Supplier Resources

Lilly’s continued success, in part, is due to its commitment to maintaining the highest standards in ethical conduct. Lilly expects everyone that works at Lilly and its suppliers to honor this commitment.

Anti-Bribery Commitments

• Anti-Bribery Commitments_01.01.2023

• Anti-Bribery Commitments_Prior_to_01.01.2023

Anti-Bribery Business Partner Training

View this statement in Arabic, Chinese, Czech, Dutch, English, French, German, Italian, Japanese, Korean, Polish, Portuguese, Russian, Spanish and Turkish.

Information is vital to our business. It sustains our company and allows us to deliver on our mission. The protection of confidential and/or personal information is critical to ensure the important work we do for our patients is not put at risk. Information Security is everyone’s job. Suppliers play an important role in protecting and ensuring the confidentiality, integrity, and availability of information. Therefore, Lilly suppliers must meet certain security control expectations.

Information Security Standard

• Information_Security_Standard_03.27.25

• Information_Security_Standard_01.01.23

• Information_Security_Standard_01.01.18

• Vendor_Privacy_and_Security_Standard_Prior_to_12.31.2017

Third-Party Business Rules for Secure Handling of Information

Chinese (Simplified), Chinese (Traditional), Dutch, English, French, German, Italian, Japanese, Korean, Polish, Portuguese, Russian, Spanish

Lilly is committed to protecting the personal information of its patients, business partners, and in any interaction where personal information may be obtained. Suppliers play a critical role in protecting and ensuring the confidentiality, integrity, and availability of personal information to ensure the important work we do for our patients is not put at risk. To learn more about Lilly’s commitment to Privacy please visit: https://www.lilly.com/privacy.

Supplier Privacy Standard

• Supplier Privacy Standard 05.29.25

• Supplier_Privacy_Standard_02_26_25

• Supplier Privacy Standard_07.16.24

• Supplier_Privacy_Standard_01.01.23

• Supplier_Privacy_Standard_01.01.18

• Vendor_Privacy_and_Security_Standard_Prior_to_12.31.2017

Lilly is committed to developing and deploying Artificial Intelligence solutions that are ethical, trustworthy, and beneficial for our patients, business partners, and society at large. Suppliers play a critical role in ensuring that the AI solutions they provide or support are aligned with Lilly's AI principles and standards, and that they do not pose any harm or risk to the important work we do for our patients.

• Artificial Intelligence Standard_10.04.24

• Artificial Intelligence Standard_09.03.24

Lilly is committed to the safety of patients and our products. A Lilly Supplier shall report to Lilly any adverse event, product complaint, or suspect product the Supplier becomes aware of pursuant to the terms of any agreement between Lilly and Supplier.

U.S. based Suppliers should contact:
• The Lilly Answers Center (TLAC) at 1-800-LillyRX (1-800-545-5979);
• or as requested within the agreement.

All other Suppliers should utilize the Adverse Event Reporting Contacts List for Suppliers to report to the appropriate local Lilly contact.

Lilly complies with various requirements in the United States and around the world to report certain financial interactions with healthcare professionals and health care entities.

In the United States, Lilly follows the federal Open Payments law (also referred to as the Sunshine Act) along with state and local laws. Outside the United States, in addition to adhering to local and national legislated requirements for countries in which we operate, Lilly participates in voluntary disclosure codes led by local trade associations. Lilly discloses direct and indirect payments or transfers of value to healthcare professionals for advising/speaking services, travel and lodging, research, educational items, and/or food and beverages as required. Lilly also discloses direct and indirect payments or transfers of value to U.S. teaching hospitals.

To the extent applicable, you may be required to submit detailed information about direct or indirect payments/transfers of value provided to healthcare professionals or teaching hospitals under this Supplier agreement with Lilly. If so, please use the Global Transparency Reportable Data Capture Template to document and submit applicable details about payments/transfers of value so Lilly can fulfill our transparency reporting obligations. The template should be submitted to Lilly no later than thirty (30) days following the end of each month. If you have questions about whether this Agreement will result in a reportable transaction, reach out to the Global Transparency mailbox at: global_transparency_mailbox@lilly.com.

Covered Recipients Standard

• Covered_Recipients_and_Open_Payments_Standard_01.01.2023

Lilly is committed to adhering to applicable laws and regulations regarding cross-border tax transactions.

Cross Border Tax Transactions Standard

• Cross_Border_Transactions_01.01.2023

Value Added Tax (VAT) Recovery

• Value Added Tax (VAT) Recovery

Lilly is committed to the advancement of a diverse supply base. To learn more about Lilly’s commitment to Supplier Diversity please visit: https://www.lilly.com/suppliers/supplier-diversity.

Diverse Business Enterprise Acronyms and Definitions

• Diverse_Business_Enterprise_02.13.2024

Expense Reimbursement Standard

• Expense Reimbursement Standard

Suppliers must follow all applicable global and local import and export laws. Suppliers must also cooperate with Lilly supply chain security program to participate in the U.S. Customs Trade Partnership against Terrorism (C-TPAT) program and European Union Authorised Economic Operator(AEO) program.

C-TPAT

• CTPAT Security Questionnaire

The Lilly Supplier Code of Business Conduct is available in 16 languages: Chinese, Czech, Dutch, English, French, German, Italian, Japanese, Korean, Polish, Portuguese, Romanian, Russian, Slovak, Spanish and Turkish.

View the resources below to learn about Lilly's beliefs, values and guiding principles:

• PSCI Principle

U.S. Federal Acquisition Regulations

• U.S. Federal Acquisition Regulations

Lilly Procurement has invested in the SAP Business Network platform for our Procurement activities enabling our Sourcing, Contracting and Requisition processes to be executed in a timely manner and in accordance with our global ethics, accounting and procurement policies and practices.

Lilly utilizes the SAP Business Network platform for all sourcing events (RFx and Auction) and contract activities. If your company is invited to participate in an RFx and/or Auction your company must be registered on the Business Network. If your company is not registered, please visit the Ariba Supplier help desk for assistance or reach out to your Lilly business contact listed within the invitation.

For suppliers engaging in a Sourcing event (Request for Quotation (RFQ), Request for Proposal (RFP) or Auction) who require help or support, please visit the Eli Lilly Supplier Information Portal and refer to our Sourcing Events Support and Training Guides

For more information about transacting with Lilly, please visit the Accounts Payable section of the Supplier Portal.

For suppliers transacting via the SAP Business Network, additional guidance and help is available here. The SAP Business Network can be directly accessed here.

In order for potential Suppliers to engage in RFx events with Lilly, potential Suppliers must agree to the terms and conditions described in the Lilly Participation Agreement (below).

• Chinese

• English

• French

• German

• Italian

• Japanese

• Portuguese

• Spanish (European)

• Spanish (Latin America)

All contingent workers globally that require unescorted site access and/or IT systems access must be onboarded by the supplier in Beeline. Beeline is the Identity and Access Management tool for suppliers to onboard Contingent Workers assigned at Lilly to manage the access for:

Agency Workers
Workers contracted through a temporary staffing agency to perform Lilly work, under direct Lilly supervision, for a short, defined period (e.g., covering a leave of absence for a Lilly employee; supplementing Lilly teams through a specific, time-limited project).

Outsourced Workers
Workers assigned to Lilly by a supplier or vendor to provide a long-term, end-to-end service not performed by Lilly workers. Workers perform services on- or off-site under direct supervision of their employer (i.e., Lilly’s vendor or supplier), such as cafeteria workers, collections, benefits or payroll administrators.

Deliverables
Workers with highly specialized skills engaged to deliver specific, project-based deliverables by a deadline. Deliverables workers do not perform the same work as Lilly employees and are either independent contractors or supervised by their employers (i.e., Lilly’s vendor or supplier). Examples include strategy consultants, auditors, talent coaches, etc.

Business Guests
Business guests are not workers but may need site or system access that requires onboarding through Beeline.

Supplier responsibilities are primarily outlined in Sections 7.3 and 13 of the master service agreement (MSA) between Lilly and the supplier. The supplier and/or the supplier’s representatives must:

• Comply with the requirements of the MSA to ensure all terms and conditions have been satisfied.

• Assign each worker the appropriate contingent worker type during onboarding for accurate work assignment and access management at Lilly.

• Provide the Lilly Global Workforce Privacy Notice to all workers before onboarding them in Beeline. The document is located under the Help menu in Beeline. (Exception: Workers in Spain and Portugal should be provided with a local privacy notice instead.)

 

• Ensure that all workers have satisfied the Lilly background check and/or drug screen requirements (where applicable per local law) prior to being onboarded to a Lilly assignment. Lilly Screening Standards are located under the Help menu in Beeline.

• Accurately identify any workers who have been previously employed by Lilly prior to onboarding. Supplier should select Former Employee/Contractor of Lilly in the candidate information section in Beeline. Lilly HR Solutions team will provide authorization for onboarding.

• Accurately maintain worker data changes to comply with compliance requirements (e.g., work location, hiring manager, secondary supplier, end date).

• Maintain worker end dates accurately and complete the offboarding process before the worker’s last day at Lilly to ensure timely processing and disablement of system and site access.

• Ensure that all workers return all Lilly assets prior to the end of assignment.

Failure by the supplier to comply with Lilly’s policies and requirements can be treated as a breach of contract. Lilly reserves the right, in its sole discretion, to approve or deny such requests and/or revoke any prior approval at any time.

To initiate the supplier registration process, the Lilly business owner should complete the supplier registration form (available under Quick Links in LillyNow) and submit the form via case management tool. The HR Solutions Team will review the request and, if approved, will contact the supplier to complete the registration process. Once registration is complete, the supplier can add and maintain worker data, and onboard workers in partnership with the Lilly hiring manager(s).

Note: The registration is a one-time process in Beeline to enable the supplier to independently onboard workers to Lilly thereafter.

Contact HR Solutions Team

Beeline Onboarding Process

1. Suppliers submit onboarding requests for all workers who require unescorted access to a Lilly site and/or access to Lilly IT systems.

2. Hiring managers confirm the assignment details, including the worker type and entitlements.

3. Supplier ensures workers meet and pass minimum criminal background check standards and/or drug screens as required by Lilly.

4. If required checks and/or screens are completed successfully, the supplier activates the worker in Beeline.

Note: Pre-onboarding tasks such as Background Checks and drug screening requirements are determined by country, local process and entitlements assigned by the hiring manager. Background check in step 3 will not always be applicable. For more information contact the HR Solutions Team by submitting a request.

Contact HR Solutions Team

In the US - Background Check and Drug Screening are required for unescorted site access and information technology systems access.

In the United States, a background check and drug screen in compliance with Lilly’s US Screening Standards (found in Beeline under the Help menu) is required for any worker receiving Lilly unescorted site access (badge).

Risk Assessment and Safety Orientation

• All contingent workers must complete a risk assessment with Lilly Safety Management Group. At a minimum, contractors must attend the Contractor Risk Level 1 Contractor Orientation.

For Indianapolis Workers:

• Monday, Wednesday and Friday

• Time: 7:30 a.m.–8:15 a.m.

• Location: Lilly Technology Center South (LTC-S), Building 300, 1401 S. Harding St., Indianapolis, IN 46221

If you need additional information please coordinate with your Lilly Sponsor.

Beeline Supplier Support

The Supplier User Guide available in Beeline under the Help Menu will guide and support the supplier to onboard and maintain worker data in Beeline. All required supporting documentation, including background check material, can be found under the Help Menu in all supporting languages.

To get started you can visit the supplier user guide and demo in Beeline.

Beeline Contingent Worker Manager Support

For Lilly employees (Contingent Worker Managers and Lilly contacts) all contingent worker information is available on LillyNow. The Contingent Worker Beeline Manager User Guide is available on LillyNow.

Questions?

The HR Solutions Team is at hand to support you. If you have a question, you can contact us on our customer service tool.

Contact HR Solutions Team

This is formal notice to any third-party organization currently working with or being considered to work with consumer personal information (PI) on behalf of the Lilly USA division:

In 2002, Lilly entered into a Consent Order with the United States Federal Trade Commission ("Consent Order"), as well as a voluntary Assurances agreement with eight states (“States’ Assurances”) stemming from a situation in 2001. The Consent Order and States' Assurances, in nearly identical terms, required Lilly to take certain actions to address privacy issues within Lilly's operations regarding the handling of consumer PI. Although the Consent Order has recently expired, the States’ Assurances is still in effect. Therefore, all third parties that work with consumer PI in any manner for Lilly USA are required to comply with Lilly's Supplier Privacy Standard, Information Security Standard (linked above) and the terms of the States' Assurances. A copy of the States’ Assurances is provided for your review via this website. At a minimum, you will need to have privacy and security measures equivalent to those identified in the States’ Assurances with respect to the consumer PI you are handling on behalf of Lilly.