Anonymity: No one knows the identity of the whistleblower (e.g. due to technical precautions).
Anonymous report: the whistleblower does not provide his identity and the content of the report is anonymous.
Concerned Person: An individual associated with the potential violation in the Report.
Confidentiality: The recipient of the report (e.g. the operator of the whistleblower system or the ombudsperson) knows the identity of the whistleblower but is not permitted to disclose it to the company without the whistleblower’s consent. Reports may only processed and disclosed on a need-to-know-basis.
Confidential report: the whistleblower is identified but the content of the report is anonymous.
GDPR: EU General Data Protection Regulation of April 27, 2016.
Maximum security report: the whistleblower exposes the facts by accessing the Tor Browser, communicates anonymously and the content is anonymous too.
Ombudsperson: An external person (lawyer) engaged by the company to receive Reports against the company or their employees and managers.
Report: Information on potential violations.
Third Party: A natural or legal person, public authority, agency or body other than the company or their managers or employees.
Whistleblower: Individual who reports information on potential violations acquired in the context of his or her work-related activities.
Whistleblower System: Technical tool for employees, and potentially third parties, to provide information on potential violations within a commercial legal entity (e.g. via hotline, internet-based communication platform).