Free Word download β’ Edit online β’ Save & share with Drive β’ Export to PDF
An ESG Policy is a formal governing document that defines a company's commitments and management approach across three pillars: Environmental (greenhouse gas emissions, energy consumption, water use, and waste), Social (labor practices, human rights, diversity and inclusion, and community impact), and Governance (board oversight, anti-corruption controls, ethics, and disclosure practices). It establishes the specific targets, KPIs, and reporting cadence that translate high-level commitments into accountable, measurable performance. Unlike a sustainability report β which looks backward at results β an ESG policy sets the forward-looking framework against which future performance will be judged and disclosed.
Investor and regulatory pressure on ESG has shifted from optional to expected in a short period. Institutional investors now routinely require an ESG policy before finalizing a term sheet; lenders offering sustainability-linked financing attach ESG covenants that presuppose a governing policy exists; and enterprise customers in financial services, healthcare, and consumer goods embed ESG questionnaires into vendor qualification processes that stall procurement without documented commitments. On the regulatory side, the EU CSRD mandates formal sustainability reporting for large companies from 2025, with listed SMEs following from 2026 β and the SEC's climate disclosure rules apply additional pressure for US-listed entities. Without a policy, you have no governance framework to underpin any of these disclosures, no accountability structure to point to in due diligence, and no baseline from which to demonstrate progress. This template gives you the structure to build a credible, board-approvable ESG policy without starting from a blank page.
| If your situation is⦠| Use this template |
|---|---|
| Establishing a standalone environmental commitment focused on carbon reduction | Environmental Policy |
| Documenting labor standards and workplace safety commitments | Workplace Health and Safety Policy |
| Addressing anti-corruption and ethical conduct across the organization | Code of Ethics and Business Conduct |
| Reporting ESG metrics to investors and stakeholders annually | Annual Report |
| Communicating ESG commitments in a supplier onboarding context | Supplier Code of Conduct |
| Presenting ESG strategy to a board or audit committee | Board Meeting Agenda |
| Embedding ESG criteria into the corporate strategic plan | Strategic Plan |
Why it matters: Policies that promise to 'reduce environmental impact' without a number or deadline are unverifiable and routinely flagged as greenwashing by ESG rating agencies and regulators.
Fix: Attach a specific percentage, absolute value, and baseline year to every commitment β and identify the KPI that will track progress.
Why it matters: Institutional investors and rating firms explicitly check whether ESG oversight sits at board level. A policy owned only by middle management scores poorly on governance criteria and raises red flags in due diligence.
Fix: Name the specific board committee and executive title responsible for ESG, and state the frequency of board-level ESG reviews.
Why it matters: For most companies, Scope 3 represents the majority of total GHG impact. Omitting it from the policy signals incomplete climate analysis to investors and fails CSRD and TCFD expectations.
Fix: Commit to a Scope 3 inventory by a specific date, even if the target-setting is deferred β acknowledging the gap is better than ignoring it.
Why it matters: Committing to CSRD or full GRI compliance without the data infrastructure to support it creates a public compliance gap when the first report is due β damaging credibility more than no commitment at all.
Fix: Audit your current data collection capabilities before naming a framework. Commit to what you can deliver in Year 1 and build toward broader disclosure in subsequent years.
Why it matters: A policy that is never updated quickly diverges from the company's actual practices, creating inconsistency between stated commitments and disclosed performance.
Fix: Establish a formal annual review process with a named owner, and record the review date and any changes in the document version history.
Why it matters: The most significant human rights and labor risks for most companies sit in their supply chains, not direct operations. A policy that covers only employees misses the issues most likely to generate regulatory scrutiny or reputational harm.
Fix: Add a supply chain section to the social pillar committing to supplier code-of-conduct requirements, audit procedures, and escalation steps for identified violations.
Identify every legal entity, geography, and operational site to which the policy applies. Note any subsidiaries or joint ventures that are excluded and explain why.
π‘ If a subsidiary operates in a jurisdiction with its own mandatory sustainability disclosure rules, note that separately β the parent policy does not substitute for local compliance.
Survey investors, customers, employees, and suppliers to identify which ESG topics are most significant to the business. Map findings to the three pillars before setting any targets.
π‘ Use the GRI Materiality Matters database or your industry's SASB Standard as a starting shortlist to focus stakeholder conversations.
Replace vague commitments with measurable targets anchored to a baseline year. For example, '40% reduction in Scope 1 and 2 emissions by 2030 vs. 2023 baseline' rather than 'reduce our carbon footprint.'
π‘ Align targets to at least one external reference β Science Based Targets initiative (SBTi) for climate, or UN SDGs for social goals β to give them third-party credibility.
Name the board committee responsible for ESG oversight and the executive title accountable for delivery. Define how often ESG performance is reviewed at each level.
π‘ Embedding ESG metrics in executive compensation β even at 5β10% of bonus weighting β signals genuine accountability to investors and shareholder advisory firms.
Choose 3β5 KPIs per pillar, define the measurement methodology for each, and confirm you can collect the data reliably before committing to disclose it.
π‘ Start with KPIs that appear on common investor questionnaires β MSCI, Sustainalytics, and CDP scoring criteria are publicly available and tell you exactly what institutional investors track.
Select the framework(s) your primary audience requires β GRI for general stakeholders, TCFD for climate-focused investors, CSRD for EU-regulated entities, SASB for US sector-specific metrics β and commit to a fixed annual publication date.
π‘ If you are new to ESG reporting, start with a GRI-referenced report and layer TCFD disclosures in year two rather than attempting full multi-framework compliance in the first report.
Present the finalized policy to the board committee with ESG oversight for formal approval. Record the approval date and signatories in the document header.
π‘ A policy signed only by the sustainability team carries far less weight with investors and rating agencies than one approved at board level β the approval tier is visible in due diligence.
Set a calendar reminder 60 days before the review date to begin collecting updated KPI data, reviewing framework changes, and surveying stakeholders. Policy reviews that slip signal weak governance.
π‘ Tie the ESG policy review to the annual report production cycle so data collection, narrative writing, and policy updates happen in a single coordinated workflow.
An ESG policy is a formal governing document that defines a company's commitments and management approach across three pillars: Environmental (climate, energy, water, waste), Social (labor practices, human rights, diversity, community), and Governance (board structure, ethics, anti-corruption, disclosure). It establishes the targets, KPIs, and reporting cadence that translate high-level commitments into accountable performance. Unlike a sustainability report, which looks backward at results, an ESG policy sets the forward-looking framework.
Any company seeking institutional investment, applying for green or sustainability-linked financing, responding to enterprise customer procurement questionnaires, or subject to mandatory disclosure rules such as the EU CSRD needs a formal ESG policy. Mid-market companies are increasingly asked for ESG documentation by large customers in regulated industries β financial services, healthcare, and consumer goods in particular β as part of vendor qualification.
An ESG policy is a governing document that states commitments, targets, and accountability structures β it is forward-looking and normative. A sustainability report is a periodic disclosure of actual performance against those commitments β it is backward-looking and factual. You need the policy first; the report operationalizes it annually. Investors and auditors review both together to assess whether stated commitments translate into real performance.
The most widely used frameworks are GRI Standards (general stakeholder disclosure), TCFD (climate risk for investors), SASB (industry-specific metrics for US capital markets), and CSRD/ESRS (mandatory for EU-regulated entities). Most companies align to GRI as a baseline and layer TCFD for investor audiences. If you operate in or sell to the EU, CSRD compliance is mandatory for large companies from 2025 and for listed SMEs from 2026.
No law universally mandates board sign-off, but institutional investors, ESG rating agencies, and CSRD auditors all assess whether ESG oversight sits at board level. A policy approved only by management is routinely scored lower on governance criteria. Best practice is formal approval by a board-level committee β typically the audit, risk, or a dedicated ESG committee β with the approval date recorded in the document.
Double materiality, introduced by the EU CSRD, requires companies to assess ESG issues from two directions: how they affect the company financially (financial materiality) and how the company's activities affect people and the environment (impact materiality). If your company is subject to CSRD, your policy must reflect both dimensions in the materiality assessment section. Companies not subject to CSRD still benefit from the framework as it aligns with what institutional investors increasingly expect.
Annual review is the standard expectation. The review should check whether targets remain appropriate given changes in the business, supply chain, and regulatory environment, and whether disclosed KPIs reflect the metrics most material to current stakeholders. The review date and version number should be recorded in the document header. A policy that has not been updated in more than 18 months raises governance concerns in investor due diligence.
Yes. A structured template handles the framework and section logic, leaving you to fill in company-specific targets, KPIs, and governance assignments. Small businesses typically start with a lean policy covering the most material issues β often carbon, labor practices, and board ethics β and expand scope as reporting matures. For companies not yet subject to mandatory disclosure, a well-structured policy template is sufficient without external consultant involvement.
A code of ethics governs individual employee conduct β conflicts of interest, gifts, confidentiality, and ethical decision-making. An ESG policy governs the company's collective commitments to environmental, social, and governance performance. The governance pillar of an ESG policy incorporates and references the code of ethics but goes further to cover board oversight, anti-corruption controls, disclosure practices, and stakeholder accountability. Both documents should exist and cross-reference each other.
A code of ethics governs individual employee conduct β conflicts of interest, gift policies, and ethical decision-making. An ESG policy governs the company's collective commitments to environmental, social, and governance performance. The governance pillar of an ESG policy incorporates and references the code of ethics, but the two documents serve different audiences and purposes and should both exist.
An environmental policy covers only the E pillar β emissions, energy, water, waste, and biodiversity. An ESG policy integrates all three pillars into a single governing framework with unified governance oversight and reporting. Companies that already have a standalone environmental policy typically retain it and reference it within the broader ESG policy rather than replacing it.
An annual report discloses historical financial and operational performance to shareholders. An ESG policy is a forward-looking governing document setting commitments and targets. ESG disclosures are increasingly incorporated into annual reports, but the policy itself is a separate reference document that auditors and investors cross-check against reported performance.
A strategic plan covers the full business β growth strategy, competitive positioning, financial goals, and resource allocation. An ESG policy is a narrower document focused exclusively on environmental, social, and governance commitments. The two should be aligned: ESG targets belong in the strategic plan as a standing workstream, with the ESG policy providing the governance framework behind them.
Regulatory pressure from SFDR, TCFD, and SEC climate rules means ESG policies in financial services must address portfolio-level emissions exposure and governance of ESG investment claims.
High Scope 1 and 3 emissions exposure, supply chain labor risks, and waste management make the environmental and social pillars the primary focus, with targets tied to energy intensity per unit produced.
Data center energy consumption and Scope 2 emissions dominate the environmental pillar, while data privacy governance and algorithmic bias sit under the social and governance pillars.
Supply chain human rights due diligence, packaging and plastic reduction targets, and product lifecycle impact are the material issues most scrutinized by customers and regulators.
Medical waste management, equitable access commitments, and clinical trial diversity targets characterize the environmental and social pillars, alongside strict governance requirements for data privacy.
Business travel emissions, workforce diversity and pay equity, and client ESG advisory conflicts of interest are the most material topics, with governance integrity paramount to client trust.
| Path | Best for | Cost | Time |
|---|---|---|---|
| Use the template | SMEs and growth-stage companies needing a credible ESG policy for investor or customer requests | Free | 1β2 weeks (including internal data gathering) |
| Template + professional review | Companies preparing for first ESG disclosure or responding to CSRD or SEC climate rule obligations | $1,000β$5,000 for a sustainability consultant review | 3β5 weeks |
| Custom drafted | Large enterprises subject to mandatory CSRD reporting, listed companies with formal ESG ratings, or businesses in regulated sectors | $10,000β$50,000+ for full ESG framework development | 2β6 months |
This document is one of 3,000+ business & legal templates included in Business in a Box.
Access over 3,000+ business and legal templates for any business task, project or initiative.
Customize your ready-made business document template and save it in the cloud.
Share your files and folders with your team. Create a space of seamless collaboration.
"Fantastic value! I'm not sure how I'd do without it. It's worth its weight in gold and paid back for itself many times."
"I have been using Business in a Box for years. It has been the most useful source of templates I have encountered. I recommend it to anyone."
"It has been a life saver so many times I have lost count. Business in a Box has saved me so much time and as you know, time is money."
Stop downloading documents. Start operating with clarity. Business in a Box gives you the Business Operating System used by over 250,000 companies worldwide to structure, run, and grow their business.
Start freeΒ Β·Β No credit card required
