Supply chain sustainability: how governance structures determine whether ESG commitments reach your suppliers
Most ESG commitments stop at the factory gate. Research by Formentini & Taticchi shows that governance structures determine whether sustainability actually travels through supply chains.
Supply chain sustainability: how governance structures determine whether ESG commitments reach your suppliers
Your sustainability report says your company is committed to responsible supply chain practices. Your supplier code of conduct covers labour standards, environmental management, and anti-corruption. You've even sent an ESG questionnaire to your top 20 suppliers.
And yet, when an NGO publishes a report about conditions in your tier-2 supplier network, you discover that 60% of your actual supply chain has never been audited, assessed, or even identified.
This is not a documentation failure. It is a governance failure — and research by Marco Formentini and Paolo Taticchi, published in the Journal of Cleaner Production, identifies exactly why it happens and what governance structures actually make supply chain sustainability work.
Key Takeaways
- Formentini & Taticchi (2015) documented that supply chain sustainability fails not because of lack of commitment, but because of inadequate governance structures — the mechanisms that translate commitments into actual supplier behavior.
- Four governance approaches work differently: market governance (price-based), modular governance (standards-based), relational governance (trust-based), and captive/hierarchy governance (control-based).
- The research found that relational governance — built on long-term relationships, shared objectives, and collaborative problem-solving — generates the most durable supply chain sustainability outcomes.
- CS3D and CSRD value chain requirements are creating regulatory pressure that forces companies to upgrade their supply chain governance — making informal supplier relationships legally inadequate.
- The Sustainability Pulse Supplier ESG Risk Scan identifies which of your suppliers represent your highest regulatory and reputational exposure — the starting point for governance redesign.
The governance gap: why ESG commitments don't reach suppliers
Formentini and Taticchi documented a fundamental gap in how most companies approach supply chain sustainability: they establish sustainability policies without building the governance mechanisms that would make those policies effective throughout the supply network.
A supplier code of conduct is a policy. It establishes what behavior is expected. But it does not, by itself, create any mechanism through which the company can verify compliance, support capability development, or respond to violations without terminating the relationship. A code of conduct without governance is aspirational documentation.
The research identified that companies with the most effective supply chain sustainability programs share a common characteristic: they have designed explicit governance structures that determine how the company interacts with suppliers on sustainability issues — not just what they expect.
Four supply chain governance approaches — and their sustainability effectiveness
The Formentini & Taticchi framework identifies four governance approaches in supply chain relationships, drawing on transaction cost economics and supply chain management theory:
Market governance. Relationships governed primarily by price and contract terms. Suppliers are selected, retained, or replaced based on cost competitiveness. Sustainability requirements appear as contract clauses, but the primary governance mechanism is market exit — non-compliant suppliers lose the contract.
Sustainability effectiveness: Low for complex sustainability issues. Market governance works for simple, verifiable requirements (specific certifications, measurable standards) but fails for systemic issues like living wages, community impacts, or long-term environmental management — where improvement requires investment, capability building, and time.
Modular governance. Relationships structured around detailed specifications and standards. Suppliers are expected to be self-managing within defined parameters — typically verified through third-party audits.
Sustainability effectiveness: Medium. Audit-based governance creates accountability but tends to be point-in-time, gameable (suppliers learn to pass audits without systemic change), and slow to detect dynamic risks. The IKEA IWAY program is a well-documented example of sophisticated modular governance that goes beyond audits to include capability building.
Relational governance. Long-term relationships built on trust, shared objectives, and mutual investment. The buying company co-develops sustainability improvements with suppliers, shares risks and investments, and engages in collaborative problem-solving rather than compliance enforcement.
Sustainability effectiveness: High — and most durable. Relational governance addresses systemic sustainability challenges because it aligns the incentives of buyer and supplier around shared outcomes. When a supplier knows the relationship is long-term and that the buyer will support improvement rather than simply terminate non-compliant relationships, they invest in genuine rather than performative compliance.
Captive/hierarchy governance. The buying company exercises direct control over supplier operations — through equity stake, exclusive relationships, or full integration. The buyer has the ability to mandate and monitor sustainability practices directly.
Sustainability effectiveness: High within the controlled network, but limited in scale — few companies can extend captive governance throughout a complex supply network.
The research finding is clear: companies that rely primarily on market and modular governance for supply chain sustainability achieve compliance theater — documented policies and audit results that don't reflect actual supply chain conditions. Companies that build relational governance develop genuine supply chain sustainability capacity.
What good supply chain ESG governance looks like in practice
The most effective supply chain sustainability programs share five structural characteristics:
Tiered supplier engagement. Not all suppliers are equal. Tier-1 direct suppliers require more intensive governance than tier-2 and tier-3 suppliers. The first step is mapping the supply network — identifying who the suppliers are, what their risk profile is, and what governance approach is appropriate for each tier.
Differentiated risk assessment. The Supplier ESG Risk Scan goes beyond documenting whether suppliers have signed a code of conduct. It assesses the actual risk profile: industry sector, geographic location, workforce size and composition, environmental footprint, and prior compliance history.
Capability development investment. The shift from compliance enforcement to capability development is the defining characteristic of relational governance. Leading companies — like IKEA with its IWAY program — invest in training, technical assistance, and shared resources that help suppliers improve, rather than simply penalizing those that don't comply.
Joint KPI development. When buyer and supplier co-develop the sustainability KPIs they will track together, both parties have stronger incentives to invest in genuine improvement. Unilaterally imposed KPIs tend to generate gaming; jointly developed KPIs generate collaboration.
Escalation protocols. Effective governance defines what happens when issues are identified — not just binary "comply or lose the contract," but graduated responses that allow for remediation, supported improvement, and escalation to termination only for unresolvable violations.
The regulatory push: CS3D and CSRD value chain requirements
The new European regulatory context is forcing companies to formalize their supply chain governance — because informal supplier relationships are no longer legally adequate for companies subject to CS3D.
The Corporate Sustainability Due Diligence Directive requires companies to identify, prevent, and remediate adverse human rights and environmental impacts in their value chains. This is not achievable with a code of conduct and an annual audit. It requires systematic supply chain mapping, ongoing due diligence processes, remediation mechanisms, and reporting on outcomes — exactly the governance structures that Formentini & Taticchi found to be effective.
The Supplier ESG Risk Scan in the Sustainability Pulse is the starting point: identifying which suppliers represent your highest regulatory and reputational exposure — so that governance redesign effort is concentrated where it matters most.
Three tiers of supply chain governance at Sustek.co
Sustainability Pulse — Audit your current state and potential (Annual, from $2,500/yr)
For companies that need to know where they really stand. We map your supplier network and identify your highest-risk relationships before regulatory pressure or a supply chain incident forces the issue.
- Circular Economy Potential Audit · ESG Maturity Assessment · Supplier ESG Risk Scan · Regulatory Baseline Map · ☁️ Cloud ESG Data Pipeline
Sustainability Navigator — Redesign your strategy for high impact (Semi-annual, from $4,500/engagement)
We design the governance architecture — the Stakeholder Network Data App that connects up to 10 nodes across your value chain — and the ESG Framework Alignment that ensures your supply chain governance meets the requirements of CSRD, CS3D, GRI, and your specific customer requirements.
- Circular Business Model Redesign · 4IR Technology Roadmap · Stakeholder Network Data App · Board-Ready Transformation Blueprint · ESG Framework Alignment · 📊 Sustrategize™ Baseline
Sustainability Command — Managed transformation for market leadership (Quarterly, from $1,500/mo)
We manage the supply chain ESG program continuously — with real-time data from the supplier network feeding into executive dashboards and quarterly impact reports.
- End-to-End Implementation · 🤖 Sustrategize™ Powered Transformation (Power BI) · Iconet® Expert Network · Real-Time SROI Measurement · Full ESG Data Infrastructure · Quarterly Executive Dashboards
Book your free 30-minute discovery call → sustek.co
Frequently asked questions
How many suppliers should we assess in the first phase? The Supplier ESG Risk Scan prioritizes assessment based on risk profile, not supplier count. In most cases, 20% of suppliers by number represent 80% of supply chain ESG risk by exposure. Starting with the highest-risk tier — typically based on sector, geography, and spend concentration — gives the most actionable intelligence with the least initial effort.
What is the difference between a supplier audit and an ESG risk scan? An audit verifies compliance against a predefined standard at a specific point in time. An ESG risk scan assesses the risk profile of the supplier relationship — their sector's ESG risk characteristics, geographic risk exposure, governance structure, and alignment with your ESG requirements — before deciding what level of ongoing governance is appropriate. The risk scan informs the governance design; the audit verifies compliance within that governance structure.
How does the Stakeholder Network Data App work? The Stakeholder Network Data App is a shared data platform connecting up to 10 nodes across your value chain — your company, key direct suppliers, and other critical value chain actors. It enables real-time visibility into sustainability data across the network, replacing the annual questionnaire cycle with continuous data flows that support proactive governance rather than reactive audit-and-respond.
Sources: Formentini, M. & Taticchi, P., "Corporate sustainability approaches and governance mechanisms in sustainable supply chain management," Journal of Cleaner Production (2015); Sustek.co Sustainability Transformation Tiers (sustek.co).
Sustek.co | Sustainable Technology Consulting | S.A.S. BIC | NIT 901.966.636-8 S.A.S. BIC · Sistema B Colombia · Google for Startups · AWS Activate · SROI 6.41:1 sustek.co | contact@sustek.co