The Technology, Media and Telecommunications sector sits at the intersection of global supply chains, digital infrastructure, online services, artificial intelligence and public trust. That position creates a distinctive human rights challenge: the same company may need to manage forced labour risk in electronics manufacturing, privacy and freedom of expression risks in online services, algorithmic discrimination in AI systems, and modern slavery reporting across multiple markets.

The direction of travel is clear. Corporate responsibility is moving from voluntary CSR language into mandatory human rights due diligence. The UN Guiding Principles on Business and Human Rights remain the global anchor, but their logic is now being translated into hard law through regimes such as the EU Corporate Sustainability Due Diligence Directive, the German Supply Chain Act, modern slavery reporting laws, the EU Digital Services Act, the UK Online Safety Act and emerging AI governance frameworks.

For TMT companies, the practical question is no longer whether human rights belongs in compliance. It is how to make the work coherent enough to operate.

The Problem With Siloed Compliance

Most organisations still manage obligations in separate lanes. Procurement owns supplier questionnaires. Legal tracks modern slavery and due diligence laws. Trust and safety teams manage online harms. Product teams review AI risk. Sustainability teams prepare ESG disclosures.

Each lane may be defensible on its own, but the organisation still ends up with duplicated assessments, repeated supplier requests, inconsistent risk language and fragmented evidence. The result is slower compliance, weaker governance and a harder job explaining what the company actually did when challenged by a regulator, investor, customer or affected stakeholder.

The TMT sector makes this fragmentation especially risky because human rights impacts can scale quickly. A content policy can affect millions of users. A faulty AI model can replicate bias across decisions. A hardware supply chain can hide labour risk several tiers below the direct supplier. A data practice can shift from technical issue to fundamental rights concern overnight.

The Golden Thread

The "golden thread" is a simple organising idea: use internationally recognised human rights principles as the common logic that connects different compliance frameworks.

Instead of asking teams to run separate assessments for every law, the company starts with a unified question: where could our operations, products, services or business relationships harm people?

That question can then be mapped across multiple obligations:

  • CSDDD and OECD-aligned due diligence processes.
  • Modern slavery and forced labour reporting.
  • Digital Services Act systemic risk assessments.
  • Online Safety Act duties of care.
  • AI governance and algorithmic impact review.
  • ESG and sustainability reporting.

This does not erase legal nuance. It gives the organisation a shared structure for gathering evidence, prioritising severe risks, assigning owners, tracking mitigation and explaining decisions.

Why TMT Needs An Integrated Risk View

TMT companies face a risk profile that crosses physical and digital value chains. Hardware businesses must look beyond tier-one suppliers into minerals, components, assembly, logistics and recruitment practices. Platform businesses must understand impacts on privacy, children, freedom of expression, non-discrimination, mental health and access to remedy. AI and cloud providers must consider downstream use, end-use risk and rights impacts that may be created by customers or deployment contexts.

A single human rights risk assessment cannot be static. It needs to connect:

  • Supplier data and purchasing decisions.
  • Product and platform risk assessments.
  • User, worker and community impacts.
  • Grievance information and stakeholder engagement.
  • Policies, controls, training and remediation.
  • Evidence needed for reporting and assurance.

That is why the golden-thread approach is operational as much as legal. It asks companies to build a repeatable system for seeing risk, rather than a one-off document for each regulation.

What Good Implementation Looks Like

An integrated TMT workflow should begin with a clear policy commitment and a mapped value chain. It should identify the people most likely to be affected, prioritise the most severe potential impacts, and connect each risk to evidence, controls and accountable owners.

In practice, that means:

  • Mapping supplier, product, user and end-use relationships.
  • Prioritising salient risks by severity, not only business materiality.
  • Using common evidence fields across legal, procurement and ESG teams.
  • Linking findings to mitigation plans and remediation routes.
  • Tracking whether controls actually reduce harm.
  • Reporting in a way that shows source-linked decisions, not vague statements.

Technology can help, but only if the workflow is designed around human rights judgement. Automated extraction, supplier screening and monitoring are useful when they preserve the evidence trail and route difficult decisions to qualified reviewers.

Strategic Advantage

For TMT leaders, the golden thread turns compliance from a defensive exercise into a strategic capability. It reduces duplication, improves audit readiness, supports faster supplier and product decisions, and creates a clearer story for investors, customers and regulators.

More importantly, it helps companies lead with principle in a sector where innovation shapes human experience at scale. Human rights is not a peripheral issue for TMT. It is becoming core infrastructure for responsible growth.

Read the original Supply Unchained article on LinkedIn.