Governance

Sustainability at Citrix goes beyond the inherent environmental and social benefits that our products enable.

Sustainability and business strategy

Our business strategy is informed by our key stakeholders—including our employees—to ensure that ESG factors influence how we operate. In July 2020, more than 3,000 Citrix employees (approximately 35 percent of our workforce) responded to a company-wide sustainability survey. Respondents overwhelmingly support Citrix’s efforts to actively pursue improving environmental, social and governance-related impact. Ninety percent of respondents agreed that working for an environmentally responsible company is important to them.

We view these results as a mandate to further our strong commitment to sustainability throughout the company.

Citrix employee sustainability survey

Selected results, July 2020

90%

working for an environmentally responsible company is important to me.

86%

feel that working for a company with a social purpose is important.

82%

would like to be informed of environmental and social projects within Citrix, and information on how to get involved.

85%

believe commitment by Citrix senior leadership to environmental and social issues strengthens their opinion of the company.

Stakeholder engagement

Our executives regularly engage with stakeholders to better understand their perspectives on a wide range of strategy, business and governance issues. Our Board of Directors and senior management team welcomes and values the views and insights of our shareholders and conducts an annual outreach effort to connect with large shareholders to ensure open lines of communication.

Our goal:

To use feedback received during these meetings to inform our policies and practices. Over the course of the year, we held shareholder engagement meetings with institutional investors representing over 32% of Citrix outstanding common stock, as well as proxy advisory firms.

As in past years, in 2019, we reached out to our largest shareholders to understand their perspectives and discuss our business strategy, governance, corporate sustainability and executive compensation practices. Our goal: to use feedback received during these meetings to inform our policies and practices. Over the course of the year, we held shareholder engagement meetings with institutional investors representing over 32 percent of Citrix’s outstanding common stock.

These shareholder meetings covered a wide range of topics, including: our business model transition and strategy; corporate governance practices such as board composition; our diversity and inclusion programs; cybersecurity and data privacy; succession planning; shareholder views regarding equity plan preferences and administration; and other matters of shareholder interest.

Materiality

In 2020, with the help of an external partner, we engaged in a full materiality assessment to help identify, assess and prioritize the relevant Environmental, Social and Governance (ESG) risks and opportunities that are most important to our stakeholders and Citrix’s business overall. The process considered major frameworks, including the Global Reporting Initiative (GRI) and the Sustainability Accounting Standards Board (SASB). This

assessment, which is designed to help inform our ESG strategy, targets and reporting, resulted in the following core areas of focus:

Material topics

Governance of sustainability

Our Nominating and Corporate Governance Committee of the Board of Directors oversees our Sustainability efforts. This committee monitors Environmental, Social, and Governance-related activities and progress. It oversees the processes management follows to integrate sustainability considerations into planning and

decision-making and how progress is measured. It also provides oversight to how environmental and social factors may impact longer-term strategic objectives and planning. In conjunction with the Compensation Committee, it reviews how the team is incentivized to set and achieve new climate and diversity goals.

The Audit Committee of the Board of Directors oversees our Enterprise Risk Management (ERM) program and Citrix’s global risk management framework. Our ERM program includes identifying risks, including climate-related risks. As part of its oversight function, the Audit Committee regularly reviews the compliance policies and processes by which our exposure to certain significant areas of risk—including climate-related risk—is assessed and managed.

The Audit Committee of the Board of Directors of Citrix

Director Audit
Compensation Governance Technology
Nanci E. Caldwell - Chair -
Robert D. Daleo - -
Murray J. Demo Chair - - -
Ajel S. Gopal - -
Thomas E. Hogan - -
Moira Kilcoyne - - - Chair
Peter J. Sacripanti - Chair -
JD Sherman - - -

COVID-19 and business continuity

When it comes to risk management—from regional disturbances created by severe weather patterns to global pandemics—our solutions can help our customers’ employees maintain productivity and business continuity, regardless of where they are working.

That became increasingly clear as COVID-19 (coronavirus) impacted people and organizations around the world. At Citrix, the health and safety of our employees, customers, partners and communities remains our top priority. We are committed to maintaining our operations and supporting our customers to ensure safe, secure and uninterrupted operations throughout this global crisis.

In this time of crisis, the mission critical value of our solutions has become apparent.

COVID-19 has stressed every facet of business, society and our institutions. In this time of crisis, the mission-critical value of our solutions has become apparent. As quarantines started in the spring of 2020, our teams, utilizing our solutions, worked around the clock to enable customers to expand access to our technology and

manage their businesses during this challenging time. We are proud to have helped customers around the world, including many providers of essential services, transition to accommodate social distancing guidelines, remote work and other measures recommended to reduce the rate of transmission of the virus.

Through this crisis, we have helped customers deploy our technology to enable workers in some of the most critical areas—in hospitals to support the surge in usage, in universities so they can continue to educate online, in global financial institutions to continue to support the broader economy, and in governments to help lawmakers guide their constituents.

Data security and privacy

Responsibly adopting advanced technologies requires a critical eye on cybersecurity and data privacy. Because we design our products around centralized delivery, visibility, and control of apps and data, security is built into the core of our solutions and practices.

Vulnerability response: At Citrix, we’re committed to keeping our products and customers secure. Citrix strives to follow industry standards during all phases of the Secure Development Lifecycle (SDLC). As part of its SDLC program, we have a robust Security Response Process that accepts vulnerability reports against Citrix products and services from external sources—customers and researchers alike.

Privacy and compliance: For over 30 years, our customers have trusted our ability to handle their data with care and respect. That’s why organizations in the most highly regulated sectors rely on us to protect their most sensitive information wherever work happens.

Visit the Citrix Trust Center for the latest information on our approach to security, vulnerability response, and privacy and compliance.

Ethics and values

We are committed to upholding the highest principles of business ethics and corporate governance. Our business enables flexible workstyles while honoring our responsibilities to customers, employees, partners, shareholders and the environment and communities in which we live and work. Our Board of Directors and its committees administer all aspects of our corporate governance. In doing so, they promote responsible and ethical decision-making and provide independent and objective oversight as we pursue our goals. We are guided by our Citrix Values and our Code of Business Conduct, which sets the standards of conduct for Citrix employees. This important document articulates our values and serves as a foundation for Citrix policies and practices. All of Citrix must act with integrity and be responsible for complying with this Code, Citrix policies and all applicable laws and regulations.

Code of Business Conduct

The Code of Business Conduct provides guidelines to employees on their ethical and legal responsibilities.

Read now