Annual Report 2015


Sustainability at Posti

Sustainability has been a cornerstone of Posti’s operations for nearly 400 years, since the early days of postal operations. Since then, our business operations and their geographical coverage have been significantly expanded. Our commitment to responsibility has become even more important – it is part of our strategy, it is based on our shared values, and our customers also expect it from us to an increasing extent.

Posti announced its new strategy in the summer, with the primary objectives of renewing Posti to make it a customer-oriented, first-class service company and pursuing profitable growth in new services. For this reason, we also updated our material sustainability aspects and targets for the coming years. The materiality analysis consisted of an information collection stage based on interviews with key individuals, stakeholder perspectives, and an analysis of the megatrends and peer companies. Based on the results of this work, the corporate responsibility steering group updated Posti’s material sustainability aspects in a workshop, the results of which were validated by the Management Board.

We divide our sustainability into four areas: responsible service provider, sustainable business, creating value for stakeholders, and engaged multi-skilled employees. The figure below describes the content of each area in more detail.


The four areas of sustainability


Management of sustainability

Sustainability is part of our daily work and management. At Posti, management is based on our values: succeeding together with the customer, driving for improvement and innovation, taking responsibility, and winning together. Good management supports the achievement of these targets and fosters a positive work atmosphere.

Posti is committed to operating in a responsible and ethical manner. Posti’s way of working is documented in more detail for personnel in the company’s Code of Conduct. The Code of Conduct covers compliance with laws and regulations, good business practices, non-discrimination and equality, conflicts of interest, ethical commercial practices, and environmental responsibility. The Code of Conduct also specifies the anonymous whistleblowing channels established by the Group for employees to confidentially report suspected cases of misconduct or other problems. In accordance with the principles of the UN Global Compact, we are also committed to promoting employees’ rights, environmental protection, anti-corruption work, and human rights. We require our suppliers to make the same commitments.

Sustainability is the responsibility of our Vice President of Stakeholder Relations, who is a member of the Management Board. Sustainability issues are discussed by the Board of Directors' Audit Committee and the Group's Management Board at least once a year. During the review period, we updated our sustainability action plan for 2016–2018. The indicators and targets are described in the table below.


Indicators and targets of sustainability



Management of sustainability risks

We update our sustainability risks twice a year as part of our comprehensive risk management process, and they are reported as a separate item in the Group’s risk report. The risk report is processed by the Posti Group Board of Directors and its Audit Committee, the Group’s Executive Board, and corporate responsibility steering group.

Sustainability risks include, for example:

  • outsourcing measures related to potential personnel arrangements that can have a negative effect on our reputation and, consequently, cause us to lose customers;
  • potential information leaks and information security deviations, particularly those related to personal information;
  • possible accidents that cause extensive damage to the environment.

Compliance risks include, for example, corruption as well as risks related supplier management and the failure of internal control. These are particularly important in Russia, Poland and the Baltic countries.

We process all information in strict confidence, taking information security issues into account. Our corporate security policy determines the minimum level for all of our countries of operation. Exceeding legal requirements, our policy is based on international standards (SoGP, ISO/IEC 27001 and TAPA), which determine our targets, responsibilities, and implementation methods in information security management.

Our policy takes into account the information security requirements of our customers, the business environment, and risk management. In terms of protection, we see as particularly important customer and personnel information as well as our and our partners’ confidential information and the related systems and business processes.

Our risk management unit prepares information security guidelines and supports the management in implementing them. In all of our Group companies, the management is responsible for implementing our corporate security policy as part of their daily work.