--- title: "CSDDD Chain of Activities Boundaries" canonical_url: "https://www.sorena.io/artifacts/eu/csddd/chain-of-activities-boundaries" source_url: "https://www.sorena.io/artifacts/eu/corporate-sustainability-due-diligence-directive/chain-of-activities-boundaries" author: "Sorena AI" description: "Define CSDDD upstream and downstream chain of activities boundaries for subsidiaries, direct and indirect business partners, distribution, transport, storage, and records." published_at: "2026-05-09" updated_at: "2026-05-09" keywords: - "CSDDD chain of activities" - "Directive 2024/1760" - "upstream business partners" - "downstream business partners" - "direct business partner" - "indirect business partner" - "subsidiaries" - "distribution transport storage" - "CSDDD" - "EU Corporate Sustainability Due Diligence Directive" - "chain of activities" - "distribution" - "transport" - "storage" --- **[SORENA](https://www.sorena.io/)** - AI-Powered GRC Platform [Home](https://www.sorena.io/) | [Solutions](https://www.sorena.io/solutions) | [Artifacts](https://www.sorena.io/artifacts) | [About Us](https://www.sorena.io/about-us) | [Contact](https://www.sorena.io/contact) | [Portal](https://app.sorena.io) --- # CSDDD Chain of Activities Boundaries Define CSDDD upstream and downstream chain of activities boundaries for subsidiaries, direct and indirect business partners, distribution, transport, storage, and records. *CSDDD* *Boundary map* *EU* ## CSDDD Chain of activities boundaries Draw the CSDDD boundary between own operations, subsidiaries, upstream business partners, and limited downstream product activities. Use the boundary record to decide which entities, activities, partners, and evidence records belong in the due diligence file. Under the Corporate Sustainability Due Diligence Directive, the chain of activities is not the same as the whole value chain. It covers a company's own operations and subsidiaries through the due diligence duties, then defines which business-partner activities count upstream and which downstream product activities count only when they are carried out for or on behalf of the company. ## Start with the legal boundary Build the boundary map in three layers. First list the company's own operations. Second list subsidiaries, because CSDDD due diligence covers actual and potential adverse impacts arising from the company's own operations or those of its subsidiaries. Third list business partners only where their activities relate to the company's chain of activities. The directive defines a direct business partner as an entity with a commercial agreement related to the company's operations, products, or services, or an entity to which the company provides services under the chain-of-activities definition. An indirect business partner is not direct, but performs business operations related to the company's operations, products, or services. For borderline cases, use the chain test: include the partner if its activity is part of producing, moving, storing, or servicing the company's goods or services, and exclude it if the link is only a general commercial relationship. For downstream services, include distribution, transport, and storage only when the partner acts for or on behalf of the company. - Own operations: sites, functions, employment relationships, purchasing decisions, product design, service delivery, and other activities controlled by the company. - Subsidiaries: legal persons or controlled undertakings whose operations must be mapped separately, even if a parent company supports group-level due diligence. - Direct business partners: contracted suppliers, manufacturers, logistics providers, distributors, or service partners connected to the company's operations, products, or services. - Indirect business partners: lower-tier or non-contracted entities that perform related operations, such as sub-suppliers, raw-material processors, or other actors in the relevant production or service chain. - Borderline partners: outsourced transport, shared distribution, and mixed-purpose service providers belong in scope only for the covered activity that is linked to the company's operations or products, and only if that activity sits in the chain of activities. Sources for this answer: - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Article 3 defines subsidiary, direct business partner, indirect business partner, and chain of activities for CSDDD boundary mapping. - [EUR-Lex summary of Directive (EU) 2024/1760](https://data.europa.eu/eli/dir/2024/1760/oj/eng?ref=sorena.io) - The summary states that companies assess impacts in their own operations, subsidiaries, business partners, and chains of activities. *Recommended next step* *Placement: after evidence section* ## Turn the boundary map into evidence Use Sorena to keep CSDDD chain-of-activities classifications tied to the source rule, partner record, contract evidence, and monitoring review. - [Open Research Copilot](/solutions/research-copilot.md): Check CSDDD boundary questions against cited source material. - [Discuss CSDDD implementation](/contact.md): Review chain-of-activities boundaries, partner evidence, and next implementation steps with Sorena. ## Separate upstream from downstream Upstream coverage is broad. It includes activities of upstream business partners related to production of goods or provision of services by the company, including design, extraction, sourcing, manufacture, transport, storage, supply of raw materials, products or product parts, and development of the product or service. Downstream coverage is narrower. It covers activities of downstream business partners related to distribution, transport, and storage of the company's product only where those partners carry out those activities for the company or on behalf of the company. The directive does not make ordinary customer use, product disposal, or unrelated downstream services part of this definition. - Include upstream design, extraction, sourcing, manufacture, transport, storage, raw-material supply, product-part supply, and product or service development. - Include downstream distribution, transport, and storage only for company products and only when performed for or on behalf of the company. - Exclude product disposal from the CSDDD chain-of-activities definition unless another law or internal commitment creates a separate obligation. - Exclude downstream services of the company from the chain-of-activities definition; for regulated financial undertakings, downstream partners receiving services and products are not included. Sources for this answer: - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Article 3(g) gives the upstream list and limits downstream coverage to distribution, transport, and storage carried out for or on behalf of the company. - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Recital 25 explains that the directive should not cover product disposal and should not include certain export-controlled downstream activities after authorisation. ## Record subsidiaries and group-level support separately A parent company may fulfil certain CSDDD obligations on behalf of in-scope subsidiaries where the conditions in Article 6 are met, but that does not erase the subsidiary from the boundary map. The subsidiary and parent must provide each other necessary information, the subsidiary must integrate due diligence into its policies and risk management systems, and the subsidiary remains subject to supervisory powers and civil liability. For boundary evidence, keep one record for the group-level allocation and another record for each subsidiary's operational perimeter. This avoids the common mistake of treating a group policy as proof that subsidiary-specific operations, partners, and impacts have been mapped. - Name each in-scope subsidiary and its operational perimeter, including products, services, sites, and business-partner categories. - Identify which obligations the parent performs and which obligations the subsidiary continues to perform directly. - Keep the information-sharing record that shows how the parent and subsidiary exchange documents needed for due diligence. - Track subsidiary-specific direct and indirect business partners when they relate to that subsidiary's chain of activities. Sources for this answer: - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Article 6 allows parent-level support only under conditions and preserves subsidiary supervision and civil liability. - [EUR-Lex summary of Directive (EU) 2024/1760](https://data.europa.eu/eli/dir/2024/1760/oj/eng?ref=sorena.io) - The summary confirms that due diligence covers companies' own operations, subsidiaries, and chains of activities. ## Use direct and indirect partner labels for controls The direct or indirect label matters because CSDDD uses it in the control design. Prevention and corrective measures can include contractual assurances from direct business partners, cascading assurances to partners where their activities are part of the chain of activities, and, where impacts cannot otherwise be addressed, assurances from indirect business partners. Do not classify every lower-tier supplier as out of reach. Article 8 requires mapping business partners where related to the chain of activities and directs companies to request information, where reasonable, from business partners at the levels where adverse impacts are most likely to occur. - For each direct partner, store the agreement, covered activities, product or service link, assurance clause, verification route, and SME support decision where relevant. - For each indirect partner that is material to a likely or severe impact, store the activity performed, how it was identified, the information source, and any assurance or engagement route. - When information can come from different chain levels, document why the request went to the partner level where the adverse impact is most likely to occur. - If an activity is outside the chain of activities, record the exclusion reason rather than leaving the partner unclassified. Sources for this answer: - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Articles 8, 10, and 11 connect mapping, contractual assurances, verification, and indirect-partner measures to the chain of activities. - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Article 8 states that information requests should prioritise the partner level where adverse impacts are most likely to occur when reasonable. ## Keep evidence that proves the boundary A defensible boundary file should let a reviewer reproduce the classification. It should show the product or service, the entity, the partner relationship, the activity performed, the upstream or downstream side, the inclusion or exclusion rule, the source citation, and the owner who approved the decision. The record should also connect to due diligence monitoring. Article 15 requires periodic assessments of the company's own operations and measures, those of subsidiaries, and, where related to the chain of activities, those of business partners. Boundary records should therefore be reviewed after significant changes and against regular monitoring outputs. - Boundary register: entity, subsidiary, product or service, activity, upstream or downstream side, direct or indirect partner status, and inclusion outcome. - Downstream limit evidence: distribution, transport, or storage contract showing whether the partner acts for or on behalf of the company. - Exclusion log: product disposal, customer use, export-controlled downstream activity after authorisation, downstream services, or regulated-financial downstream recipient exclusions, with the cited rule. - Information record: data requested, partner level contacted, reason for that level, response received, and gaps still being pursued. - Review record: significant-change trigger, at-least-annual monitoring result, owner approval, and changes made to the due diligence policy or controls. Sources for this answer: - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Article 15 requires periodic assessment of operations, subsidiaries, and business partners where related to the chain of activities. - [EUR-Lex summary of Directive (EU) 2024/1760](https://data.europa.eu/eli/dir/2024/1760/oj/eng?ref=sorena.io) - The summary notes regular monitoring and a five-year documentation retention expectation for due diligence compliance. ## Primary sources - [Directive (EU) 2024/1760 on corporate sustainability due diligence](https://eur-lex.europa.eu/eli/dir/2024/1760/oj?ref=sorena.io) - Primary legal text for CSDDD definitions of subsidiary, direct and indirect business partner, chain of activities, downstream limits, group-level support, partner measures, and monitoring. - Quote: "chain of activities" - [EUR-Lex summary of Directive (EU) 2024/1760](https://data.europa.eu/eli/dir/2024/1760/oj/eng?ref=sorena.io) - EUR-Lex summary used to cross-check the plain-language description of due diligence coverage, monitoring, communication, and documentation. - Quote: "subsidiaries and business partners" ## Related Topic Guides - [CSDDD adverse impact prioritisation workflow](/artifacts/eu/corporate-sustainability-due-diligence-directive/adverse-impact-prioritisation-workflow.md): A CSDDD workflow for identifying actual and potential adverse human rights and environmental impacts, ranking severity and likelihood, and documenting prevention, mitigation, remediation, and stakeholder evidence. - [CSDDD Applicability Test: EU and Non-EU Company Scope](/artifacts/eu/corporate-sustainability-due-diligence-directive/applicability-test.md): Test whether Directive (EU) 2024/1760 may apply to an EU or non-EU company using grounded CSDDD employee, turnover, group, franchise, royalty, exclusion, and phase-in checks. - [CSDDD chain of activities and supplier due diligence](/artifacts/eu/corporate-sustainability-due-diligence-directive/chain-of-activities-and-suppliers.md): Explain CSDDD chain-of-activities scope, upstream and downstream boundaries, subsidiaries, direct and indirect business partners, supplier risk segmentation, and evidence. - [CSDDD chain of activities boundaries: upstream and downstream FAQ](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/chain-of-activities-boundaries.md): FAQ on how the CSDDD defines chain of activities boundaries for subsidiaries, direct and indirect business partners, upstream activities, downstream logistics, and evidence. - [CSDDD civil liability under Article 29: what companies should check](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/civil-liability.md): FAQ on CSDDD Article 29 civil liability: liability conditions, protected legal interests, causation, compensation, limitation periods, and evidence disclosure. - [CSDDD Climate Transition Plan Requirements](/artifacts/eu/corporate-sustainability-due-diligence-directive/climate-transition-plan.md): Article 22 CSDDD guidance for climate transition plans: business model alignment, targets, actions, funding, governance, and 12-month progress updates. - [CSDDD complaints and notifications FAQ](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/complaints.md): FAQ on Article 14 CSDDD complaint and notification mechanisms, who may complain, follow-up rights, confidentiality, retaliation, and evidence. - [CSDDD compliance duties and evidence guide](/artifacts/eu/corporate-sustainability-due-diligence-directive/compliance.md): A grounded CSDDD compliance guide covering due diligence policy, adverse impact identification, prevention, corrective action, complaints, monitoring, reporting, climate plans, and supervisory evidence. - [CSDDD contractual assurances FAQ for Articles 10 and 11](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/contractual-assurances.md): How CSDDD Articles 10 and 11 use contractual assurances with business partners, verification, SME support, action plans, and suspension or termination escalation. - [CSDDD deadlines and compliance calendar after Directive (EU) 2025/794](/artifacts/eu/corporate-sustainability-due-diligence-directive/deadlines-and-compliance-calendar.md): Current CSDDD calendar for transposition, application phases, Article 16 reporting exceptions, Commission guidance dates, and practical compliance evidence. - [CSDDD due diligence checklist](/artifacts/eu/corporate-sustainability-due-diligence-directive/checklist.md): A grounded CSDDD checklist for scope, due diligence policy, chain-of-activities risk mapping, impact prioritisation, action plans, complaints, monitoring, communication, climate planning, and evidence. - [CSDDD Due Diligence Steps Playbook for Articles 5 and 7-16](/artifacts/eu/corporate-sustainability-due-diligence-directive/due-diligence-steps-playbook.md): A grounded playbook for the CSDDD due diligence sequence: policy integration, impact assessment, prioritisation, prevention, correction, remediation, stakeholder engagement, complaints, monitoring, communication, and evidence. - [CSDDD FAQ: scope, dates, duties, liability, and evidence](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq.md): Practical answers on CSDDD scope, current application dates, chain of activities, due diligence duties, complaints, remediation, civil liability, climate plans, and evidence. - [CSDDD franchising and licensing scope FAQ](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/franchising.md): FAQ on when franchise or licensing networks can fall within Article 2 of the EU CSDDD, including royalties, turnover, EU and non-EU treatment, and evidence. - [CSDDD grievance and remediation workflow guide](/artifacts/eu/corporate-sustainability-due-diligence-directive/grievance-and-remediation-workflows.md): Build a CSDDD grievance, notification, stakeholder engagement, and remediation workflow around Articles 12, 13, and 14 of Directive (EU) 2024/1760. - [CSDDD Liability and Penalties: enforcement, fines, and civil claims](/artifacts/eu/corporate-sustainability-due-diligence-directive/liability-and-penalties.md): A grounded guide to CSDDD supervisory enforcement, penalty mechanics, civil liability, compensation limits, evidence records, and national transposition caveats. - [CSDDD non-EU turnover threshold FAQ](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/non-eu-turnover.md): How non-EU companies should assess CSDDD scope using EU-generated turnover, group thresholds, authorised representative records, and competent authority evidence. - [CSDDD Non-EU Turnover Thresholds and Scope Waves](/artifacts/eu/corporate-sustainability-due-diligence-directive/scope-waves-and-non-eu-turnover.md): Article 2 and Article 37 CSDDD scope guide for non-EU Union turnover, group routes, franchise and licensing routes, and current application dates after Directive (EU) 2025/794. - [CSDDD Omnibus timing changes after Directive (EU) 2025/794](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/omnibus-current-date-changes.md): FAQ answer on current CSDDD Article 37 dates after Directive (EU) 2025/794 and how to separate adopted timing changes from proposal-stage Omnibus simplification. - [CSDDD penalties and fines under Article 27](/artifacts/eu/corporate-sustainability-due-diligence-directive/penalties-and-fines.md): How CSDDD Article 27 sets penalty rules, turnover-based fine caps, public decision publication, supervisory authority powers, and national transposition caveats. - [CSDDD prevention vs mitigation: potential and actual adverse impacts](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/prevention-vs-mitigation.md): CSDDD FAQ on when to prevent or mitigate potential adverse impacts, when to end or minimise actual adverse impacts, and what evidence records to keep. - [CSDDD remediation FAQ: when companies must remedy adverse impacts](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/remediation.md): FAQ on CSDDD remediation: when Article 12 requires remedy, how complaints and stakeholder engagement affect the response, and what evidence to keep. - [CSDDD Remediation Plan Template: Article 12, 13 and 14 evidence](/artifacts/eu/corporate-sustainability-due-diligence-directive/remediation-plan-template.md): A CSDDD remediation plan template for actual adverse impacts, complaint inputs, stakeholder engagement, action records, and monitoring evidence. - [CSDDD requirements: scope, due diligence, climate plan, and evidence](/artifacts/eu/corporate-sustainability-due-diligence-directive/requirements.md): A grounded map of the Corporate Sustainability Due Diligence Directive requirements across scope, due diligence policy, impact assessment, complaints, remediation, monitoring, communication, and climate transition planning. - [CSDDD risk prioritisation FAQ: severity, likelihood, and evidence](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/risk-prioritisation.md): How to prioritise CSDDD adverse impacts when teams cannot address everything at once, using severity, likelihood, stakeholder evidence, and a reviewable rationale. - [CSDDD Scope Thresholds: EU, Non-EU, Group and Franchise Routes](/artifacts/eu/corporate-sustainability-due-diligence-directive/scope-thresholds-and-in-scope-groups.md): Article 2 CSDDD scope thresholds for EU companies, non-EU Union turnover, ultimate-parent groups, franchise and licensing routes, consecutive-year tests, and evidence records. - [CSDDD scope waves: current Article 37 dates and thresholds](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/scope-waves.md): FAQ on the current CSDDD phase-in after Directive (EU) 2025/794: 26 July 2028, 26 July 2029, Article 2 scope thresholds, and evidence to retain. - [CSDDD Supplier Contract Clause Review Workflow](/artifacts/eu/corporate-sustainability-due-diligence-directive/supplier-contract-clause-review-workflow.md): Review supplier contract clauses against CSDDD Articles 10 and 11: contractual assurances, verification, SME fairness, support, action plans, and escalation evidence. - [CSDDD Supplier Contract Clauses: Articles 10 and 11 Evidence](/artifacts/eu/corporate-sustainability-due-diligence-directive/supplier-contract-clauses.md): How to use CSDDD supplier contract clauses without treating clauses as a substitute for due diligence: contractual assurances, verification, SME support, action plans, limits, and evidence. - [CSDDD supplier human rights impact scoring template](/artifacts/eu/corporate-sustainability-due-diligence-directive/supplier-human-rights-risk-scoring-template.md): A CSDDD supplier impact scoring template for Article 8 identification, Article 9 prioritisation, severity, likelihood, stakeholder input, chain-of-activities boundaries, and evidence records. - [CSDDD transition plans FAQ: Article 22 climate plan requirements](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/transition-plans.md): FAQ on CSDDD Article 22 climate transition plans: targets, decarbonisation levers, investment and funding, governance, CSRD overlap, and evidence records. - [CSDDD vs CSRD: Due Diligence and Reporting Compared](/artifacts/eu/corporate-sustainability-due-diligence-directive/csddd-vs-csrd.md): Compare CSDDD due diligence duties with CSRD sustainability reporting, including scope, timing, Article 16 reporting, evidence overlap, assurance, and enforcement. - [CSDDD vs German LkSG Comparison](/artifacts/eu/corporate-sustainability-due-diligence-directive/csddd-vs-german-lksg.md): Compare the EU CSDDD with Germany's LkSG without mixing directive duties, national-law duties, chain boundaries, complaints, reporting, and enforcement routes. - [CSDDD vs OECD Guidelines](/artifacts/eu/corporate-sustainability-due-diligence-directive/csddd-vs-oecd-guidelines.md): Compare the binding EU CSDDD with the OECD Guidelines for responsible business conduct across scope, due diligence duties, business relationships, remediation, and evidence. - [How CSDDD overlaps with OECD, UNGP, and ILO standards](/artifacts/eu/corporate-sustainability-due-diligence-directive/faq/oecd-ungp-and-ilo-overlap.md): FAQ on how OECD responsible business conduct guidance, the UN Guiding Principles, and ILO labour standards inform CSDDD due diligence without being the same legal instrument. --- [Privacy Policy](https://www.sorena.io/privacy) | [Terms of Use](https://www.sorena.io/terms-of-use) | [DMCA](https://www.sorena.io/dmca) | [About Us](https://www.sorena.io/about-us) (c) 2026 Sorena AB (559573-7338). All rights reserved. Source: https://www.sorena.io/artifacts/eu/corporate-sustainability-due-diligence-directive/chain-of-activities-boundaries