UNGPs Compass for tech regulation

A Policymaker’s Guide on how to apply the UNGPs to require rights-respecting corporate responsibility

Executive summary

This OHCHR B-Tech guide provides policymakers with a framework for applying the UN Guiding Principles on Business and Human Rights to technology regulation. It aims to help lawmakers align regulatory initiatives for technology companies with international human rights standards.

The guide presents the UNGPs Compass as a step-by-step tool for policy and legislative drafting. It is based on four stages: scoping the problem and objective, analysing regulatory gaps, configuring a “smart mix” of measures, and designing oversight and accountability.

The paper stresses that regulation should be evidence-based and informed by meaningful engagement with affected communities, civil society, experts and other stakeholders.

It also notes that policymakers should assess whether existing laws already address the relevant risks, and whether they are effective in practice. This includes reviewing areas such as data protection, cybercrime, corporate law, commercial law, labour law and content governance.

The guide recommends a proportionate mix of legal and voluntary measures. These may include human rights due diligence obligations, transparency requirements, liability rules, grievance mechanisms, audits, certifications and industry standards.

A central point is that technology companies may cause, contribute to, or be directly linked to human rights harms. Regulation should reflect these different relationships to harm and should prioritise risks based on severity, including scale, scope and remediability.