Data Strategy — Sustainability reporting

Executive summary. On 16 December 2022 the European Union enacted the Corporate Sustainability Reporting Directive (CSRD) – Directive (EU) 2022/2464 – which expands sustainability reporting obligations to over 50 000 companies. From financial year 2025, large EU groups already subject to the Non‑Financial Reporting Directive must prepare their management report electronically using the European Single Electronic Format (ESEF) and mark up their sustainability statements in Inline XBRL. Digitally tagging sustainability data is therefore not an optional extra; it will enable investors, regulators and AI‑driven tools to automate analysis. Although the European Commission’s March 2025 simplification package proposes to delay some CSRD obligations, digital reporting remains unaffected – tagging will become mandatory once the European Securities and Markets Authority (ESMA) finalizes the XBRL taxonomy and the Commission adopts it via an amending Delegated Act. Overview of CSRD digital reporting requirements. Article 29d of the Accounting Directive, as amended by the CSRD, requires doings to prepare their management report in an electronic format and to mark up their sustainability reporting following that format. This means companies must use the iXBRL variant of XBRL, which embeds machine‑readable tags within human‑readable HTML pages. EFRAG – the European Financial Reporting Advisory Group – has been mandated by the European Commission to develop the XBRL taxonomies for sustainability disclosures, including a baseline taxonomy for the first set of European Sustainability Reporting Standards (ESRS Set 1), a taxonomy for Article 8 EU Taxonomy reporting and a template for voluntary SME disclosures. These taxonomies serve as the foundation for ESMA to draft regulatory technical standards (RTS) on tagging. Once ESMA’s RTS are adopted through amendments to the ESEF regulation, digital tagging will be mandatory; until then, companies can file sustainability statements without tags. Nonetheless, the CSRD explicitly states that sustainability disclosures must be prepared in XHTML and digitally tagged, and the Commission’s 2025 proposals do not change this requirement. Why digital tagging matters. Inline XBRL enables machine‑readable, standardized data that can be processed by regulators, investors and AI tools. XBRL taxonomies provide an element for every disclosure requirement and dimension. Without tagging, sustainability reports would remain locked in narrative form, undermining comparability and enforcement. When companies embed tags, each datapoint – such as scope 3 emissions, diversity ratios or water usage – becomes comparable across industries and time periods. Automated validations reduce the risk of missing data or mismatched figures, and regulators can embed taxonomy updates as standards evolve. As XBRL International notes, digital reporting provides a single version of the truth and enables investors to rely on management’s assertions. Scope and timeline. The CSRD will be phased in. Companies already covered by the NFRD – large EU public‑interest entities with over 500 employees – must report FY2025 sustainability data in FY2026. Large non‑listed companies with over 250 employees or net turnover above €40 million needs to begin reporting FY2026 data in FY2027. Listed SMEs will follow in FY2028, with an opt‑out until FY2029. Non‑EU companies generating more than €150 million of net turnover in the EU with a subsidiary or branch will report from FY2028. All of these reports must be tagged in Inline XBRL once the taxonomy is adopted; therefore data governance and tagging readiness should start well before the deadlines. Furthermore, companies subject to the existing European Single Electronic Format for financial statements must block‑tag sustainability notes and apply ESMA’s iXBRL validation rules. Building the data foundation. Tagging is only as good as the data that feeds it. Teams should map ESRS disclosures to specific data elements in their enterprise systems and assign ownership to business units. An ESRS–to‑XBRL mapping matrix helps identify gaps where no data source exists or where definitions differ. For example, ESRS E1 requires disclosure of gross greenhouse‑gas emissions broken down by scope 1, 2 and 3; the XBRL taxonomy will provide separate tags for each. Finance teams must collaborate with sustainability officers, HR and supply‑chain managers to confirm that emissions inventories, workforce metrics and supplier data can be extracted and transformed into consistent units. Data quality controls, such as reconciliation of emission factors, segregation of duties in data entry and version control for spreadsheets, mirror the rigor of financial internal controls. Evidence retention policies must cover not only the final tagged report but also underlying source data, transformation logs and management sign‑offs. Control environment and assurance. From FY2028, CSRD sustainability statements will be subject to reasonable assurance, and until then limited assurance will apply. Auditors will need to trace each tag back to source data and verify that it meets the disclosure requirements. Companies should therefore implement internal controls over sustainability reporting (ICSR) that mirror financial reporting frameworks. This includes role‑based access for ESG platforms, automated workflows that enforce review and approval, and audit trails capturing changes to data and tags. Drafting tagging policies is essential: when should a company use an extension concept? How are narrative disclosures linked to tags? How does the company handle rounding differences? Dry runs with assurance providers before the mandatory adoption of digital tagging will help identify process weaknesses. Implementation roadmap. A practical roadmap might unfold in three phases: 1. Assessment and gap analysis (H1 2025). Inventory existing ESG data sources, identify gaps relative to ESRS requirements and plan integration. Evaluate tagging tools, vendor offerings and advisory support. set up a cross‑functional steering committee including finance, sustainability, legal, IT and internal audit. 2. Design and build (H2 2025 – H1 2026). Develop a data governance framework, map ESRS disclosures to system fields, implement data pipelines and transformation scripts. Select an authoring and validation tool that supports the evolving ESRS taxonomy and ESEF guidelines. Design internal controls for data collection, transformation and tagging, and document procedures. Train staff on taxonomy concepts, iXBRL basics and the importance of machine‑readable reporting. 3. Pilot and roll‑out (H2 2026). Conduct pilot tagging using sample FY2025 data and iterate on the mapping. Engage auditors for a mock assurance to test evidence readiness. Prepare the final FY2025 report with complete tagging, perform validation and address errors. formalize a continuous improvement loop to update taxonomy mappings as ESRS evolves. Implications for enterprises. Digital tagging has strategic implications beyond compliance. Machine‑readable sustainability data can feed analytics dashboards, enabling management to track performance against science‑based targets. Investors and lenders will expect timely, comparable data to evaluate climate‑related transition risks. Governments may use tagged data to benchmark progress toward emissions reductions, diversity goals and due‑diligence obligations. Failing to prepare could lead to last‑minute panic, restatements and reputational damage. Conversely, early adopters can turn ESG reporting into a competitive advantage by demonstrating transparency and technological maturity. Our analysis and recommendations. We believes digital sustainability reporting will transform the disclosure environment. Even though tagging is not yet mandatory, companies should treat 2025 as a preparatory year. By implementing strong data pipelines, control frameworks and authoring tools now, they can avoid being caught off guard when ESMA’s RTS become effective. Teams should: • set up a cross‑functional team responsible for CSRD compliance, including data stewards for each ESRS metric. • Build a full mapping between ESRS requirements and available data fields, and document any manual estimates. • Deploy an iXBRL‑compliant authoring solution that supports taxonomy updates and provides validation reports. • Conduct dry‑run filings with assurance providers to test data integrity and tagging accuracy. • Integrate ESG and financial data platforms to produce a unified sustainability report, ensuring consistency across disclosures. • Monitor EU regulatory developments, especially the adoption of ESMA’s RTS and updates to the XBRL taxonomy. By acting early, companies can turn CSRD digital reporting from a compliance burden into an opportunity to improve trust and enable analytics value.

How to implement this

If you are affected, develop setup roadmaps that account for resource constraints, dependencies, and risk priorities. Phased approaches typically provide better outcomes than attempting full changes simultaneously. Early wins build momentum and show value to teams.

Progress monitoring should track setup activities against planned timelines and identify potential issues requiring intervention. Regular reporting keeps teams informed and maintains organizational focus on setup priorities.

Stakeholder management

Effective stakeholder engagement ensures alignment on objectives, expectations, and setup approaches. Communication should be tailored to different audiences, providing appropriate levels of detail for technical and executive teams.

Change management processes should address organizational readiness and potential resistance to new requirements or practices. Training and support resources help ensure successful adoption of required changes.

Iterating and improving

Continuous improvement processes should incorporate lessons learned and feedback from setup experiences. Regular reviews help identify improvement opportunities and ensure approaches remain aligned with evolving requirements.

Documentation of setup activities and outcomes provides evidence of due diligence and supports ongoing maintenance. Knowledge capture ensures institutional learning is preserved for future reference.

Related articles

Curated signals from the same pillar or overlapping topics.

Data Strategy · Credibility 91/100 · August 22, 2025

Data Strategy — Data portability

The EU Data Act goes live September 12, 2025. You have got weeks to finalize data portability for users, set up fair compensation models, and get your B2B contracts in order. The clock is ticking.

Data Strategy · Credibility 91/100 · August 20, 2025

California Delete Act

California’s Delete Act requires the statewide deletion mechanism for data brokers to go live by January 1, 2026, making August 2025 the final design window for unified erasure operations.

Data Strategy · Credibility 91/100 · September 12, 2025

Data sharing governance — Data Act public-sector access obligations

From 12 September 2025, data holders must respond to EU public-sector requests made under the Data Act’s exceptional-need provisions, requiring legal, security, and engineering teams to codify intake and extraction…

Data Strategy · Credibility 91/100 · September 20, 2025

Kentucky Consumer Data Protection Act

Kentucky’s Consumer Data Protection Act takes effect on January 1, 2026, giving privacy teams one quarter to finalize data inventories, universal opt-out handling, and assessments for high-risk processing.

Data Strategy · Credibility 91/100 · September 24, 2025

EU Dga Data Intermediation Compliance

Data intermediation services that were operating when the Data Governance Act was adopted must be fully compliant with Chapter III obligations by 24 September 2025, so data leaders need to close registration, neutrality…

Continue in the Data Strategy pillar

Return to the hub for curated research and deep-dive guides.

Visit pillar hub

Latest guides

• Data Interoperability Engineering Guide

  Engineer interoperable data exchanges that satisfy the EU Data Act, Data Governance Act, European Interoperability Framework, and ISO/IEC 19941 portability requirements.

• Data Stewardship Operating Model Guide

  Establish accountable data stewardship programmes that meet U.S. Evidence Act mandates, Canada’s Directive on Service and Digital, and OECD data governance principles while…

• Data Strategy Operating Model Guide

  Design a data strategy operating model that satisfies the EU Data Act, EU Data Governance Act, U.S. Evidence Act, and Singapore Digital Government policies with measurable…

References

1. Article 29d Accounting Directive and CSRD amendments — Official Journal of the European Union
2. EFRAG Digital reporting with XBRL — EFRAG
3. EU sustainability reporting shake-up arrives — without impacting digital reporting — XBRL International