Transparency Act

1. Introduction

Netsecurity AS is a Norwegian company owned by the Å Energi Group and its employees. This account constitutes the company’s public reporting under the Transparency Act for 2024. The Transparency Act shall promote enterprises’ respect for fundamental human rights and decent working conditions, and ensure public access to information about this work.

2. Business and organization

Netsecurity AS provides expertise, solutions and services within IT and cybersecurity. We assist organizations in preventing, detecting and handling digital threats. Netsecurity has approx. 160 employees in Norway and Sweden and around 700 customers throughout the Nordic region, in both the public and private sectors. The company had revenue of approx. NOK 800 million, had a total of approx. 400 suppliers and business partners, of which 2 manufacturers and 2 distributors account for a significant share of goods purchases.

3. Guidelines and procedures

Netsecurity follows the group’s guidelines and policies for human rights and decent working conditions:

• Ethical guidelines for employees and suppliers were adopted in 2024, and apply to all employees, contractors, and partners.
• Eco-Lighthouse certification has been maintained, and includes requirements for the working environment, health, safety, and social responsibility.
• Our suppliers shall support and respect international human rights and follow the ILO’s core conventions
• We have internal and external whistleblowing channels that ensure anonymity and protection against retaliation.
  

4. Due diligence assessments and risk

As an IT security company, we use a supply chain characterized by both Norwegian and international actors, with a focus on:

• Services and licenses from national and international suppliers
• Hardware originating from manufacturers that may also have sub-suppliers in China

 

This structure entails an inherent risk of breaches of human rights and decent working conditions in lower tiers of the supply chain, particularly related to the production of hardware. We manage this risk by:

• Selecting only certified suppliers that themselves report on corporate social responsibility

• Obtaining documentation of the supplier’s policy and compliance
• Assessing risk in connection with contract entries, including the use of risk registers and public information

5. Measures implemented in 2024

During 2024, we have:

• Carried out work to map suppliers
• Conducted due diligence assessments as part of the group’s overall assessments
• Updated guidelines to ensure audit access and compliance with ethical guidelines

 

6. The way forward in 2025

For 2025, Netsecurity plans to:

• Revise ethical guidelines for suppliers and business partners
• Continue the mapping and risk assessment of the supplier portfolio
• Improve purchasing procedures and establish a joint registration process for suppliers
• Follow up suppliers with relevant audits and reporting requirements
• Contribute to the group’s work on coordination of the Transparency Act and CSRD (sustainability reporting)
• Conversion of environmental certification from Eco-Lighthouse to ISO14001

7. Access to information and communication

Everyone has the right to information about how Netsecurity handles actual and potential adverse impacts on human rights and working conditions in accordance with section 6 of the Transparency Act. Inquiries can be directed to us via the website, and will normally be answered within three weeks.

The due diligence assessments are presented to Netsecurity’s management team, together with guidance from the companies’ owner and risk-reducing measures. Binding text on publication of the account in accordance with the requirements of the Transparency Act is part of the board’s annual report. The account is published on Netsecurity’s website.

Read also https://www.aenergi.no/no/rett-til-informasjon-ifolge-apenhetsloven