HIPsHanzo Proposals
Back to HIPs
HIP-270DraftMeta

AI Supply Chain Responsibility

Framework for responsible sourcing of compute, hardware, and data for AI systems.

Hanzo AI Team (@hanzoai)
Created: 2025-12-17
sustainabilitysupply-chainethicsgovernance
Requires: HIP-200, HIP-250

HIP-270: AI Supply Chain Responsibility

Abstract

This HIP establishes the framework for responsible sourcing across Hanzo AI's supply chain, including compute infrastructure, hardware, data, and services. It defines standards for environmental, social, and governance criteria in supplier selection and ongoing management.

Scope

Supply Chain Categories

CategoryComponentsESG Relevance
ComputeCloud providers, data centersEnergy, carbon, labor
HardwareGPUs, servers, networkingMaterials, labor, e-waste
DataTraining data, annotationsPrivacy, labor, consent
ServicesSoftware, consulting, contractorsLabor, security, ethics

Tier Classification

TierDefinitionDue Diligence Level
Critical>$1M annual spend or core to operationsFull assessment
Significant$100K-$1M annual spendStandard assessment
Standard<$100K annual spendBasic assessment

Compute Sourcing

Cloud Provider Standards

Environmental Criteria

CriterionRequirementWeight
Renewable energy>50% renewable, trajectory to 100%High
Carbon reportingPublic Scope 1, 2, 3 emissionsHigh
PUE<1.3 averageMedium
Water usageWUE reporting, reduction targetsMedium
E-wasteResponsible disposal, circularityMedium

Social Criteria

CriterionRequirementWeight
Labor practicesFair labor certificationHigh
Supply chainConflict mineral due diligenceMedium
Community impactLocal hiring, engagementLow

Governance Criteria

CriterionRequirementWeight
SecuritySOC 2 Type II, ISO 27001High
PrivacyGDPR compliance, data residencyHigh
Business continuityDisaster recovery, SLAsMedium
TransparencyPublic sustainability reportsMedium

Provider Assessment

Current Provider Evaluation

ProviderRenewable %Carbon NeutralPUEAssessment
AWS100% by 20252040 target1.2Acceptable
GCP100% matchedCarbon neutral1.1Preferred
Azure100% by 20252030 target1.2Acceptable

Region Selection

Prioritize regions with:

  1. Lowest carbon intensity
  2. Highest renewable percentage
  3. Acceptable latency
  4. Data residency compliance

Data Center Requirements

For colocation or owned infrastructure:

RequirementStandard
Renewable energy100% or credible pathway
PUE<1.4
Water efficiencyWUE <1.0 L/kWh
CertificationsISO 14001, ISO 50001
LocationClimate-resilient, low-carbon grid

Hardware Sourcing

GPU & Server Standards

Environmental Criteria

CriterionRequirement
Manufacturer sustainabilityPublic ESG commitments
Energy efficiencyCurrent generation, efficient design
Conflict mineralsConflict-free sourcing certification
PackagingMinimal, recyclable packaging

Social Criteria

CriterionRequirement
Labor practicesRBA (Responsible Business Alliance) membership
Supply chain auditsThird-party labor audits
Health & safetyDocumented H&S programs

Hardware Lifecycle

Procurement

PracticeImplementation
Right-sizingMatch hardware to actual needs
ConsolidationShared resources where possible
Efficiency focusLatest generation for efficiency

Operation

PracticeImplementation
Utilization trackingMonitor and optimize usage
MaintenanceProper maintenance for longevity
Lifecycle planningPlan refresh cycles

End-of-Life

PracticeImplementation
ReuseInternal redeployment first
ResaleCertified resale for working equipment
RecyclingR2/e-Stewards certified recyclers
Data destructionCertified data destruction

Data Sourcing

Training Data Standards

Consent & Rights

RequirementStandard
LicensingClear commercial use rights
ConsentAppropriate consent for personal data
AttributionProper attribution where required
Opt-outRespect opt-out requests

Quality & Ethics

RequirementStandard
No stolen contentDue diligence on data sources
No illegal contentFiltering for illegal material
Bias reviewAssessment of representation
Privacy protectionPII handling procedures

Annotation & Labeling

Labor Standards

RequirementStandard
Fair wagesLiving wage in local context
Working conditionsReasonable hours, breaks
Worker wellbeingSupport for disturbing content
TransparencyDisclosed labor practices

Provider Assessment

CriterionEvaluation
Wage verificationThird-party or self-reported
Conditions auditAnnual assessment
Worker feedbackGrievance mechanisms
CertificationsB Corp, Fair Trade, or equivalent

Data Provider Selection

TierDue Diligence
PrimaryFull assessment, ongoing monitoring
SecondaryStandard assessment, periodic review
IncidentalBasic assessment, terms review

Services & Contractors

Software & Services

CategoryESG Criteria
SaaSSecurity, privacy, accessibility
ConsultingLabor practices, D&I
ContractorsFair treatment, proper classification

Contractor Standards

RequirementStandard
ClassificationProper employee/contractor classification
BenefitsAppropriate benefits for relationship
PaymentTimely, fair payment
ConditionsReasonable working conditions

Supplier Management

Assessment Process

Initial Assessment

1. Categorize by tier
    ↓
2. Complete assessment questionnaire
    ↓
3. Review publicly available information
    ↓
4. Conduct due diligence (tier-appropriate)
    ↓
5. Score against criteria
    ↓
6. Make selection decision

Ongoing Monitoring

ActivityFrequencyTier
Performance reviewQuarterlyCritical
ESG reviewAnnualCritical, Significant
News monitoringContinuousCritical
Re-assessmentBiennialAll

Supplier Scorecard

DimensionWeightCriteria
Environmental30%Carbon, energy, waste
Social30%Labor, community, safety
Governance20%Ethics, transparency, security
Performance20%Quality, reliability, cost

Issue Management

Issue Severity

SeverityExamplesResponse
CriticalHuman rights violation, major breachImmediate suspension
HighLabor violations, significant ESG failureRemediation plan
MediumPolicy gaps, minor violationsImprovement plan
LowDocumentation gaps, minor issuesNoted for improvement

Remediation Process

Issue identified
    ↓
Severity assessment
    ↓
Supplier notification
    ↓
Remediation plan development
    ↓
Implementation monitoring
    ↓
Verification
    ↓
Closure or escalation

Termination Criteria

Automatic termination consideration for:

  • Verified human rights violations
  • Severe environmental damage
  • Material fraud or corruption
  • Failure to remediate critical issues

Reporting & Transparency

Internal Reporting

ReportFrequencyContents
Supplier dashboardReal-timeKey supplier metrics
Quarterly reviewQuarterlyPerformance, issues, actions
Annual assessmentAnnualFull supplier ESG review

External Reporting

DisclosureLocationContents
Annual ESG reportPublic reportSupply chain summary
CDP Supply ChainCDP platformDetailed supplier data
WebsiteCompany websiteSupplier standards

Transparency Commitments

CommitmentImplementation
Standards publicationPublic supplier code
Issue disclosureMaterial issues in ESG report
Progress reportingAnnual improvement tracking

Governance

Oversight Structure

BodyRole
Procurement LeadDay-to-day management
ESG CommitteePolicy oversight
LegalCompliance, contracts
FinanceSpend analysis

Policy Review

ActivityFrequency
Standards reviewAnnual
Criteria updateAs needed
Process improvementContinuous

Related HIPs

  • HIP-200: Responsible AI Principles
  • HIP-250: Sustainability Standards Alignment
  • HIP-251: AI Compute Carbon Footprint
  • HIP-260: Efficient Model Practices
  • HIP-290: Evidence Locker Index

Changelog

VersionDateChanges
1.02025-12-17Initial draft

Copyright

Copyright and related rights waived via CC0.

Edit on GitHubView Raw