Frameworks and Industry Systems
Risk-Based Prioritization
The practice of deciding what to review, support, or escalate first based on the level of risk rather than treating every supplier or issue the same.
Definition
Risk-based prioritization is how a team turns risk information into real choices. That can mean setting a tighter audit cadence for one site, escalating a severe recruitment case faster, or giving more attention to a high-risk material or country.
The inputs usually include geography, worker profile, historical findings, grievance patterns, subcontracting risk, business importance, and how strong the supplier's controls appear to be.
How this source informs this section
OECD Due Diligence Guidance for Responsible Business Conduct
OECD guidance is the main reference for using severity and likelihood to decide where due-diligence attention should go first.
Why it matters
Most programs do not have enough time, leverage, or budget to treat every issue equally. Prioritization is what keeps attention on the problems most likely to cause serious harm or repeated failure.
It also shows whether the program is actually using the data it collects. A dashboard that never changes action is not prioritization.
How this source informs this section
UN Guiding Principles on Business and Human Rights
The UN Guiding Principles reinforce that resource limits do not remove responsibility; they make prioritization quality more important.
Nuance
A risk model is only useful if it changes decisions such as audit scope, escalation speed, supplier support, or business review. If nothing changes, it is just a scoring exercise.
Teams should also distinguish between inherent risk and current control strength. A high-risk country and a poorly controlled high-risk site are not the same situation.
How this source informs this section
OECD Due Diligence Guidance for Responsible Business Conduct
OECD guidance supports distinguishing between exposure and control strength instead of collapsing all risk into one flat score.
Sources
OECD Due Diligence Guidance for Responsible Business Conduct
OECD · guidance
OECD's core guidance on how companies identify risk, prioritize, respond, track follow-up, and communicate what changed.
UN Guiding Principles on Business and Human Rights
OHCHR · framework
Used here for the baseline definition of human-rights due diligence, remedy, and grievance expectations.
