This disclosure asks an organisation to report any confirmed cases where its marketing communications did not comply with the rules or standards that apply to them. In practice, it is about whether there were breaches in how products, services or the organisation itself were promoted, and whether those breaches were identified and recorded during the reporting period.
The practical focus is on the full scope of marketing activity, not just a few visible campaigns or flagship sites. An organisation should consider where marketing is created, approved and used across its operations, and report incidents wherever they occurred, so readers can see whether non-compliance was isolated or part of a wider pattern.
This LRA educational guidance supports disclosure preparation. For the exact requirements, always refer to the official GRI source.
A quick mental checklist before you prepare this disclosure — tick each as you settle it.
Key datapoints to prepare
How to prepare it
Request the marketing compliance incident log
Translate the disclosure into an internal business question — then adapt it to your organisation's own language.
Use your organisation’s own labels first (for example, campaign review, brand approvals, promotions, sponsorships, complaints, breaches, or regulatory matters), then map them to the disclosure. Keep the request in business language your team already uses, and check the source material before sign-off.
Please provide the incidents of non-compliance concerning marketing communications for the reporting period.
Why it fails: This uses framework wording that many operational teams will not use day to day, so it is easy to misunderstand, under-scope, or answer with the wrong register. It also does not say what to include, how to count items, or whether older activity identified now should be flagged.
Please pull the marketing compliance cases for [reporting period] from your tracker or case log, covering advertising, promotions, sponsorships, and similar activity. Include any matters first identified this period that relate to earlier activity, and confirm if there were no issues. Use your team’s own labels, include the case ID and source record, and send the count plus a short summary by [date].
Notes that turn data into a disclosure
LRA training templates — adapt them to your organisation, and check the official source before sign-off.
State how you counted each relevant case, including what you treated as a reportable incident and whether you included matters first identified now or linked to an earlier period.
Explain what the figures mean for the business by saying whether there were any relevant breaches, how many were recorded, and whether any were connected to past periods.
If the number changed materially, note the main operational or control-related reasons for the movement and say whether any cases were carried over from an earlier period.
Preparation tools & forms
Professional preparation tools for GRI 417-3 — free with an LRA Community membership. Register once (it's free) and every download unlocks, together with the Disclosure Library, templates and the LRA AI-assistant.
For each claim, check the evidence
Evidence pack to prepare
Common reporting gaps
Mistakes to avoid when collecting the data
Where judgement is often needed
Illustrative examples
Synthetic, written by LRA — not from a company report, not text from any standard.
*Synthetic example for illustration only.* During the year, we recorded **2** marketing-related breaches of external rules and our own promotional code, giving an incidence rate of **2 incidents per 100 campaigns**. One case was first raised in the current year; the other related to a prior period and was identified after year-end review. We did not identify any other such breaches in the period.
This example shows how to report a small number of marketing-communications compliance issues, including one that belongs to an earlier period but was found later. The incidence rate is expressed as a simple normalised measure so readers can compare across years or business units.
*Synthetic example for illustration only.* We found **no** breaches of the rules or voluntary commitments that govern our advertising, sales promotion, or sponsorship activity, so the total number of incidents for the year was **0** and the incidence rate was **0 per 1,000 patient-facing communications**. Because there were no cases, there were also no matters carried over from an earlier period. In plain terms, we have not identified any non-compliance in this area.
This example shows the zero-reporting route: state the absence of incidents, give a zero incidence measure, and make clear that nothing from a prior period was identified either. It is useful where the organisation has reviewed the area and found no issues.
How companies report GRI 417-3
Real reports where this topic is disclosed. These are report practice, not exact disclosure templates to copy.

Scenarios to work through
During the year, the business settled one complaint about a promotional email that breached a trade body code. The issue was raised and closed in the same reporting year, and there were no other cases.
A regulator finalised a case this year about an advert published last year. The matter was about a past campaign, but the decision and any finding arrived during the current reporting period.
The company reviewed all advertising, sponsorship and sales-promotion activity and found no breaches of laws or voluntary industry codes. Internal checks and legal review support that conclusion.
Two separate complaints were upheld this year: one about a social media advert and one about a sponsored event banner. A third complaint was dismissed and did not lead to any finding.
Related framework references
How this disclosure maps across the major reporting frameworks.
Questions this page answers
The page says to prepare four datapoints: prior-period breaches, whether a breach occurred, the count of marketing breaches, and a no-breaches statement. Use those as the starting point for your data request and draft structure.
Use the page’s step-by-step preparation section to define the reporting scope before collecting data. The page is set up to help you decide what sits in scope, then gather the matching breach information and evidence.
The page is designed for sustainability/ESG managers, HR or data owners, and assurance reviewers, so ownership should sit with the team that can confirm the breach data and supporting evidence. The workbook can help you assign tasks and track what each owner needs to provide.
The page includes an evidence pack with five items for assurance readiness, plus five assurance claims to verify. Use those to build a file that links each claim to the risk and the supporting evidence.
The page says there are five claims to verify, each with a linked risk and evidence point. In practice, use them as a checklist to test whether the draft disclosure is supported and whether anything is missing from the evidence pack.
The page lists common reporting gaps and mistakes so you can check for missing breach data, weak evidence, or an incomplete no-breaches statement. It is useful as a pre-submission review before the draft goes to assurance.
The workbook is one of the page downloads and is meant to support preparation and assurance readiness. Use it to organise the datapoints, evidence, and ownership before turning the information into a draft.
The printable Library Card is a quick reference version of the page content. It is useful when you want the disclosure checklist, evidence prompts, and draft-building points in a format you can share or annotate offline.
The page includes draft-output support with visualisation ideas, narrative starters, and a GRI content-index line. Use those to convert the prepared datapoints and evidence into a short, structured draft.
The page says ESRS S4 (Consumers and End-users) is the closest correspondence, so the same underlying data may be reusable across both. Treat that as a cross-framework starting point, then check the specific reporting needs separately.
Get your GRI 417-3 tools — free
Your preparation tools are free for LRA Community members and students. Register once (it's free) and your download starts right away — plus the Disclosure Library, templates and the LRA AI-assistant.
You're in — your download is starting
Your file is downloading now. Your Community Cabinet — with the Disclosure Library, templates and the LRA AI-assistant — is ready too.
Open your Cabinet →