards

Technology, Data, and Information Security TBD

Regulation of privacy and data security may adversely affect sales of our products and services and result in increased compliance costs. For more details, see our Form 10-K

Recruiting & Managing a Global, Diverse & Skilled Workforce

Code Metric Reference      
330a.1 Percentage of employees that are (1) foreign nationals and (2) located offshore
  1. 17.5% of employees are U.S. foreign nationals (643 out of the 3,676 U.S. active employees as of December 2021).
  2. Employees located offshore:
Location/Region Employee Count %
U.S. 3,676 43%
America (Non-U.S.) 289 3%
EMEA 1,709 20%
APJ 913 11%
India 1,982 23%
330a.2 Employee engagement as a percentage

Talent Recruitment, Development, and Retention TBD

According to our 2021 Global Employee Survey, our Engagement Index Score was 61%.

330a.3 Percentage of gender and racial/ethnic group representation for (1) management, (2) technical staff, and (3) all other employees See GRI 405-1

Managing Systemic Risks from Technology Disruptions

Code Metric Reference
550a.2 Description of business continuity risks related to disruptions of operations Our cloud-based solutions are primarily operated through third-party cloud service providers, which we do not control and which may be subject to actual or perceived damage, interruption, vulnerabilities and other cyber-related risks. Customers of our cloud-based solutions need to be able to access our platform at any time, without interruption or degradation of performance, and we provide them with service-level commitments with respect to uptime. Third-party cloud providers run their own platforms that we access, and therefore, we are vulnerable to their service interruptions. We may experience interruptions, delays and outages in service and availability from time to time as a result of problems with our third-party cloud providers’ infrastructure. Lack of availability of this infrastructure could be due to a number of potential causes including technical failures, natural disasters, fraud or security attacks that we cannot predict or prevent. Such outages could lead to the triggering of our service level agreements and the issuance of credits to our cloud-offering customers, which may impact our business, results of operations and financial condition. In addition, if our security, or that of any of these third-party cloud providers, is compromised, our software is unavailable or our customers are unable to use our software within a reasonable amount of time or at all, then our business, results of operations and financial condition could be adversely affected. For more details, see Form 10-K.

Task Force on Climate-related Financial Disclosures (TCFD).

Our reporting aligns with the standards set forth by TCFD. This is our inaugural TCFD Index.

Strategy

Description of Request Response
Describe the climate-related risks and opportunities the organization has identified over the short, medium, and long term.

Risks: Our worldwide operations are dependent on our network infrastructure, internal technology systems and website. Significant portions of our computer equipment, intellectual property resources and personnel, including critical resources dedicated to R&D and administrative support functions are located at our corporate HQ in Fort Lauderdale, Florida, an area particularly prone to hurricanes, and at our various locations in California, an area prone to earthquakes and wildfires. We also have operations in various domestic and international locations that expose us to additional diverse risks. The occurrence of natural disasters, such as extreme weather, hurricanes, floods or earthquakes; pandemics such as COVID-19, or other unanticipated catastrophes, such as telecommunications failures, cyberattacks, fires or terrorist attacks, at any locations in which we or key partners, suppliers and customers do business, could cause interruptions in our operations. Extensive or multiple disruptions in our own operations could have a material adverse effect on our results of operations. Given our geographical footprint, Citrix could experience a substantive impact to our business from a climate-related incident. Weather-related events driven by climate change could lead to severe physical damage to our locations as well as operational shutdown for certain locations. These risks are described further in our CDP Climate Change disclosure.23

Opportunities: As companies implement commitments to dramatically reducing GHG emissions including optimizing IT practices and curbing employee commuting, we may see an increase in revenues from our remote working and cloud services. As a result, this is driving the development of new products or services through R&D and innovation. Using Citrix Workspace allows customers to deploy low-energy devices, extend device lifecycles, enable carbon-zero cloud computing, drive down corporate office space needs and reduce employee commuting, resulting in reduced energy consumption and GHG emissions.

Describe the impact of climate-related risks and opportunities on the organization’s businesses, strategy, and financial planning. Climate change considerations influence Citrix’s business strategy including R&D investment, client education initiatives and engagement as well as energy efficiency and carbon reduction measures across our operations. We believe we are addressing our GHG emissions by tackling the major sources of our emissions in an effective and pragmatic manner. Citrix recently joined the CDP Supply Chain program, which will inform our sustainable supply chain strategy and allow us to analyze the carbon impact of our supply chain in greater detail. In addition, our strategy to migrate data capacity from on-premise data centers to more efficient cloud providers continues to be influenced by climate-related opportunities. We have also made significant reduction in Rack Units (RUs) within our major data centers due to climate-related considerations. This strategy has resulted in multiple data center consolidation opportunities that Citrix is actively pursuing. Electricity consumption is currently the largest source of our direct emissions. To manage future transition risk, we currently integrate energy efficiency considerations into the procurement of IT assets. Our strategy has been influenced by stakeholder demand for greenhouse gas (GHG) reduction at the operational level, and our own ambition to optimize our operational footprint and reduce costs/GHGs. The most substantial strategic decision was to commit to a public GHG reduction target and engage our Real Estate/Facilities teams in energy efficiency projects. Our distributed work model enables us to be more resilient against the impacts of extreme weather events.
Describe the resilience of the organization’s strategy, taking into consideration different climate-related scenarios, including a 2°C or lower scenario. In subsequent years Citrix plans to use scenario analysis as part of its alignment with the TCFD. Citrix has established the foundational elements required to execute on our corporate-wide climate change strategy. Our Senior Director, Sustainability and ESG has established a centralized function to oversee company-wide climate change initiatives including climate-related scenario analysis. This will be developed further over the next year. 

23 https://otp.tools.investis.com/clients/us/citrix/SEC/sec-show.aspx?Type=page&FilingId=14679772-99178-205050&CIK=0000877890&Index=11200

Governance

Description of Request Response
Describe the board’s oversight of climate-related risks and opportunities. The Audit Committee of the Board of Directors of Citrix oversees climate-related risks identified and addressed by our Enterprise Risk Management (ERM) program and Citrix's global risk management framework. As part of its oversight function, the Audit Committee regularly reviews the compliance policies and processes by which our exposure to certain areas of risk—including climate-related risk—is assessed and managed. The Committee provides periodic reports to the full Board of Directors on such matters.
Describe management’s role in assessing and managing climate related risks and opportunities. Citrix's ESG, climate, and sustainability initiatives are managed and led by the Head of Investor Relations, under the leadership of the Chief Financial Officer (CFO). This responsibility ensures that all activities are consistent and aligned with corporate strategy, including climate risks and opportunities. This team meets regularly (at least quarterly) with several other corporate functions involved in our strategy, including legal, facilities and real estate, supply chain and procurement, sales, marketing, IT and HR. Our CFO regularly reviews and approves updates and decisions related to our climate change and environmental sustainability strategy, such as investments in programs and initiatives that advance Citrix's strategy and goals. This includes initiatives covering our emissions reduction and renewable energy strategy, as well as Citrix's annual response to the CDP Climate questionnaire. Once per year, executive management, including our Chief Legal Officer, present a full readout of the Citrix’s execution of the annual Enterprise Risk Management process and framework—including identified risks driven by climate change, if material—to the Audit Committee.

Metrics and Targets

Description of Request Response
Disclose the metrics used by the organization to assess climate-related risks and opportunities in line with its strategy and risk management process. In strong support of the world’s urgent transition to a low-carbon economy, Citrix has initiated targets to reduce our total absolute GHG emissions by 30% by 2030 and reduce our emissions per unit of revenue by 50% by 2030. These goals will use our 2019 emissions as a baseline for factors included and cover Scopes 1, 2 and 3. We expect to refine these targets over the next 1-2 years to receive approval from the Science Based Target initiative (SBTi) to ensure our targets are consistent with Citrix doing its part to keep global warming well below 2°C. Please note, we have re-baselined our 2019 emissions to include additional Scope 3 categories and have used 2020 emissions in these categories as a proxy for 2019 figures. The Scope 3 categories previously included were categories 5 and 6. The added Scope 3 categories are category 1, 2, 3, 9 and 11.
Disclose Scope 1 and Scope 2 Greenhouse Gas (GHG) Emissions, and the Related Risks

GRI 305-1
GRI 305-2
Improving Measurement of Emissions Data TBD
For a country-by-country breakdown of our Scope 1 GHG emissions, see our CDP Climate Change disclosure.

Disclose Scope 3 Greenhouse Gas (GHG) Emissions and the Related Risks

GRI 305-3
Improving Measurement of Emissions Data TBD

Describe the targets used by the organization to manage climate-related risks and opportunities and performance against targets.

In 2020, we developed the following targets using a 2019 baseline level:

  1. Reduce absolute GHG emissions by 30%
  2. Decrease carbon intensity per unit of revenue by 50%

We report against these targets in our annual Sustainability Report.

Risk Management

Description of Request Response

Describe the organization’s processes for identifying and assessing climate-related risks

We monitor and assess risks arising from climate change policy, legislation and regulation, innovations in the market and weather events. Our strategic planning process and risk management processes together are used to identify, assess and respond to climate-related risks and opportunities. Our corporate strategic planning leverages market intelligence regarding climate change derived from a variety of sources to provide an overall business impact analysis regarding our concentration of risk as well as identify opportunities. For example, our awareness of client-based commitments to reduce greenhouse gas (GHG) emissions (i.e., transition related opportunities) influences Citrix’s R&D investment strategy towards products that optimize IT practices and curb employee commuting thereby reducing clients’ carbon footprints. Market intelligence regarding climate change is obtained from a variety of sources to provide an overall business impact analysis regarding our concentration of risk.

Citrix conducts  recovery scenarios where specific steps are drafted for every business continuity plan to methodically recover the most critical processes while considering the most likely risks to where they operate (i.e., storms in south FL, fires in southern CA). We also implement geographical risk assessments, an ongoing process to analyze Citrix physical sites to determine the likelihood and impact of a range of threats (i.e., inclement weather).  Risk assessments are conducted at least annually and adapted to new or less controlled categories of risk over time.24

Describe the organization’s processes for managing climate-related risks.

The ERM program monitors various types of risk—including those driven by climate change—across many lines of insurance coverage and will propose insurance solutions or products based on our industry, size and business model in order to assess the probability and magnitude of substantive financial impacts and strategic impacts due to climate risks. The company-wide initiative, with the oversight of the Audit Committee of the Board of Directors, represents an integrated effort to (1) identify, assess, prioritize and monitor a broad range of risks – including those driven by climate change and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. For example, our risk model considers potential climate-driven physical risks to our global locations and business continuity that may occur due to extreme weather events driven by climate change such as hurricanes, floods, cyclones, etc. Citrix’s global property insurance program mitigates these identified climate-driven risks with insurance products targeted to identify, assess and respond to both Physical risks and Transitional risks at the facility-level. Coverage and portfolio risk profiles are assessed more than once per year.

Climate Risk Mitigation TBD
Form 10-K

Describe how processes for identifying, assessing, and managing climate-related risks are integrated into the organization’s overall risk management.

The ERM program process is a company-wide initiative that, with the oversight of the Audit Committee, represents an integrated effort to (1) identify, assess, prioritize and monitor a broad range of risks—including those driven by climate change—and (2) formulate and execute plans to monitor and, to the extent possible, mitigate the effect of those risks. The Chief Financial Officer (CFO) has oversight of the results of both our corporate strategic planning and risk management processes. The combined findings of these processes provide a view of Citrix’s climate-related risks and opportunities.

24 Business Continuity email: Michael Allman 6/10

Citrix is part of a global business community that supports the UN SDGs, a set of 17 goals established by the UN General Assembly in 2015 to achieve a better and more sustainable future for all by 2030. Our sustainability strategy and approach are aligned with SDGs 2, 5, 8, 10, 13, 15 and 17. To learn more about how we support the global communities in which we live and work, visit our Corporate Social Responsibility Report at Citrix: 2021 Year in Review report.

  • We engaged in partnerships with Feeding America, the Global Foodbanking Network and the World Food Programme, providing more than 4 million meals to those in need around the world.25
  • Our COVID-19 Relief and Recovery program focused on nourishing bodies and minds by providing basic needs such as food and shelter. We set up a special employee relief campaign during India’s 2nd deadly wave of the virus, providing those in need with funding for vaccinations and oxygen cylinders, and protective equipment. We also supported nonprofits focused on hunger such as the Interfaith Food Bank of Raleigh, NC.
  • We are committed to gender and underrepresented minority pay equity and are working to bridge the pay equity gap within Citrix.
  • Citrix has increased the number of female executives by growing the diversity of our external networks and conducting targeted outreach for key positions.26
  • We engage an independent pay equity study firm on an annual basis prior to compensation planning, to monitor, identify root causes and consider appropriate remediation as needed. See our Improving Gender Diversity at Citrix: Our 2021 Gender Pay Gap Results.
  • Our technology solutions help address economic inequities by providing employers across every sector with the tools to expand recruiting and retention efforts across the world, and to provide improved availability of quality employment.
  • We broaden economic opportunity by enabling a hybrid work model that increases employment opportunities across urban, suburban and rural locations, including in developing regions.
  • Our Employee Resource Groups (ERGs) support underrepresented groups of Citrix employees through career development, networking and mentoring opportunities. We also provide a variety of educational resources and training to help our employees thrive and ensure a future-ready workforce that can meet the needs of the modern working world.
  • We support students and youth through digital learning and training, helping them to prepare for careers in tech.27
  • We partner with INROADS, to promote talent diversity and enable up to 10 Citrix interns to participate in scholarships and leadership development training.

See the Product Innovation TBD section of this report for more information on how we are creating economic opportunities for our customers and their employees.

  • Our enhanced Diversity, Inclusion and Belonging (DIB) strategy aims to create a work environment where Citrites can bring their whole selves to work.
  • We maintained our Racial Equity Strategy and Racial Equity Working Group.
  • We support individuals from underrepresented communities through our community investments.28
  • We increased our diverse supplier spend to $45 million, surpassing our 2021 goal of $32 million.
  • We continued implementing our Daring Dialogues learning series.
  • Our Employee Resource Groups (ERGs) support underrepresented groups of employees within Citrix, including Citrix Asian Professionals, Enabled, Emerge, and Parents and Caregivers.

See the Social Equity TBD section of this report for more information on our efforts to reduce inequalities inside and outside of Citrix.
 

  • We continue to deploy Citrix Workspace technology that enables customers to have distributed location work models, and help to dramatically decrease transportation-related (including air and commuter travel) as well as computing-related GHG emissions.
  • We initiated targets to reduce our total absolute GHG emissions by 30% and our emissions per unit of revenue by 50% by 2030.
  • We sourced 100% of electricity consumption from renewable energy at our co-located data centers in Santa Clara and Doral, and 69% of energy consumption at our India operations from renewable sources.

See the Environmental Impact TBD section of this report, our 2021 CDP Climate Change disclosure and the TCFD Index for more information on our climate actions.

  • Our solutions continue to enable distributed location work models so that our customers can reduce the physical office space needed to operate their business. As customers decreased the amount of square footage occupied during the pandemic, this translated to a drop in building-related natural resource consumption.
  • Similarly, Citrix transitioned to a majority off-premise workforce, reducing our real estate portfolio significantly and thus reducing our energy and water consumption and waste output. We are currently working to identify, measure and monitor the environmental impact of our real estate portfolio.

See the Sustainable Design TBD section of this report for more information on how we are working to mitigate the impact of our real estate portfolio and operations on the natural environment.

  • Realizing the UN SDGs 2030 Agenda requires a collaborative, global approach, we engaged in several partnerships to accelerate our progress against the interconnected 17 SDGs and 169 associated targets, including the UN Global Compact, the Science Based Targets initiative and the CDP Supply Chain program. Citrix is also a supporting member of the Confederation of British Industry (CBI) in the UK due to its involvement in COP26 and its Race to Zero campaign.

25 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf
26 https://www.citrix.com/about/diversity-inclusion/
27 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf
28 https://www.citrix.com/content/dam/citrix/en_us/documents/about/final-csre-book-citrix-year-in-review-2021.pdf