Issue #7: CSDDD enforcement slips to 2029 — but supplier due diligence work shou…

THIS WEEK'S BRIEF / LE BRIEF DE LA SEMAINE

This week's procurement signal is the CSDDD reset. The EU's Omnibus amendments have pushed application dates out, narrowed direct scope, and made the due diligence model more risk-based. That does not make the file a legal-only issue. It changes the buyer workflow: which suppliers get deeper checks, what evidence can reasonably be requested, and how supplier contracts should be prepared before national transposition arrives. Five implications for EU industrial procurement teams planning Q3 category reviews.

SIGNAL ITEMS / SIGNAUX

Regulatory / Reglementaire: the enforcement clock now points to 2029, not 2027

The Commission's current CSDDD page says Member States must transpose the Omnibus I amendments by July 26, 2028, apply them from July 26, 2029, and apply Article 16 reporting measures for financial years starting on or after January 1, 2030. So what: the delay removes a false emergency, but it also moves the work into normal procurement cycles where late discovery is harder to excuse. Large buyers will still need category-level risk files, supplier engagement records, and escalation routes before enforcement starts. Action: add a CSDDD readiness column to Q3 supplier-business reviews, marking each strategic supplier as in-scope customer-facing, potentially high-risk, or low-risk evidence-only.

Source / Source: European Commission — Corporate sustainability due diligence, Omnibus I implementation timeline, accessed 22 June 2026

Scope / Perimetre: fewer direct filers does not mean fewer supplier asks

The amended scope now targets very large EU companies and partnerships with at least 5,000 employees and €1.5 billion net worldwide turnover, plus non-EU companies with at least €1.5 billion net turnover in the EU. Micro companies and SMEs are not directly covered, but the Commission still flags indirect impact through chains of activities. So what: many industrial suppliers will sit outside direct scope while serving customers that are inside it. Procurement teams should expect evidence requests to cascade through metals, electronics, chemicals, logistics, and outsourced labour categories. Action: segment suppliers by exposure to in-scope customers, not only by their own legal threshold, and prepare a standard answer pack for strategic accounts that will ask for human-rights and environmental controls.

Source / Source: European Commission — Corporate sustainability due diligence, company scope and SME treatment, accessed 22 June 2026

Due Diligence / Devoir de vigilance: risk-based scoping becomes the operating model

The Commission says companies must address actual and potential human-rights and environmental impacts in their own operations, subsidiaries, and chains of activities, supported by complaints procedures, monitoring, and public communication. After the Omnibus I amendments, companies may focus on areas where impacts are most likely and most severe, using reasonably available information. So what: procurement teams do not need an equal-depth file on every tail supplier, but they do need a defendable reason for where deeper review starts. Action: build a category heatmap using country, material, process, labour intensity, and spend concentration, then tie audit rights and corrective-action clauses to the top risk bands.

Source / Source: European Commission — Corporate sustainability due diligence, obligations and risk-based focus after Omnibus I, accessed 22 June 2026

Supplier Data / Donnees fournisseurs: SME request limits change the evidence workflow

The Commission states that the amended Directive includes support and protective measures for SMEs, small mid-caps, and other smaller business partners indirectly affected in chains of activities, including limits on information requests, guidance, and model contractual clauses. So what: blanket questionnaires sent to every small supplier will become a weak control, not a strong one. Buyers will need to show that requests are proportionate and tied to actual risk or unavailable evidence. Action: replace the universal ESG questionnaire with a tiered evidence protocol: public certifications first, customer-specific attestations second, and enhanced requests only for suppliers in high-risk materials, geographies, or labour models.

Source / Source: European Commission — Corporate sustainability due diligence, SME and smaller-business-partner protections, accessed 22 June 2026

Guidance Watch / A surveiller: the rulebook is being written now

The Commission's guidance timetable now points to main guidelines by July 26, 2027, and additional guidance by July 26, 2028. A June 18 Global Policy Watch analysis notes that the Commission's detailed public questionnaire on CSDDD guidelines is open until July 24, 2026, with adoption of a first set of guidelines planned for Q1 2027. So what: procurement teams can still influence the practical definitions of data sources, model clauses, verifier criteria, penalties, and information-sharing. Action: submit feedback through legal or industry associations on the exact supplier data that is available, unavailable, or commercially sensitive in your highest-risk categories.

Source / Source: European Commission CSDDD guidance timetable; Global Policy Watch — European Commission seeks public input on CSDDD Guidelines, 18 June 2026

RAPPORT PREMIUM / PREMIUM REPORT

Get the full CBAM Impact Report — €190

Use the premium report to pressure-test CBAM exposure, supplier data gaps, and landed-cost scenarios while CSDDD evidence workflows are being rebuilt.