Service · Sustain

Sustain — compliance & sustainability

The green axis that makes transformation last: ESG dashboards (GRI, IFRS S1/S2-ISSB, TCFD), science-based targets (SBTi) and CDP, cybersecurity (ISO/IEC 27001, 27701), green-finance data readiness and data-protection (KVKK) compliance.

Updated: 13 June 2026 The figures and legal references on this page are based on official/primary sources.

Sustain: making transformation last

Sustain is the green axis of the “measure, transform, sustain” loop. It takes the data you gathered in Measure and processed in Transform, and makes carbon, energy and compliance permanent. The guiding principle is our brand’s honesty pledge: transformation is not a one-off certificate but an engineering discipline that is measured, managed and sustained.

Instead of scattered spreadsheets and data gathered once a year in a panic, this service builds a continuous, auditable compliance infrastructure fed from a single source of truth. The four areas below — ESG reporting, science-based targets, cybersecurity and green-finance/data-protection compliance — are its load-bearing pillars. Certification, accredited verification and target validation we run with solution partners; you can see the split of roles in the working model on the Services page.

ESG dashboards & continuous monitoring

Sustainability reporting is a multi-framework world today; authority lies in using these together without confusing them. We feed three core frameworks from a single database:

  • GRI Universal Standards (2021) — multi-stakeholder, impact-oriented reporting; in force since 1 January 2023.
  • IFRS S1 / S2 (ISSB) — financially material sustainability and climate information for investors; published 26 June 2023, effective 1 January 2024, and fully incorporating TCFD.
  • TCFD — the four-theme framework for climate-related financial disclosure; disbanded on 12 October 2023, with monitoring passed to the IFRS Foundation.

Dashboards turn the Scope 1-2-3 data from the Measure layer into live indicators and threshold alerts — continuous monitoring rather than a once-a-year report.

FrameworkPriorityFor whomStatus
GRI 2021Impact materialityAll stakeholdersIn force (1 Jan 2023)
IFRS S1/S2Financial materialityInvestorsIn force (1 Jan 2024)
TCFDClimate financial riskInvestor / regulatorFolded into IFRS S2 (2023)
CDPEnvironmental disclosureCustomer / investorAligned with IFRS S2 (2024)

Science-based targets (SBTi) & CDP

What lifts a carbon target from a voluntary intention to a verifiable commitment is a scientific basis and independent validation. SBTi (the Science Based Targets initiative) requires corporate targets to align with the Paris Agreement’s 1.5°C pathway and to cover Scope 1, 2 and 3. The current Corporate Net-Zero Standard is v2.0 (11 June 2026).

Once a target is set, progress must be disclosed. CDP is the global environmental disclosure platform and, since 2024, is fully aligned with IFRS S2. Within this service we build the target inventory, prepare the SBTi submission data, and produce — from a single source — the data needed to answer the CDP questionnaire. This is the evidence layer that separates your green transition commitment from greenwashing.

Cybersecurity: the precondition for digital

Sustainability data is only trustworthy when it is secure. Digitalisation and automation widen the attack surface (IEA, 2021); your metering and reporting systems can become a target. That is why we treat cybersecurity not as a separate topic but as a precondition of the digital transition.

Two foundational standards: ISO/IEC 27001:2022 establishes the information security management system (ISMS); ISO/IEC 27701:2019 adds privacy information management (PIMS) and systematises GDPR and KVKK compliance. We apply these frameworks — as the standards we work to, not as a certification claim. On the digital transition page we explain in more detail why this ground is essential.

Data for green finance & data-protection compliance

Access to green finance opens with data, not narrative. We prepare data for two regulatory frameworks:

  • EU Taxonomy (Regulation (EU) 2020/852) — data proving that an activity makes a “substantial contribution” to at least one of six environmental objectives, does “no significant harm” (DNSH) to the others, and meets minimum safeguards.
  • European Green Bond Standard (Regulation (EU) 2023/2631, OJ 30 November 2023) — auditable tracking that documents the alignment of the use of proceeds with the Taxonomy.

The legal foundation for all this data flow is Türkiye’s data-protection law, KVKK (Law 6698, Official Gazette 7 April 2016): duties of disclosure, data security and VERBİS registration. Building ESG data management in line with KVKK is the legal safeguard of reporting.

What we offer

01

ESG / sustainability dashboards

Continuously monitored dashboards feeding the GRI, IFRS S1/S2 (ISSB) and TCFD frameworks from a single database.

02

SBTi & CDP support

A science-based target inventory, SBTi submission data, and single-source data for answering the CDP questionnaire.

03

Cybersecurity foundation

Secure, privacy-compliant data infrastructure built to the ISO/IEC 27001 (ISMS) and ISO/IEC 27701 (PIMS) frameworks.

04

Green finance & data protection

Auditable data preparation for the EU Taxonomy and green bonds; KVKK-compliant ESG data management.

Back to the loop

Sustain closes the loop and links back to Measure: each reporting cycle gives rise to new measurement targets. This service makes concrete the green axis of the twin transition; together with Measure and Transform it completes our three-step methodology. We gather, with sources, why organisations should start now on the Why the twin transition? page.

Frequently asked questions

What is the difference between GRI, IFRS S1/S2 and TCFD?

GRI is a multi-stakeholder, impact-oriented reporting standard. IFRS S1/S2 (ISSB) provides investors with financially material sustainability information and fully incorporates the TCFD recommendations. TCFD was disbanded on 12 October 2023; its monitoring role passed to the IFRS Foundation. Most organisations use these frameworks together, fed from a single database.

Is a science-based target (SBTi) the same as an ordinary carbon target?

No. SBTi (the Science Based Targets initiative) requires targets to be scientifically aligned with the Paris Agreement’s 1.5°C pathway and to cover Scope 1, 2 and 3. The current Corporate Net-Zero Standard is v2.0 (11 June 2026). What sets it apart from a voluntary carbon target is independent validation and a clear methodology.

Why is cybersecurity part of a sustainability service?

Because digitalisation and automation widen the attack surface (IEA, 2021). The metering and reporting systems that produce sustainability data are only trustworthy when they are secure. ISO/IEC 27001:2022 (information security management) and ISO/IEC 27701:2019 (privacy information management, supporting GDPR/KVKK) establish that secure foundation.

What data do the EU Taxonomy and a green bond require?

The EU Taxonomy (Regulation (EU) 2020/852) requires data proving that an economic activity makes a “substantial contribution” to at least one of six environmental objectives, does “no significant harm” (DNSH) to the others and meets minimum safeguards. The European Green Bond Standard (Regulation (EU) 2023/2631) documents the alignment of the use of proceeds with the Taxonomy. Both demand an auditable, traceable data infrastructure.

How is data-protection compliance related to sustainability reporting?

Sustainability reporting also processes employee, supplier and customer data. Türkiye’s data-protection law (KVKK, Law 6698, Official Gazette 7 April 2016) imposes duties of disclosure, data security and VERBİS registration. Building ESG data management in line with KVKK is the legal foundation of reporting; ISO/IEC 27701 makes that compliance systematic.

Sources

  1. IFRS S1 & S2 — ISSB sustainability disclosure standards ifrs.org ↗
  2. GRI — Universal Standards (GRI 1/2/3) globalreporting.org ↗
  3. SBTi — Corporate Net-Zero Standard sciencebasedtargets.org ↗
  4. CDP — Environmental disclosure platform cdp.net ↗
  5. ISO/IEC 27001 — Information security management system iso.org ↗
  6. EU Taxonomy — Regulation (EU) 2020/852 eur-lex.europa.eu ↗
  7. European Green Bond Standard — Regulation (EU) 2023/2631 eur-lex.europa.eu ↗
  8. KVKK — Türkiye’s Personal Data Protection Law No. 6698 kvkk.gov.tr ↗

Looking for where to start your digital or green transformation?

Starting with İkiz Eksen is simple: we first measure where you stand and build your roadmap together. You begin with a single step, not a large programme.

Get in touch Explore services