Session
Organizer 1: Yee Man Ko , DotAsia
Organizer 2: Eduardo Leal, UFG
Organizer 3: Pyrate Ruby Passell, Student
Organizer 4: Osei Manu Kagyah, The Institute for ICT Professionals Ghana
Organizer 5: Karen Cruz, N/A
Speaker 1: Denise Leal, Civil Society, Latin American and Caribbean Group (GRULAC)
Speaker 2: Alina Ustinova, Civil Society, Eastern European Group
Speaker 3: Yee Man Ko , Technical Community, Asia-Pacific Group
Onsite moderator - Millenium Anthony, Youth IGF Tanzania, Civil Society - AFRICA
Online moderator - Thaís Aguiar, Cesar School, Technical Community / Academia - GRULAC
Rapporteur - Osei Manu Kagyah, Civil Society, African Group
Speakers:
1- Yee Man Ko , DotAsia, Technical Community, Asia-Pacific Group
2- Denise Leal, YCIG, Civil Society, Latin American and Caribbean Group (GRULAC)
3- Alina Ustinova, Russia Youth IGF, Civil Society, Eastern European Group
4- Marko Paloski, YCIG, Private Sector, Eastern European Group
Karen Cruz, Civil Society, Latin American and Caribbean Group (GRULAC)
Pyrate Ruby Passell, Civil Society, Asia-Pacific Group
Osei Manu Kagyah, Civil Society, African Group
Roundtable
Duration (minutes): 60
Format description: The 60-minute hybrid workshop, designed in a roundtable format, offers an ideal setting for our activity. This format encourages active participation and dynamic engagement among participants, both online and in-person, fostering a collaborative environment conducive to meaningful discussions. Through interactive dialogue, attendees will gain insights into the intersection of ESG considerations, exploring topics such as sustainability, innovation, and data protection. The roundtable layout facilitates open exchange, allowing diverse perspectives from ESG specialists, researchers, and representatives of the technical community. By leveraging this format, the workshop maximizes the sharing of knowledge and expertise, empowering participants to address environmental and social impacts while promoting transparency and ethical practices in the sustainability and cybersecurity industry.
Why do we need to discuss ESG in the Internet Governance Forum? What are the sustainability and cybersecurity challenges in ESG systems? How technology can verify and check (information accuracy) in reports ?
What will participants gain from attending this session? Participants of the session will learn about ESG systems, sustainability and innovation, enhancing transparency, safeguarding personal data, and addressing environmental and social impacts. Participants are expected to gain: - knowledge about sustainability and innovation - networking with ESG experts, and experts on reports and sustainable data - new knowledge on the intersection between cybersecurity and ESG - Insights on the challenges and risks on data privacy in ESG context - Tools on data protection in ESG context Participants will also have the opportunity to provide inputs in the theme, collaborating to a report that will be published in the platforms of the stakeholders and organizations involved in this session.
Description:
Globally, ESG considerations are gaining importance, with the rapid growing cyber security industry. Both industries are emerging and unaware of intersection, but seldom is there discussion on this perspective. In addition to ensuring data and systems protection, the cybersecurity industry is now facing another important challenge, which is the integration of Environmental, Social, and Governance (ESG) principles. Facing this reality and intersection of important topics, the experts’ session will cover important informations on how to improve ESG system to enhance transparency while protect personal data on sustainability reporting The speakers, from different backgrounds, like ESG specialists, researchers, representatives of the technical community and civil society, will explore the theme, speaking about adaptation to emerging trends, addressing environmental impact, embracing sustainability, and prioritizing social responsibility and ethical practices to thrive in this ever-evolving landscape. While technology offers solutions for climate change, it also presents environmental challenges, such as the use of genetic resources in free access databases, management of waste and the energy consumption associated with electronic devices, data centers, and communication networks primarily powered by fossil fuels. This session also covers challenges, highlighting how the ESG standards and principles have collaborated on the advancement of technology and internet use towards a more sustainable environment, it also covers the ESG issues related to environment and use of data on reports. On top of cybersecurity’s critical role in protecting systems and data, equally as cybersecurity has mainly been viewed as a technology issue, it is now also regarded as a key ESG concern, falling under the “Social” pillar. ESG frameworks are a tangible means of evaluating corporate behavior; by incorporating cybersecurity, a new dimension is added, giving insight into cyber behaviors and risks which form a critical part of the bigger ESG picture.
Session Outcomes: A - Expanding the vision of the people present in relation to How we might improve the ESG system to enhance information transparency while protecting personal data on sustainability reporting. How can we leverage some innovative technology? B- Clarify what kind of technology and general investments it has to be made to reach the expected goals and understand what can come from this development scenario. Specific Outcomes: A- Report summarizing the session shared in the platforms of GERN, Youth LACIGF, AprIGF, and YCIG, by the end of the session in December 2024. B- Compilation of best practices and case studies that present successful initiatives and approaches to promote inclusion and equity in the use of technology in the environment. This resource will be disseminated through online platforms. C- Follow-up event in partnership of GERN, Youth LACIGF, AprIGF and YCIG in 2025.
Hybrid Format: The session aims to facilitate a 60 minutes roundtable where participants will be part of the session itself. Tentative agenda: 5’: Introduction and background. The moderator explains how the session will take place and points out that attendees can ask questions by using the hand-raising option or in the chat (online), or by requesting the floor (onsite). 35’: The moderator introduces the policy issues and addresses the speakers with questions in a roundtable fashion. 15’: Open floor. The moderator invites all participants to take the floor either online or onsite. 5’: Key takeaways (rapporteur) and conclusions. The session is going to ensure interactions through a Q&A and comment section in the online application where the session will be taking place (e.g. Zoom). Both online and onsite moderators will make sure that the questions and comments are not overlooked through effective communication, but play an important role throughout the session
Report
ESG is paramount and needed in conversations around technology, as the interconnectedness of technology and enverionment is growing every now and then.
Standards of digital sustainability must consider local realities. And policy making actors need to create data protection regulations that encompasses traditionnal communities realities, needs and right risks.
We must consider the use of encryption for data protection, as well as Data consumption from data centers is a detrimental theme that needs to be addressed. Both must be consider in dialogues about data and sustainability.
We need to change ESG to ESGC with more focus on protecting or data. And more research, advocacy and collaborations are needed. Finally, in terms of data centers topic, renewable energy must be explored as a solution for the high consumption of energy.
Policy-making actors must consider local realities to define ESG and data-protection regulations, reflecting specific needs and circumstances of different regions to ensure effectiveness and inclusivity. When addressing data governance, we must respect traditional communities by recognizing their sovereignty over personal data, traditional knowledge, and natural resource data. This approach aligns with the UN Biodiversity Convention.
The discussion explored the intersection of ESG principles with cybersecurity and internet governance. Panelists examined how ESG frameworks can address sustainability and cybersecurity challenges in the digital age, emphasizing the need for more comprehensive and tailored approaches to these issues.
As opening roundtable questions: 1- Why do you think the discussion around ESG principles and cybersecurity is critical at the Internet Governance Forum? 2- How do ESG frameworks currently address - or fail to address - sustainability and cybersecurity challenges? 3- In what ways can technology verify and enhance the accuracy of sustainability reporting while protecting personal data?
Deep Dive Questions: 1- Can you provide examples of innovative technologies that are effectively integrating ESG principles into cybersecurity practices? 2- How can we address the environmental challenges associated with the energy consumption of data centers and communication nertworks? 3- What ethical considerations should organizations prioritize when alligning cybersecurity practices with ESG goals? 4- How can ESG systems promote social responsability in data governance, particularly for marginalized or underrepresented communities? 5- How can we ensure that ESG commitments to data protection go beyond compliance to actively foster transparency, trust and long-term stakeholder engagement?
Jasmine Ko highlighted the high energy consumption and carbon footprint of these technologies, while Denise Leal stressed the importance of considering the location and community impacts of data centers. Marko Paloski advocated for the use of renewable energy and efficiency measures to mitigate these environmental challenges. The panelists agreed on the urgent need for more sustainable practices in the tech industry, with a recurring emphasis on transitioning to renewable energy sources and improving energy efficiency in data centers.
The discussion revealed both agreements and differences in approaches to ESG implementation. Alina Ustinova proposed expanding ESG to ESGC, explicitly including cybersecurity as a key consideration. Jasmine Ko mentioned specific ESG standards such as GLI and SASB, highlighting the need for alignment across different frameworks. Denise Leal emphasized the need for ESG standards tailored to the realities of the Global South and called for more specific internet-related ESG standards. This difference in focus reflects the complexity of applying ESG principles globally.
Thais Aguiar argued that ESG reporting should go beyond mere compliance to foster trust, while Marko Paloski stressed the need for government regulation to enforce ESG standards. These viewpoints suggest a shared recognition of the need for more robust ESG implementation, albeit with different emphases on voluntary versus regulatory approaches.
The discussion highlighted data protection as a crucial aspect of ESG, with panelists stressing the importance of treating data security as a fundamental pillar rather than an afterthought. Alina Ustinova, drawing from her experience in “the most attacked country in the world in terms of cyber attacks”, proposed implementing laws with criminal liability for data breaches. This suggestion aligns with the broader call for stronger regulatory frameworks and accountability measures for big tech companies.
Speakers emphasized the importance of multi-stakeholder collaboration in developing effective ESG policies and regulations. Jasmine Ko stressed the need to align expectations across stakeholders on ESG reporting. Denise Leal advocated for including marginalized communities in creating ESG standards, particularly those tailored for Global South realities. Policy-making actors must consider local realities when defining ESG and data-protection regulations. Policies should reflect the specific needs and circumstances of different regions to ensure effectiveness and inclusivity. When addressing data governance, we must respect traditional communities by recognizing their sovereignty over personal data, traditional knowledge, and natural resource data. This approach aligns with the UN Biodiversity Convention and its provisions regarding the data and rights of traditional communities.
This focus on inclusivity was echoed by audience members who called for stronger representation from diverse regions, particularly Africa and other developing areas, in global conversations on ESG. The session concluded with several suggested action items and the moderator also noted an upcoming session on e-waste solutions, highlighting the interconnected nature of these sustainability challenges.
In summary, the discussion underscored the complex interplay between sustainability, data protection, and cybersecurity in the context of ESG and internet governance. It highlighted the need for more nuanced, inclusive approaches that consider regional contexts, leverage technology responsibly, and balance voluntary initiatives with regulatory frameworks to drive meaningful progress in this critical area. The session also revealed the need for further education on ESG concepts, particularly in relation to developing countries, and emphasized the importance of diverse global representation in shaping future ESG standards and practices.
This report was made using notes from the rapporteur, informations send by moderators and speakers and informations collected from digwatch platform.