Back to Resources

ESG Reporting for Private Companies: When Does It Start Mattering to Investors?

Raymond Shuai 28 August 2024 6 min read Sources: TCFD Recommendations 2017 · ISSB IFRS S1 and S2 Standards 2023 · FRC UK Stewardship Code 2020 · BVCA ESG Survey 2024

CFO Strategy

Share
Executive summary. Most UK growth-stage fintechs face minimal mandatory ESG reporting obligations. The rules that matter, however, are not the direct statutory obligations but the investor push-down requirements: VC and PE funds that are subject to SFDR and FCA sustainable disclosure rules must report ESG metrics on their portfolio companies, which creates a practical obligation on portfolio companies to provide that data even without a direct regulatory requirement. The time to build a proportionate ESG framework is before your next funding round, not after.

Current Mandatory Requirements for UK Private Companies

The starting point for any CFO advising a UK private company on ESG is clarity on what is currently mandatory versus what is expected or anticipated. As at August 2024, the mandatory ESG reporting landscape for UK private companies is relatively limited.

The largest UK companies above certain size thresholds must comply with the Task Force on Climate-related Financial Disclosures (TCFD) recommendations, which require disclosure of governance, strategy, risk management, and metrics and targets related to climate. The TCFD mandate in the UK applies to companies with more than 500 employees that are also either UK-premium listed, large banking or insurance firms, or above the Companies Act large company size thresholds. Most growth-stage fintechs fall well below these thresholds and have no direct TCFD obligation.

The gender pay gap reporting requirement under the Equality Act 2010 applies to employers with 250 or more employees. For a fintech with 50 or 100 employees, this obligation does not yet apply. The Streamlined Energy and Carbon Reporting (SECR) regime applies to large companies as defined by the Companies Act, again above thresholds that most growth-stage fintechs will not reach for several years.

TCFD threshold (UK)
500+Employees, plus premium listed or large company by assets/turnover. Most fintechs: not in scope.
Gender pay gap reporting
250+Employees threshold for mandatory reporting. Published annually on the government portal.
SECR (energy reporting)
Large companyCompanies Act large company size thresholds. Below these: voluntary or not required.
ISSB IFRS S1 and S2
Global sustainability disclosure standards published 2023. UK endorsement in progress. Likely to apply to listed companies first; private company application timeline unclear.

The practical conclusion is that most Series A and Series B fintechs with fewer than 200 employees have very limited direct mandatory ESG reporting obligations. The regulatory burden that matters in practice is not the direct obligation; it is the investor expectation created by the obligations that their investors face.

When ESG Starts Mattering: The Investor Push-Down

The mechanism by which ESG requirements reach growth-stage companies is through the investment chain, not through direct legislation. UK and EU fund managers who are subject to the Sustainable Finance Disclosure Regulation (SFDR) must classify their funds and disclose how sustainability factors are integrated into their investment processes. Article 8 funds (funds that "promote environmental or social characteristics") and Article 9 funds (funds with a sustainable investment objective) must report specified ESG metrics for their portfolio companies.

If your VC or PE investor manages an SFDR Article 8 or Article 9 fund, they will be required to collect and report ESG data from portfolio companies as part of their LP reporting obligations. This creates a practical, contractual requirement for the portfolio company to provide that data, even though the portfolio company itself has no direct SFDR obligation. The BVCA ESG Survey published in 2024 indicated that the majority of UK private equity firms were requesting ESG data from portfolio companies, with a significant and growing proportion making this a formal condition of investment.

"The question is not whether ESG matters for growth-stage fintechs. The question is whether it matters via a regulatory obligation or via an investor expectation. For most Series A and Series B companies, the answer is investor expectation: your VC investor's LP reporting obligations will generate an ESG data request within 12 months of investment. Better to have a framework than to scramble."

ESG Metrics That Matter Most for Fintechs and Payments Companies

For a fintech or payments company, the ESG metrics that are most relevant to investors and regulators can be grouped into the three standard pillars. The key is proportionality: a 30-person fintech with no manufacturing footprint has a very different environmental profile from a listed company with global operations. The framework should reflect the actual materiality of each metric to the business.

Environmental (E)

For most fintechs, Scope 1 and Scope 2 emissions are the primary environmental metrics. Scope 1 covers direct emissions from company-controlled sources (a negligible figure for most office-based fintechs unless they operate data centres). Scope 2 covers indirect emissions from purchased electricity and heat for the company's offices. Both are measurable from energy bills and can be quantified without specialist consultants in year one.

Scope 3 emissions (all other indirect emissions in the value chain) are more complex. For most fintechs, the most material Scope 3 categories are: Category 1 (purchased goods and services, including cloud computing emissions from AWS, Google Cloud or Azure), Category 6 (business travel), and Category 15 (investments) for lending platforms where the carbon intensity of the loan book is relevant to investors. Do not attempt to report all 15 Scope 3 categories in year one; focus on the categories that are both material and measurable.

Social (S)

Social metrics for a fintech include: employee headcount diversity (gender split at board and senior management level), employee satisfaction and turnover, fair pay metrics (gender and ethnicity pay gap data even if below the mandatory reporting threshold), and financial inclusion metrics for businesses whose product serves underserved customers. For FCA-regulated firms, SMCR accountability and Consumer Duty compliance data are social metrics of direct regulatory relevance.

Governance (G)

Governance metrics are typically the most straightforward to report because much of the data already exists in board minutes and company filings. Key metrics include: board composition (independence, diversity, size), audit and risk committee existence and composition, whistle-blower policy status, anti-bribery and corruption policy, and data protection and information security accreditations (ISO 27001, Cyber Essentials).

Building a Proportionate ESG Reporting Framework

The correct approach for a growth-stage fintech is to build ESG reporting incrementally across the first three years after fundraising, scaling the framework as the business grows and as investor expectations increase. The following roadmap reflects what is proportionate and achievable for a typical Series A or B fintech.

Year 1
Foundation: Measure What Exists
Quantify Scope 1 and 2 emissions from energy bills. Collect headcount diversity data (gender split at board and senior management). Document existing governance policies (anti-bribery, data protection, whistle-blowing). Respond to investor ESG questionnaire. Designate an ESG owner (CFO or COO). Total time cost: one to two person-days per quarter.
Year 2
Expansion: Material Scope 3 and Social Metrics
Calculate material Scope 3 categories (business travel, cloud computing). Set a Scope 1 and 2 reduction target. Conduct an employee satisfaction survey. Introduce fair pay analysis (gender pay gap even if below statutory threshold). Begin tracking key governance KPIs (board meeting attendance, committee coverage). Total time cost: three to five days of CFO or ops time per year.
Year 3
Maturity: Formal Reporting and External Assurance
Publish an annual ESG report or integrate ESG metrics into the annual report. Consider TCFD-aligned disclosures voluntarily ahead of any mandatory threshold. Seek limited assurance on Scope 1 and 2 emissions data from an independent third party. Align reporting framework to ISSB IFRS S1/S2 as they are adopted in the UK. Total time cost: five to ten days per year plus assurance costs (typically £5k–£15k).

When to Invest in Formal ESG Infrastructure

The decision to invest in formal ESG infrastructure (a dedicated sustainability manager, a carbon accounting platform such as Greenly or Watershed, or external ESG consultant support) should be triggered by specific events, not by a general sense that "ESG is important." The events that typically justify investment are: a Series B or C fundraise where the lead investor has SFDR obligations and requires comprehensive portfolio ESG data; a planned IPO within 24 months, where TCFD and ISSB-aligned disclosure will be required; a large enterprise customer procurement process that includes ESG due diligence as a selection criterion; or an acquisition process where the acquirer's ESG framework requires portfolio-level reporting.

The proportionality principle: a 30-person Series A fintech should spend no more than one to two days per quarter on ESG data collection and reporting. A 200-person Series C fintech should have a designated ESG owner and a structured reporting calendar. A 500-person pre-IPO company should have external assurance on emissions data and board-level ESG governance. Scale the investment in ESG infrastructure to the scale of the business and the investor expectations at each stage.

Key Takeaways

  • Most UK growth-stage fintechs have minimal direct mandatory ESG reporting obligations as of August 2024. The TCFD mandate, gender pay gap reporting and SECR all apply above size thresholds that most Series A and B companies have not reached.
  • The practical driver of ESG reporting is investor push-down: VC and PE funds subject to SFDR Article 8 or 9 obligations must collect ESG data from portfolio companies. If your investor manages an SFDR-regulated fund, expect an ESG questionnaire within 12 months of investment.
  • For fintechs, the most material ESG metrics are: Scope 1 and 2 emissions (environmental), gender diversity at board and senior management level (social), and board independence and governance policies (governance).
  • Scope 3 emissions reporting should be built incrementally. Focus on material categories first: business travel and cloud computing emissions are typically the most measurable Scope 3 items for an office-based fintech.
  • Build ESG reporting incrementally over three years, scaling from basic metrics in year one to formal reporting with limited assurance in year three. Do not over-invest in ESG infrastructure before the investor demand justifies it.
  • Invest in formal ESG infrastructure when a specific event triggers the need: a major fundraise, a pre-IPO process, or an enterprise customer procurement requirement that includes ESG due diligence.

Work Together

Need this applied to
your business?

CrunchSpark helps growth-stage fintechs build proportionate ESG frameworks that satisfy investor reporting requirements without unnecessary cost or management distraction.

Book a Free Discovery Call →