Better Health for All

NetSuite's ERP systems for healthcare significantly improve patient care, reduce errors, and enhance efficiency by unifying data, streamlining processes, and enabling collaboration, leading to better patient outcomes.

The company's software automates financial and administrative workflows, reducing the administrative burden on healthcare professionals and allowing them to focus on patient care, thereby strengthening workforce capacity. NetSuite provides robust data protection features, including automated audit trails, role-based access controls, data encryption, threat monitoring, and multifactor authentication, supporting compliance with HIPAA and GDPR for sensitive patient data. The company's products do not have direct safety implications for physical or mental health, nor do they carry health risks requiring disclosure. NetSuite does not offer health-related products requiring accessibility considerations, nor does its business model directly involve serving vulnerable populations with health needs or engaging in preventative health, treatment activities, or public health education. There is no evidence of NetSuite having specific health equity or mental health initiatives, or direct involvement in global health crisis response. As a software company, it does not hold healthcare-related patents, produce food or nutritional products, or conduct clinical trials, and its products do not have addiction potential. There is no quantifiable evidence of NetSuite's R&D or capital allocation aimed at improving health outcomes and accessibility, and no significant health externalities from its operations are evidenced.

Fair Pay & Worker Respect

No specific, quantitative data for NetSuite Inc. was found in the provided articles for any of the requested KPIs. Information regarding Oracle Corporation or its specific subsidiaries/regions (e.g., Oracle Global Services Limited UK

, Oracle's offices in India, Dubai, and Abu Dhabi ) could not be applied to NetSuite Inc. as a whole, as the articles did not explicitly state company-wide scope for NetSuite Inc. Additionally, data for 'N.US (NU Skin Enterprises, Inc.)' was identified but is not relevant to 'N.US (NetSuite Inc.)'.

Honest & Fair Business

NetSuite's parent company, Oracle, maintains a Code of Ethics and Business Conduct from 2017 that applies to all personnel.

This code includes a "no tolerance" policy for corruption and bribery, explicitly prohibiting direct or indirect bribery of government officials and facilitation payments. It also requires partners and suppliers to comply with anti-corruption laws globally. Oracle has a formal whistleblower policy that prohibits retaliation against any employee who raises a compliance issue in good faith or cooperates with an investigation. This policy is supported by a 24/7 Integrity Helpline with specific numbers for USA and EU.

No War, No Weapons

Oracle, NetSuite's parent company, is an active member of the Responsible Business Alliance (RBA)

and requires its business partners and suppliers to prohibit child labor, prison/forced labor, and physical punishment . Oracle also states it universally respects recognized human rights throughout its operations , with RBA membership implying third-party assurance of performance .

Respect for Cultures & Communities

NetSuite.org, a division of NetSuite, provides software grants to nonprofits

, including three organizations that serve indigenous or local community groups: Cartwheel Foundation, which focuses on nurturing indigenous Filipino heritage ; Virlanie Foundation, which serves children in residential homes ; and Hapinoy, which works with micro-entrepreneurs in the Philippines .

Safe & Smart Tech

A critical vulnerability, identified in August 2024, allowed unauthenticated users to access sensitive customer PII on thousands of NetSuite SuiteCommerce websites due to misconfigured access controls.

This represents a significant incident of unauthorized data access and points to below-average authentication security. While a fix for a related method was implemented, NetSuite does not provide easily accessible transaction logs, making it difficult for customers to detect exploitation, indicating moderate vulnerability management. Despite these issues, NetSuite maintains a strong regulatory compliance program, adhering to CCPA, GDPR (via BCR-p), ISO 27001, ISO 27018, PCI DSS, PA-DSS, SOC 1 Type 2, SOC 2 Type 2, and the EU Cloud Code of Conduct. The company uses industry-standard encryption. , oversees privacy by design. , and implements very good data minimization practices with short retention periods for operational data (30-90 days for some data, 1 year for facility visits). Users are provided with good control over their data, including rights to opt-out, delete, change, object, and access personal information. NetSuite also undergoes external SOC 1 Type 2 and SOC 2 Type 2 audits.

Zero Waste & Sustainable Products

Oracle, NetSuite's parent company, recycles or reuses 99.4% of all processed hardware.

The company has achieved a 63% reduction in RE&F waste to landfill since 2015 and a 33% reduction in waste to landfill per square foot. Oracle's waste management program includes recycling and composting at offices, employee awareness programs, and education on minimizing waste to landfill, and it supports local recycling kiosks in Nigeria. Oracle has a 'Design for the Environment' program that enables engineers to consider environmental impacts, including recyclability, during hardware design, and Oracle Cloud promotes a circular economy by repurposing equipment. For hazardous waste, Oracle partners with local compliance programs to collect and recycle waste portable batteries. The company engages with indirect and direct suppliers to report data on their waste footprints and educates them about waste-related goals, and has an Excess and Obsolete (E&O) program for supplier materials. Oracle provides customers with information on how to return products.