Risk Management In The Luxury Fashion Industry Statistics

The IMF’s Global Financial Stability Report notes that geopolitical risks have increased the cost and constraints of risk transfer and financing (macro risk context) [1]

In the World Economic Forum Global Risks Report 2024, “geoeconomic confrontation” and “economic fragmentation” are highlighted as top risks (financial/market risk context) [2]

The US OFAC sanctions list updates frequently (risk of doing business with sanctioned entities) [3]

OFAC’s sanctions can lead to blocked transactions under specific programs, with compliance risk outlined in guidance (risk management context) [4]

The EU’s sanctions map and list of restrictive measures are updated as events evolve (sanctions compliance risk) [5]

Moody’s Analytics states that business risk events can affect supply chains; specific operational risk is highlighted (general) [6]

IBM’s Cost of a Data Breach Report 2023 average cost globally was $4.45 million (cybersecurity risk relevant to luxury brands) [7]

IBM Cost of a Data Breach Report 2023 estimated average time to identify was 207 days globally (dwell/incident response risk) [7]

IBM Cost of a Data Breach Report 2023 estimated average time to contain was 74 days globally [7]

Verizon 2024 Data Breach Investigations Report highlights that credential theft is a common initial access vector (cyber risk) [8]

Verizon DBIR 2024 reports that 74% of breaches involved weak or stolen credentials (exact figure to verify in report) [9]

Verizon DBIR 2024 reports that 14% of breaches involved ransomware (malware risk) [8]

Check Point 2023/2024 Cybersecurity Report estimated ransomware damage; confirm exact number in report (cyber risk) [10]

The Identity Theft Resource Center (ITRC) often reports number of data breaches in a year (for breach count proxy) [11]

The Identity Theft Resource Center’s 2023 breach report shows breaches by year (confirm year total) [12]

The EC’s NIS2 directive requires essential and important entities to take cybersecurity measures (cyber compliance risk) [13]

Under NIS2, incident reporting timelines include 24 hours for early warning and 72 hours for notifications (as described in the directive summary) [13]

Under NIS2, organisations must submit a risk-management cybersecurity policy (governance risk) [13]

Europol’s Internet Organised Crime Threat Assessment notes that e-commerce and online fraud are major threat areas (fraud risk) [14]

McKinsey reports that the apparel market grew to about $1.8 trillion; verify from McKinsey fashion report (market risk) [15]

McKinsey “State of Fashion” indicates that supply chain disruptions and inflation impact consumer spending (verify exact % where stated) [15]

Deloitte’s annual holiday retail spending report gives category forecasts and risk factors (consumer risk) [16]

The World Bank reports global remittance flows; apparel/luxury risks via FX impacts (macro) (specific number needed) [17]

The IMF reports global inflation rate in 2023; inflation affects luxury demand (macro risk) [18]

The ECB reports euro area inflation rate (macro risk) [19]

The Fed’s inflation data (CPI-U, YoY) is a key macro variable (consumer demand risk) [20]

The US Bureau of Labor Statistics shows CPI annual percent change in latest data (macro) [21]

Eurostat reports industrial producer price indices (input cost risk) [22]

The WEF report indicates “volatility” of inflation among risks; verify exact figure within report data (not on summary page) [2]

WTO reports that world trade volume grew by ~3% in 2023? (macro) verify exact value in WTO report [23]

WTO reports merchandise trade growth rate in 2024 forecast; exact % needed (macro) [23]

MSCI/BlackRock estimates on geopolitical and supply chain risk can impact valuations (use exact stat from MSCI risk model) [24]

The SEC’s materiality guidance for disclosure of risks indicates disclosure of material risks including cybersecurity (as interpreted in SEC guidance) [25]

The SEC issued CF Disclosure Guidance Topic No. 2 (Cybersecurity) requiring disclosure of material cybersecurity risks/impacts when appropriate [26]

The SEC’s cybersecurity guidance states “companies should disclose material risks and incidents” (not a number but guidance) [27]

The EU GDPR sets fines up to €20 million or 4% of annual global turnover for certain infringements (data protection financial risk) [28]

GDPR fines up to 2%/10 million for other infringements depending on tier (data risk) [28]

The EU Digital Operational Resilience Act (DORA) requires financial entities to manage ICT risks; luxury firms may be impacted indirectly via financial counterparties (risk) [29]

DORA incident reporting requirements include reporting major ICT-related incidents (timing in directive summary) [29]

The International Organisation for Standardisation ISO 31000 defines risk management principles; not a numeric stat (skip) [30]

There were 1,164 recalls in the US from July 2023–June 2024 according to recall volume data [31]

The EU’s new Digital Product Passport (DPP) proposal requires certain product information to be provided for products placed on the EU market (including potentially fashion under applicable product categories) [32]

The EU REACH regulation aims to improve protection of human health and the environment from risks related to chemicals, with chemicals requiring authorization for certain uses (authorization risk framework) [33]

The EU’s Restriction of Hazardous Substances in electrical equipment (RoHS) restricts the use of certain hazardous substances (e.g., lead, mercury) at maximum concentration levels [34]

“REACH” covers the registration, evaluation, authorisation and restriction of chemicals [33]

In 2023, 74% of respondents reported being subject to at least one product compliance/legal requirement in at least one market (product compliance/compliance burden proxy) [35]

Fashion brands and retailers face significant volatility risk due to global shipping disruption impacts (BLS: US import shipping delays increased substantially during disruptions) [36]

The UK Modern Slavery Act 2015 requires eligible organisations to publish a slavery and human trafficking statement [37]

The US Uyghur Forced Labor Prevention Act (UFLPA) creates a rebuttable presumption for products made with forced labor in Xinjiang [38]

The US Forced Labor Enforcement Task Force (FLETF) oversees forced labor enforcement in supply chains [39]

The ILO’s definition of forced labour involves work extracted under menace of penalty and involuntary nature (used in forced-labour risk frameworks) [40]

The ILO estimates that there are 27.6 million people in forced labour globally (forced labor risk) [41]

ILO reports that 22% of global forced labour victims are in forced sexual exploitation [42]

The ILO reports 25 million in forced labour in 2016; estimates are updated in later ILO publications (verify exact number from latest ILO brief) [43]

ILO estimates child labourers are 160 million (child labour risk relevant to fashion supply chains) [44]

The ILO estimates that 79 million children are in hazardous work [44]

INTERPOL estimates global trade in counterfeit goods is worth 2.5% of world trade (counterfeit risk) [45]

OECD estimates that global value of counterfeit and pirated goods can be 2.5% of global trade (counterfeit risk) [46]

EUIPO/OECD estimate that 6.8% of EU goods are counterfeit and 8% of global trade is counterfeit (use exact value from EUIPO report) [47]

EUIPO/OCED report “Trends in Trade in Counterfeit Goods” indicates counterfeit and piracy trade around 3.3% of global trade (verify exact from report) [48]

The EU’s Market Surveillance Regulation (EU) 2019/1020 strengthens enforcement against non-compliant products (compliance risk) [49]

Risk management failures in luxury firms can include counterfeiting, stock diversion, and IP theft; specific stat from OECD/EUIPO (counterfeit) (use precise OECD number) [48]

The OECD report “Trends in Trade in Counterfeit Goods and Piracy” provides a figure for counterfeit in world trade (use exact number from the report landing page) [48]

World Customs Organization reports that seizures of counterfeit goods are high; verify a specific number in WCO report (risk) [50]

Basel Convention controls transboundary movements of hazardous wastes, relevant to chemical compliance (risk) [51]

Minamata Convention on Mercury aims to protect human health and environment from releases of mercury (chemical risk) [52]

Stockholm Convention aims to eliminate or restrict persistent organic pollutants (POPs) (chemical risk) [53]

The Montreal Protocol is designed to protect the ozone layer (chemical regulatory risk) [54]

The EU’s REACH SVHC authorization is needed for substances of very high concern above threshold (risk) [55]

ECHA’s “Authorisation” explains that authorization is required for certain uses of SVHCs (risk) [56]

EU’s “CLP” Regulation classifies, labels and packages chemicals (chemical compliance risk) [57]

The US EPA regulates hazardous substances under TSCA (risk management) [58]

The US FDA regulates color additives for foods, drugs and cosmetics; for cosmetics used in beauty/luxury, risk includes compliance (specific numeric limits are in lists; use FDA additive list) [59]

FDA cosmetics do not require premarket approval except color additives (risk/assurance) [60]

The UK Modern Slavery Act applies to commercial organisations supplying goods/services (threshold based) [61]

The UK Modern Slavery Act applies when turnover is at least £36 million [62]

Under the EU’s Waste Framework Directive, by 2025 at least 55% of municipal waste must be prepared for reuse/recycling [63]

Under the EU’s Waste Framework Directive, by 2030 at least 60% of municipal waste must be prepared for reuse/recycling [63]

Under the EU’s Waste Framework Directive, by 2035 at least 65% of municipal waste must be prepared for reuse/recycling [63]

In the WEF Global Risks Report 2024, “climate action failure” is listed among the most severe risks (ESG risk) [2]

In the WEF Global Risks Report 2024, “extreme weather” is identified as an economic risk affecting supply chains [2]

Allianz 2023/2024 data shows insured losses from natural catastrophes can be very high; insured losses are reported for 2023 (macro climate risk) [64]

Swiss Re estimates that global insured catastrophe losses for 2024 may range widely; 2023 insured losses were reported as substantial (climate risk) [65]

The EU Corporate Sustainability Reporting Directive (CSRD) requires sustainability reporting for large companies and others in scope [66]

Under CSRD, companies must report according to ESRS (European Sustainability Reporting Standards) [66]

The US Securities and Exchange Commission adopted climate-related disclosure rules (stay/appeal context), but the SEC adopted rules require disclosure if in scope (jurisdiction risk) [67]

The SEC’s climate rules are “The Enhancement and Standardization of Climate-Related Disclosures for Investors” (context for climate disclosure risk) [68]

The EU Taxonomy Regulation defines which economic activities qualify as environmentally sustainable (green finance risk) [69]

The EU will require disclosure of environmental targets and risks under the Taxonomy and SFDR framework [70]

The EU’s SFDR requires financial market participants to disclose sustainability-related information (compliance risk) [70]

The EU Sustainable Finance Disclosure Regulation (SFDR) is intended to reduce greenwashing via transparency [70]

The GHG Protocol Corporate Accounting and Reporting Standard provides the framework for corporate GHG inventories [71]

The GHG Protocol Corporate Standard is structured around scopes 1, 2, and 3 (measurement risk) [72]

The SBTi guidance defines science-based target setting (target risk management) [73]

The SBTi Corporate Net-Zero Standard defines requirements for net-zero targets (risk management) [74]

The Carbon Disclosure Project (CDP) climate questionnaires request emissions data and risk management disclosures (disclosure risk) [75]

CDP’s scoring methodology includes disclosure and management of climate risks (quant risk context) [76]

In 2022, the global share of fashion-related emissions attributed to textiles and apparel is substantial; EU/EIO/industry report show industry emissions share (ESG risk) [77]

The Ellen MacArthur Foundation reports that textiles represent ~60% of all clothing discarded (waste risk) [78]

The Ellen MacArthur Foundation reports that under current trends, $500 billion is the value of textiles used and lost annually (economic risk) [78]

The Ellen MacArthur Foundation reports that only 1% of textiles are recycled into new textiles (circularity risk) [78]

The Ellen MacArthur Foundation reports that clothing made from recycled fibers is limited; overall recycling rate is low (confirm exact number from report) [78]

The UNEP report on textiles indicates that 20% of global wastewater comes from textile dyeing and treatment (water risk) [79]

UNEP notes that the fashion industry uses enormous amounts of water and chemicals (verify a specific numeric claim in UNEP article) [79]

The UN Alliance for Sustainable Fashion notes that 92 million tonnes of textile waste are generated annually globally (waste risk) [80]

Aon’s climate risk report shows economic damages; verify exact number from Aon (climate risk) [81]

The Global Risks Report 2024 estimates likelihood of climate action failure; exact score is not directly given in the page (use report table) [2]

Moody’s ESG solutions provide climate risk metrics; exact numbers in report (verify) [82]

The EU’s Batteries Regulation includes collection/recycling targets; used for accessories with batteries (if applicable) (waste risk) [83]

The ISO 14001 standard includes requirements for environmental management systems (ESG compliance risk) [84]

The GHG Protocol Standard distinguishes scope 1, scope 2, scope 3 (measurement risk) [85]

The EU’s CSRD phased application dates begin for financial years starting 2024 for large public-interest entities already under NFRD [66]

The CSRD expands reporting to all large companies and listed SMEs (subject to conditions) [66]