Inchcape-logo Inchcape-logo
Practices

Practices

Sustainability

High-integrity route to market

The Practices pillar is about doing business the right way – with integrity, consistency and accountability across all markets. We are future-proofing our business practices by strengthening our policies, Code of Conduct, and cybersecurity. As Inchcape grows and enters new markets, maintaining high ethical standards is critical to our long-term success.

QUICK LINKS

rajvi-kothari
"Operating our business with integrity is about creating the right conditions for people to act responsibly, every day."

Rajvi Kothari

Group General Counsel & Chief Sustainability Officer

Our 2025 highlights

Legal and regulatory frameworks

reinforced to operate consistently across complex, multi-market environments

Cyber resilience

strengthened in response to a rapidly evolving digital threat landscape

Global training

enhanced to strengthen our capabilities

AI policy framework

rolled out globally ensuring consistent governance and supporting responsible adoption

Running our business with world-class operational standards

Running our business with world-class operational standards

Operating in 40+ markets, Inchcape upholds high ethical standards, ensuring every colleague understands their responsibilities.  

Our global Code of Conduct is embedded into our onboarding processes and is easily accessible via our People Hub and Intranet. To strengthen awareness and accountability, we mandate Code of Conduct training for all colleagues, including those joining through acquisitions. In years between full updates, re-attestation is required. Our refreshed Code and global training programme were launched in 2025, reinforcing our commitment to clear oversight and strong ethical governance at every level. 

Learn more about our updated Code of Conduct in the latest Sustainability Report and explore our Whistleblowing Framework here.

Fostering open dialogue through the Open Doors Policy

Responsible governance - compliance week Americas 2025

Responsible governance is embedded in how we deliver across our business, helping strengthen accountability, transparency and responsible decision-making at both global and local levels.

As part of this commitment, we continuously look for new ways to strengthen awareness and understanding of our policies and ethical standards across the organisation.

In the Americas region, Compliance Week 2025 was delivered as a targeted engagement campaign designed to reinforce our culture of integrity and encourage active participation with our Code of Conduct. Through online and physical interactions, regional teams delivered localised, interactive content reinforcing ethical behaviour and reducing regulatory risk.

data--privacy

Strengthening data privacy and cybersecurity

As a data-led business, protecting our information systems and customer data is paramount. We continue to invest in robust cybersecurity infrastructure, regular audits and colleague training to foster a strong security culture.

The measures we take embed data privacy across our operations, reinforcing responsible business practices, data protection and transparency.

Over 2025, we have:

  • improved how we identify, assess, govern, manage and assure cyber risks on a continuous basis;
  • improved metrics and reporting to better understand our cyber risks and how our remediation teams are performing;
  • established clearer ownership for cyber risk remediation and accountability; and
  • rolled out a global AI Policy framework, ensuring consistent governance of emerging technologies and supporting responsible adoption across markets.

We also enhanced key processes and controls, including third-party risk management, risk and issue management, secure development practices, and Security Incident Response and playbooks.

Looking ahead

In 2026, we plan to continue strengthening our people, processes and technology in cybersecurity, including:

  • hiring new senior cyber experts;
  • reviewing and improving training plans for key cyber colleagues;
  • enhancing cybersecurity Best Practice Guides to standardise processes, mitigate risks and accelerate value creation;
  • deploying new advanced technical capabilities; and
  • launching our Cyber Academy.

Read more about our governance policies and practices in the Annual Report and learn more about the progress of our Practices pillar in our most recent Sustainability Report.