Operating
Responsibly /

We are committed to acting ethically and with the highest levels of integrity and to safeguarding data privacy and security by aligning with industry best practices.
Leading the Endava way

Our code of conduct
Our code of business conduct is rooted in our values. It provides a comprehensive framework for the way we conduct ourselves at work. Every year, Endavans take a code of conduct e-learning module. Last year, our e-learning module included topics such as diversity, inclusion and belonging, anti-bribery, insider trading, privacy and data protection and our ‘Speak Up Safely’ policy.
Speak Up Safely
Our Speak Up Safely process allows anyone to raise concerns in confidence if we’re not meeting the standards of integrity we have set for ourselves.

Speeki platform
The Speeki AI-powered platform and app allow real-time two-way anonymous messaging between any concerned reporter and our integrity team. Speeki also supports the process of declaring gifts and hospitality as well as disclosing potential conflicts of interest.
A very engaged team and very qualified technically. Good ability to find talent to match the skill sets required and very responsive in communications. I enjoy working with the delivery managers and appreciate working with the account team to look strategically for the ability to scale up and down with the ever-changing business requirements.
Senior Director, Cisco Systems
The Endava team ensures continuity through taking preventative actions when working with our operational systems. Their vast knowledge and result-orientated mindset aid us in managing any changes, acting as a true partner in our business endeavours. Overall, the team can be described as loyal, involved and business-like with a personal touch.
Durk Blauw
IT Manager, Syntrus Achmea
Sustainable procurement
We aim to have a positive impact on the environment and society. Our procurement policy together with our supplier code of conduct, supplier ethical checks and modern slavery questionnaire are designed to maintain the integrity of our supply chain.
Supplier code of conduct
All our suppliers are required to adhere to the principles laid out in our supplier code of conduct. We updated it recently, asking suppliers for environmental commitments by tracking their Scope 1 and 2 emissions and establishing emissions reduction targets.
Download now
Modern slavery statement
We have a zero-tolerance policy towards modern slavery and human trafficking, working to ensure neither play any part in our business and supply chain. This statement is made in respect of FY 2023/2024 in accordance with the UK’s Modern Slavery Act 2015 and Australia’s Modern Slavery Act 2018.
Read the statement
Corporate governance
We make our code of conduct, speak up safely policy, anti-bribery policy, committee charters, board diversity policy, sanctions compliance policy and other governance documents publicly available on our investors website.
Employing best practice standards
All our people are required to complete security awareness training at onboarding and annually. Additionally, we conduct simulation-based testing to help Endavans recognise and report potentially malicious communications.
In December 2024, we successfully completed our SOC 2 Type 2 attestation for software development and ‘Run by Endava’ operations for the fourth consecutive year.
System and Organization Controls (SOC) 2 is a comprehensive reporting framework put forth by the American Institute of Certified Public Accountants (AICPA) in which independent, third-party auditors carry out an assessment and subsequent testing of controls relating to the Trust Services Criteria (TSC) of security, availability, processing integrity, confidentiality and privacy.
Certifications
Information security management
We continue to expand our Information Security Management System (ISMS) certification to ISO 27001 to all our delivery locations and activities. Successfully maintaining and extending the ISO 27001 attests to our robust security practices and comprehensive risk management approach. Our Berlin and Timisoara offices hold Trusted Information Security Assessment Exchange (TISAX) certifications.
Quality management
Our intelligent Quality Management System (QMS) is certified to ISO 9001 and our quality assurance process is incorporated into our delivery. Every part of The Endava Adaptive Model (TEAM) is verified against our QMS processes and procedures as well as customer specifications.
CyberEssentials
As of April 2024, Endava became CyberEssentials Certified. CyberEssentials is a certification scheme to show an organization has a proper level of protection in cyber security through annual assessments to maintain certification. Such certification is backed by the UK government and overseen by the National Cyber Security Centre.
Find out more
See how we’re having an impact in other sustainability areas

Our people
and communities
/
We enable our people to be the best they can be by creating learning and development opportunities, fostering an inclusive work environment and making sure everyone is connected to our culture. We also aim to make a positive difference in our communities by supporting impactful projects.
Meet our people

Accelerating
innovation
/
We are committed to driving innovation and delivering transformative digital solutions that support our clients in achieving real impact, while and enablinge the sustainable growth of our organisation. We focus on embedding AI in our operations, working closely with technology partners and reinforcing our client-centric approach.
See how we innovate

Environmental
impact
/
We care about our impact on the world and follow sound environmental practices to reduce our environmental footprint.
Explore our impact

2025 Sustainability Report
Learn from our 2025 report how we are evolving our sustainability approach and reporting framework to align to the CSRD and the Double Materiality principles.