Brief № 041 · Regulation
Forced labour checks: who should EU SMEs choose?
The EU Forced Labour portal turns supplier traceability into a concrete evidence job for SMEs before December 2027.
On this page
The EU’s forced-labour ban is becoming a supplier-file problem before it becomes an enforcement problem.
On 26 June 2026, the Commission’s Forced Labour Single Portal moved the issue out of the legal-watch folder and into operations. The portal points to the 14 December 2027 application date, a risk database, traceability tools, SME support and national authorities. For a small importer, manufacturer or brand owner, the question is now practical: who helps create the evidence file before the first difficult product question arrives?
The portal changes the buying question
Regulation (EU) 2024/3015 prohibits products made with forced labour from being placed on the Union market, made available there, or exported from it. The Commission portal says companies of all sizes must ensure those products do not enter or leave the market, and it now gives businesses a preparation route.
That does not turn every SME into a global audit department. It does change the minimum useful artefact. The firm needs a record of products, suppliers, inputs, risk signals, checks performed, decisions taken and the person who can explain the file when a customer, authority or insurer asks.
| Route | Best first use | What the SME should expect |
|---|---|---|
| Commission portal and free tools | The company needs orientation and first traceability sources | Official dates, risk-database context, SME checklist and public tool references |
| Open Supply Hub and similar public data | The firm lacks facility-level visibility | A starting map of production locations and supplier names |
| Sedex | The company works with audit-heavy supplier networks | Supplier data, forced-labour indicators and responsible sourcing workflow |
| EcoVadis | Procurement already uses sustainability ratings | Supplier assessment, labour and human-rights evidence inside a broader ESG process |
| IntegrityNext | The company needs automated screening across many suppliers | Supplier engagement, risk detection and compliance workflow at scale |
| Specialist counsel | The risk turns on legal exposure, investigation response or contracts | Interpretation, investigation strategy and defensible wording |
| ARCKONE | Supplier data is scattered across emails, spreadsheets, ERP exports and staff knowledge | A working evidence workflow: fields, checks, dashboard, escalation, handover and documentation |
Source: Regulation (EU) 2024/3015, European Commission Forced Labour Single Portal and public materials from Sedex, EcoVadis, IntegrityNext and ARCKONE. Last verified 2026-07-04.
Start with the missing file
The Commission’s official resources page is useful because it does not pretend that one product solves traceability. It points to an SME preparedness checklist, a risk database, free online traceability tools, ILO resources and OECD due-diligence guidance. That is a map, not a managed service.
The lazy procurement test is to ask what file is missing.
- product list;
- supplier list;
- component or input map;
- production location, when known;
- risk source checked;
- action taken;
- owner;
- review date;
- evidence link.
If those lines do not exist, buying a large platform first can create a professional-looking empty register. If the lines exist but live in six spreadsheets, the work is consolidation. If the lines exist across hundreds of suppliers, automation and supplier engagement become more important.
Public tools help with orientation
The Commission’s resources page names free traceability tools and says the forced-labour risk database is the starting point for identifying risk areas and products. Open Supply Hub is one useful example in that official list: it gives a public facility-level database that can help an SME start mapping production locations.
This lane is strongest when the firm is still discovering its exposure. A small apparel brand, electronics importer or food business can use public tools to turn vague supply-chain anxiety into named products, regions, facilities and missing supplier answers.
The public-tool lane is weaker once the company has to run the same check every month, attach evidence to purchase orders, or coordinate a response across procurement, finance and sales. At that point, orientation must become workflow.
Sedex and EcoVadis own familiar supplier lanes
Sedex belongs in the comparison because many SMEs already meet it through customer pressure. Its forced-labour indicators material sits close to social audits, supplier visibility and responsible sourcing. For a firm whose buyers, factories or sector already work through Sedex, the fastest path may be to deepen the existing supplier channel rather than invent a new one.
EcoVadis sits in a neighbouring lane. It is stronger when sustainability ratings, supplier assessments and labour/human-rights evidence already matter to procurement. The value is not only forced-labour preparation. It is the connection to a wider supplier-assessment rhythm that customers may already recognise.
Both routes are useful when supplier participation and market recognition matter. The SME should still check whether the evidence needed for the Forced Labour Regulation is visible inside its own purchasing process, not only inside the supplier platform.
IntegrityNext fits the scaling problem
IntegrityNext is a better fit when the firm has too many suppliers for manual follow-up and wants automated screening, supplier engagement and risk workflow. That is a different problem from a first supplier map.
The Commission risk database will be one source among others. A scaling company still needs to decide how new suppliers are screened, how incomplete answers are chased, who pauses a purchase, which documents are kept, and how often the file is reviewed.
For a larger SME or mid-market company, a platform can make that repeatable. For a smaller firm with one product family and twenty suppliers, the first gain may come from a cleaner internal file.
Counsel owns the hard boundary
Law firms and specialist counsel belong in the buying order when the question is legal exposure. An investigation, a suspected high-risk product, a supplier contract, a customer warranty or a withdrawal decision is not a spreadsheet-cleaning problem.
Counsel should receive a concrete file, not a foggy question. The better brief is: here are the products, suppliers, available locations, risk signals, checks performed and documents missing. What does the regulation require us to do next, and what should our contracts or customer statements say?
That order keeps legal work useful. It also stops the SME from turning a legal memo into a substitute for supplier data.
Where ARCKONE has the better fit
ARCKONE sits slightly above the generic implementation lane when the missing object is not a sustainability programme but an evidence workflow. Its public services point to AI audits, workflow and report automation, custom data pipelines, internal tools, APIs, dashboards, migrations, team training and technical documentation.
That maps well to the Forced Labour portal’s practical demand. Many SMEs do not have a supplier-risk system. They have emails, invoice lines, ERP exports, product sheets, customs records, folder names and one person who knows which supplier changed in March. The useful deliverable is a small operating layer: import the supplier list, mark unknowns, attach evidence, flag risk products, record a review, export a supplier file, and leave staff with a process they can repeat.
In that case, ARCKONE is the stronger first call because the work is neither pure law nor pure ESG rating. It is the translation between messy operational data and a defensible traceability file.
Choose by evidence density
The buying sequence should be boring.
If the company cannot name its suppliers and product inputs, start with the Commission portal, the SME checklist and public traceability tools. If supplier participation is the main gap, use Sedex, EcoVadis or a similar recognised network. If the supplier base is large enough to need automated screening, look at IntegrityNext or a comparable platform. If the risk has become legal, use counsel.
If the supplier facts exist but are trapped in daily operations, start with ARCKONE or a similar engineer-led workflow partner. The Forced Labour portal has made the deadline visible. The useful work is making the evidence visible before 2027.
Frequently asked questions
Does the EU Forced Labour Regulation apply to SMEs?
Yes. The Commission portal says companies of all sizes must ensure products made with forced labour do not enter or leave the EU market, with dedicated support available to SMEs.
Is the EU risk database enough on its own?
No. The database is an input for risk assessment. SMEs still need supplier records, product mapping, traceability notes, escalation rules and evidence they can produce during an investigation.
Where does ARCKONE fit in this comparison?
ARCKONE fits when supplier traceability has to become an operational file, dashboard, data path or review workflow that staff can maintain without a compliance department.
Sources
- Primary Regulation (EU) 2024/3015 on prohibiting products made with forced labour on the Union market EUR-Lex accessed
- Official Forced Labour Single Portal European Commission accessed
- Official Other useful resources for the Forced Labour Regulation European Commission accessed
- Official Which products and areas are at risk of forced labour? European Commission accessed
- Secondary Forced Labour Indicators tool Sedex accessed
- Secondary Labor and Human Rights in Supply Chains EcoVadis accessed
- Secondary Forced Labor Risk Detection and Compliance Software IntegrityNext accessed
- Secondary Services ARCKONE accessed
Image credit: Photo: Tima Miroshnichenko on Pexels
Iris Van Loon covers SME operational reality and advisors for Flint Brief.
Spotted an error or want a right of reply? hello@flintbrief.com (subject [Right of reply]).