Swiss Security Network
Résumé: This study is part of a project initiated by the Swiss international cooperation community of practice, the Swiss Security Network (SSN@cinfo) led by cinfo, to better understand duty of care obligations under Swiss law. This study aimed to develop a maturity model learning tool for Swiss non-governmental organisations (NGOs) active in international cooperation to understand and assess what safety and security risk management processes should be taken so that organisations can improve their duty of care towards employees working outside of headquarters (i.e., those travelling or based overseas).
This report is based on information gathered from a review of existing literature on duty of care, as well as responses to an online survey that gathered input from twenty-six head office-based security focal points from major European and American NGOs. The literature review and survey were complemented by in-depth key informant interviews with staff from different European aid organisations. Contributing organisations to the survey and key informant
interviews include Oxfam, Mines Advisory Group (MAG), Norwegian Refugee Council (NRC), ZOA, Free Press Unlimited, and CBM.
The key findings of the study were that duty of care under Swiss law is primarily defined within Article 328 of the Swiss Code of Obligations. Under this legal framework, duty of care primarily refers to an employers’ obligation to take all necessary and feasible measures to safeguard the health, safety and integrity of their employees. Duty of care in the Swiss context can be divided into four overarching duties: 1) duty of information, 2) duty of prevention, 3) duty of monitoring, and 4) duty of intervention. Using examples of good practice from the contributors to this research, the study identified key processes that support meeting each of these four foundational duties.
Primary among these good practices were key processes that an organisation should aim to put in place to assess and mitigate safety and security risk, including measures to manage incidents if they occur. Strongly linked to these standard security risk management activities were different processes focused on informing employees of the risks they may face and measures they and their employers must take to mitigate against these. This ‘informed consent’ should take place during recruitment, onboarding, training and briefings. On the basis of the findings of this study, the working group, led by cinfo and composed of NGOs from the Swiss Security Network, jointly developed a Duty of Care Maturity Model Matrix with input from EISF.