Under the CSDDD, prevention and mitigation are mainly the Article 10 response to potential adverse impacts. Article 11 applies once an adverse impact is actual: the company must bring it to an end or, if that cannot happen immediately, minimise its extent.
Use this page to separate potential-impact controls, actual-impact corrective actions, stakeholder engagement, monitoring, and evidence records.
Structured answer sets in this page tree.
Cited legal and guidance references.
CSDDD teams should not use prevention, mitigation, ending an impact, and minimising an impact as interchangeable labels. The Directive separates the work by impact status: identify and prioritise actual and potential adverse impacts, prevent or adequately mitigate potential adverse impacts, and bring actual adverse impacts to an end or minimise their extent where they cannot immediately be ended.
Compare the CSDDD response for potential adverse impacts with the response for actual adverse impacts.
Article 10 work: prevent the impact where possible, or adequately mitigate it where prevention is not possible or not immediately possible.
Article 11 work: bring the impact to an end, or minimise its extent where it cannot immediately be brought to an end.
| Dimension | Potential adverse impact | Actual adverse impact | Operational implication |
|---|---|---|---|
| Scope boundary | A potential adverse human-rights or environmental impact is identified under Article 8 and then prioritised under Article 9. | An actual adverse human-rights or environmental impact is identified under Article 8 and then prioritised under Article 9. | Separate the status first. Article 10 is for potential impacts, while Article 11 applies once the impact is actual. |
| Covered actors | Prevent the potential impact; where prevention is not possible or not immediately possible, adequately mitigate it. | Bring the actual impact to an end; where it cannot immediately be ended, minimise its extent. | Write the objective in operational terms: avoided, reduced likelihood or severity, ended, or minimised. |
| Trigger | Use a prevention action plan where the nature or complexity of the prevention measures requires one, with defined timelines and indicators. | Use a corrective action plan where the actual impact cannot immediately be brought to an end, with defined timelines and indicators. | Keep plan names aligned with the impact status so records, supplier asks, and monitoring indicators are not misleading. |
| Core obligations | Measures can include contractual assurances with verification, investments, operational or purchasing-practice changes, design and distribution changes, SME support, and collaboration. | Measures can include neutralising or minimising the impact, a corrective action plan, contractual assurances with verification, investments, operational changes, SME support, collaboration, and remediation. | Do not treat supplier clauses as the only control; match measures to involvement, leverage, severity, and what would actually change the impact. |
| Evidence record | Keep the Article 8 mapping, Article 9 priority rationale, prevention action plan, verification records, SME support evidence, stakeholder input, and monitoring indicators. | Keep the actual-impact finding, corrective action plan, minimisation or ending evidence, remediation assessment, stakeholder input, complaint or notification records, and monitoring indicators. | A useful file proves the classification, the selected measures, the implementation status, and whether measures remained adequate and effective over time. |
| Timing and deadlines | If a severe potential impact cannot be prevented or adequately mitigated, Article 10 may require no new or extended relationship, an enhanced prevention action plan, suspension, or termination where legal conditions are met. | If a severe actual impact cannot be ended or minimised, Article 11 may require no new or extended relationship, an enhanced corrective action plan, suspension, or termination where legal conditions are met. | Before suspension or termination, assess whether the adverse impacts of that step could be manifestly more severe than the unresolved impact. |
| Enforcement | Potential-impact controls are enforced through Article 10 duties to prevent or adequately mitigate risks before the harm occurs. | Actual-impact controls are enforced through Article 11 duties to end the harm or minimise its extent once the harm has occurred. | The enforcement question is not whether the company has a plan at all, but whether the plan matches the impact status and the article that applies. |
| Overlap and reuse | Potential-impact work can still later become an actual-impact file if the risk materialises. | Actual-impact work should not be documented as a prevention file, even if some controls are reused. | Reuse tools and evidence where helpful, but keep the legal classification and the plan name aligned with the real status of the impact. |
| Practical decision rule | If the issue is still only a risk, use Article 10 and document prevention or mitigation measures. | If the harm is already happening or happened, use Article 11 and document ending, minimisation, and remediation steps where relevant. | Check the facts first, then pick the article. If you are still classifying the event, do not copy the same wording into both sides of the comparison. |
A potential adverse human-rights or environmental impact is identified under Article 8 and then prioritised under Article 9.
An actual adverse human-rights or environmental impact is identified under Article 8 and then prioritised under Article 9.
Separate the status first. Article 10 is for potential impacts, while Article 11 applies once the impact is actual.
Prevent the potential impact; where prevention is not possible or not immediately possible, adequately mitigate it.
Bring the actual impact to an end; where it cannot immediately be ended, minimise its extent.
Write the objective in operational terms: avoided, reduced likelihood or severity, ended, or minimised.
Use a prevention action plan where the nature or complexity of the prevention measures requires one, with defined timelines and indicators.
Use a corrective action plan where the actual impact cannot immediately be brought to an end, with defined timelines and indicators.
Keep plan names aligned with the impact status so records, supplier asks, and monitoring indicators are not misleading.
Measures can include contractual assurances with verification, investments, operational or purchasing-practice changes, design and distribution changes, SME support, and collaboration.
Measures can include neutralising or minimising the impact, a corrective action plan, contractual assurances with verification, investments, operational changes, SME support, collaboration, and remediation.
Do not treat supplier clauses as the only control; match measures to involvement, leverage, severity, and what would actually change the impact.
Keep the Article 8 mapping, Article 9 priority rationale, prevention action plan, verification records, SME support evidence, stakeholder input, and monitoring indicators.
Keep the actual-impact finding, corrective action plan, minimisation or ending evidence, remediation assessment, stakeholder input, complaint or notification records, and monitoring indicators.
A useful file proves the classification, the selected measures, the implementation status, and whether measures remained adequate and effective over time.
If a severe potential impact cannot be prevented or adequately mitigated, Article 10 may require no new or extended relationship, an enhanced prevention action plan, suspension, or termination where legal conditions are met.
If a severe actual impact cannot be ended or minimised, Article 11 may require no new or extended relationship, an enhanced corrective action plan, suspension, or termination where legal conditions are met.
Before suspension or termination, assess whether the adverse impacts of that step could be manifestly more severe than the unresolved impact.
Potential-impact controls are enforced through Article 10 duties to prevent or adequately mitigate risks before the harm occurs.
Actual-impact controls are enforced through Article 11 duties to end the harm or minimise its extent once the harm has occurred.
The enforcement question is not whether the company has a plan at all, but whether the plan matches the impact status and the article that applies.
Potential-impact work can still later become an actual-impact file if the risk materialises.
Actual-impact work should not be documented as a prevention file, even if some controls are reused.
Reuse tools and evidence where helpful, but keep the legal classification and the plan name aligned with the real status of the impact.
If the issue is still only a risk, use Article 10 and document prevention or mitigation measures.
If the harm is already happening or happened, use Article 11 and document ending, minimisation, and remediation steps where relevant.
Check the facts first, then pick the article. If you are still classifying the event, do not copy the same wording into both sides of the comparison.
Prevention is the first Article 10 objective for a potential adverse impact: stop the impact from occurring where possible. Mitigation is the Article 10 fallback where prevention is not possible or not immediately possible: reduce the likelihood, severity, or conditions that could allow the potential impact to occur.
For an actual adverse impact, the vocabulary changes. Article 11 requires companies to bring the impact to an end. If the impact cannot immediately be brought to an end, the company must minimise its extent and use corrective measures proportionate to the severity of the impact and the company's implication in it.
Article 10 covers preventing or adequately mitigating potential adverse impacts; Article 11 covers bringing actual adverse impacts to an end or minimising their extent.
The EUR-Lex summary describes the CSDDD due diligence duty as addressing potential and actual human-rights and environmental adverse impacts.
Start with the Article 8 identification record. Map the company's own operations, subsidiaries, and relevant chains of activities, then decide whether the finding is a potential adverse impact or an actual adverse impact. If multiple impacts cannot be addressed at the same time, Article 9 requires prioritisation based on severity and likelihood.
The classification should also record involvement and leverage. Articles 10 and 11 both ask whether the company caused, jointly caused, contributed through acts or omissions with a subsidiary or business partner, or is linked through a business partner in the chain of activities, and whether the company can influence the relevant business partner.
Articles 8 and 9 require identification, assessment, mapping, in-depth assessment, and prioritisation of actual and potential adverse impacts.
The Commission page summarises the core due diligence duty as identifying and addressing potential and actual adverse impacts in own operations, subsidiaries, and relevant business partners.
For potential adverse impacts, Article 10 lists measures that may be relevant depending on the circumstances. A prevention action plan is needed where the nature or complexity of the measures requires one, and it should include reasonable and clearly defined timelines plus qualitative and quantitative indicators for improvement.
The plan should not stop at supplier clauses. Article 10 also points to investments, operational adjustments, purchasing-practice changes, design and distribution changes, targeted SME support, and collaboration where that increases the company's ability to prevent or mitigate the potential adverse impact.
Article 10 lists potential-impact prevention and mitigation measures, including prevention action plans, contractual assurances, investments, business changes, SME support, and collaboration.
Once the impact is actual, the response should be managed as Article 11 work. The first objective is to bring the impact to an end. If that cannot happen immediately, the company must minimise the extent of the impact, and Article 11 measures include neutralising the impact or minimising its extent, corrective action plans, contractual assurances, investments, operational changes, SME support, collaboration, and remediation where Article 12 applies.
A corrective action plan is not the same thing as a prevention action plan. It should be tied to the specific actual impact, use reasonable and clearly defined timelines, and include qualitative and quantitative indicators for measuring improvement.
Article 11 sets the actual-impact response, and Article 12 addresses remediation where a company caused or jointly caused an actual adverse impact.
Articles 10 and 11 treat suspension or termination as last-resort measures, not the first response. For potential impacts that cannot be prevented or adequately mitigated, an enhanced prevention action plan may use or increase leverage through temporary suspension if there is a reasonable expectation that the effort will succeed. If there is no such expectation, or if the enhanced plan fails and the potential adverse impact is severe, termination may be required where the law governing the relationship allows it.
For actual impacts, the parallel last-resort route is an enhanced corrective action plan and, where necessary, termination if the actual adverse impact is severe. Before suspension or termination, the company must assess whether the adverse impacts of doing so can reasonably be expected to be manifestly more severe than the impact that could not be addressed.
Articles 10(6) and 11(7) set last-resort steps for severe unresolved potential or actual impacts, including enhanced action plans, suspension, termination, notice, and review.
The useful record is an impact file, not a generic memo. It should let a reviewer see the identified impact, the Article 10 or Article 11 classification, the prioritisation basis, stakeholder input, measures selected, implementation status, and monitoring result.
Article 15 requires periodic assessments of operations and measures, including subsidiaries and relevant business partners, to monitor the adequacy and effectiveness of identification, prevention, mitigation, bringing to an end, and minimisation. Those assessments should be based where appropriate on qualitative and quantitative indicators and be updated after significant changes, at least every 12 months, and when reasonable grounds indicate new risks may arise.
Articles 13 to 15 support stakeholder-engagement, complaints, notification, and monitoring records for prevention, mitigation, ending impacts, and minimising their extent.
Use this CSDDD FAQ to separate potential-impact prevention, potential-impact mitigation, actual-impact corrective measures, stakeholder input, and monitoring evidence.
"should be clearly distinguished"
"preventing and mitigating potential problems, bringing actual ones to an end"
"identifying and addressing potential and actual adverse human rights and environmental impacts"