What is whistleblowing?

Whistleblowing is when an employee (or other person), aka the “whistleblower”, spontaneously reports any wrongdoing or malpractice witnessed in the workplace. Regulations introduced by Italian Legislative Decree 24/2023, which implements EU Directive n. 2019/1937 (the so-called Whistleblowing Directive), protects the privacy of the persons who report breaches and provides for a series of guarantees against possible acts of retaliation.

Whistleblowing law does not cover personal grievances, claims or demands by the person reporting that concern the person’s individual work relationship or complaints regarding commercial activities.

Who can report a breach?

Breaches can be reported by employees, ex-employees, job candidates, interns, partners, customers, suppliers, consultants, contractors, as well as people having administrative, managerial, control, security or representational roles within Gruppo Bucci and its companies.

It is also possible to make an anonymous report as long it is specific and contains sufficient details for ascertaining the facts reported (e.g. elements that enable the identification of the persons involved, the context, the place and the period of time the reported facts refer to, and supporting documentation).

How to make a report?

Gruppo Bucci companies have made available the following channels through which one can confidentially and discreetly report illicit conduct and alleged violations of the law or regulations:

Digital platform

The “WHISTLEBLOWING” digital platform, for reporting breaches using an online guided procedure the confidentiality of which is guaranteed by encryption;

Standard or registered post

addressed to the legal address of the Group company recipient of the report, with the wording “To the attention of the Prescribed Person for Whistleblowing – Ethics Committee – Confidential”.

In this case, to ensure confidentiality, the Whistleblower/s are asked to place the report in two sealed envelopes: the first one containing the Whistleblower’s details together with a form of ID; and the second containing the object of the report. Both must then be placed in a third sealed envelope addressed to the Prescribed Person.

For more information on how breach reports are handled