Blog

Top Commercial Real Estate ESG Programs: Leaders, Benchmarks, and What Makes One Best-in-Class

The leading commercial real estate (CRE) ESG programs share a common backbone: a validated net-zero-by-2040 target covering Scopes 1, 2, and 3; annual GRESB benchmarking with a 5-star rating and “Green Star” recognition; a portfolio certified to LEED, BREEAM, and ENERGY STAR; and disclosure aligned to the ISSB (IFRS S1/S2), GRI, and, where in scope, the EU CSRD. As of 2025, firms such as Prologis (net zero by 2040), JLL and CBRE (both SBTi-validated net zero by 2040), BXP, Kilroy, Hines, Brookfield, and Tishman Speyer set the pace. What separates a best-in-class program from a marketing claim is third-party validation of targets, audited data, embodied-carbon (Scope 3) accountability, and capital actually deployed against the plan.

What does an ESG program actually mean in commercial real estate?

In CRE, “ESG” is the discipline of measuring and managing a building portfolio’s environmental footprint, social impact, and governance quality, then disclosing that performance to investors, lenders, tenants, and regulators. Because buildings account for roughly a third or more of global energy-related emissions, the environmental pillar dominates: energy and water efficiency, on-site and procured renewables, waste diversion, and the carbon embedded in construction materials. The social pillar covers tenant health and wellbeing, community investment, diversity, and workforce practices. Governance covers board oversight of climate risk, data assurance, executive compensation tied to ESG metrics, and ethics.

For owners and REITs, ESG is increasingly financial rather than reputational. Green-certified, energy-efficient assets command rent and valuation premiums, qualify for green financing, and face lower obsolescence risk as building-performance standards (BPS) and embodied-carbon rules spread across U.S. and European cities. For services firms such as JLL and CBRE, ESG is also a product line: they advise owners on decarbonization and manage millions of square feet against client sustainability goals.

How do leading CRE firms structure their ESG programs?

A best-in-class CRE ESG program is built on five structural elements: a science-aligned decarbonization target, a benchmarking and certification regime, a data-and-assurance backbone, governance with board-level accountability, and transparent reporting under recognized frameworks. The strongest programs treat these as an integrated system rather than separate initiatives.

Net-zero and carbon-reduction targets

The current standard is a long-dated net-zero target supported by near-term interim milestones, ideally validated by the Science Based Targets initiative (SBTi). Examples reported by the companies themselves:

Prologis has committed to net zero emissions by 2040 across Scopes 1, 2, and 3, with interim goals including 1 gigawatt of solar generation (plus storage) and submission of its net-zero target to the SBTi for validation. Because most of Prologis’s footprint is Scope 3, progress depends on customer and supply-chain partnership rather than direct control.
JLL was one of the first seven companies to receive SBTi-validated net-zero targets under the Net-Zero Standard in October 2021, committing to net zero across its value chain by 2040, with absolute reductions of 51% by 2030 and 95% by 2040.
CBRE has committed to net zero across its value chain by 2040, with SBTi-validated near-term 2030 targets to cut Scope 1 and 2 by 50% and emissions from managed properties by 55% per square foot from a 2019 baseline.
BXP (formerly Boston Properties) pursued carbon-neutral operations and set an emissions target aligned to a 1.5°C trajectory under the SBTi.
Kilroy Realty reports achieving carbon-neutral operations and has been recognized by GRESB as a regional sustainability leader among publicly traded real estate companies in the Americas.
Tishman Speyer has committed to net zero carbon emissions by 2050.

The credibility test is not the headline year but the structure beneath it: a baseline year, interim targets, third-party validation, and an explicit plan for Scope 3, which for most owners is the largest and hardest category.

GRESB benchmarking

GRESB (the Global Real Estate Sustainability Benchmark) is the de facto ESG benchmark for the sector. In the 2025 Real Estate Assessment, 1,002 fund managers submitted 2,382 assessments, with the Standing Investments average score rising to 79 and Development to 87.9; a new Residential Component debuted at 80.1. Leading firms participate every year, target a 5-star rating (the top quintile), and earn “Green Star” recognition for balancing strong management with strong performance. GRESB scores are widely used by institutional investors to compare funds and to drive engagement, so a high, improving GRESB result is one of the clearest external signals of a serious program.

Green-building certifications

Certifications translate building performance into a market-recognized label. The three most common in CRE differ in geography, scope, and method:

Certification	Owner / scope	Primary geography	What it measures	2025 note
LEED	U.S. Green Building Council (USGBC); design, construction, operations	U.S. and global	Holistic: energy, water, materials, indoor environment, location	LEED v5 launched April 28, 2025; certification opened Nov 3, 2025. About 50% of credits now tied to decarbonization; Platinum requires minimum carbon reductions and effectively fully electric systems.
BREEAM	Building Research Establishment (BRE); uses licensed assessors	UK and Europe	Weighted scoring across categories; results expressed as a percentage	Dominant benchmark in European portfolios; assessor-verified evidence.
ENERGY STAR	U.S. EPA; operational benchmarking	U.S.	Energy-efficiency performance only (1-100 score)	Narrower than LEED/BREEAM; widely used as an operational baseline across U.S. portfolios.

BXP, for example, has reported certifying roughly 34 million square feet of its portfolio to LEED, with most of its actively managed office space certified and a large share at Gold and Platinum levels. The strongest programs use ENERGY STAR for operational benchmarking, LEED or BREEAM for whole-asset certification, and increasingly track WELL or Fitwel for the health/social dimension.

Embodied carbon and Scope 3

The frontier of CRE ESG is embodied carbon, the emissions locked into concrete, steel, and other materials before a building opens. Per the GHG Protocol, embodied carbon almost always lands in Scope 3 (Purchased Goods and Services, Capital Goods, and transportation), and for developers it can rival or exceed decades of operational emissions. Leading developers now require Environmental Product Declarations (EPDs) to compare and select lower-carbon materials, calculate whole-life carbon, and specify low-carbon concrete and steel. Regulators are catching up: California’s climate-disclosure laws phase in large-company reporting including Scope 3 on 2026 data, and cities from Boston to Los Angeles are weighing embodied-carbon limits in building permits. A program that reports only operational (Scope 1 and 2) emissions while ignoring embodied carbon is incomplete by current standards.

Social and governance practices

On the social side, leaders invest in tenant health (air quality, daylight, amenities), community development, affordable or workforce housing where relevant, and supplier diversity. On governance, the markers are board- or committee-level oversight of climate risk (BXP, for instance, established a board sustainability committee), third-party assurance of ESG data, linkage of executive compensation to sustainability KPIs, and clear climate-risk scenario analysis. Governance is what makes the environmental and social claims auditable rather than aspirational.

What reporting frameworks do CRE companies use?

Disclosure has consolidated rapidly. The key frameworks a CRE sustainability lead should know in 2025-2026:

ISSB (IFRS S1 and S2) are the emerging global baseline. IFRS S2 fully incorporates the TCFD recommendations and, in effect, replaces TCFD, which disbanded on January 1, 2024, with the IFRS Foundation assuming its monitoring role. By mid-2025, more than 30 jurisdictions representing over 60% of global GDP had committed to adopting or aligning with the ISSB standards. The ISSB issued amendments in 2025 to ease implementation of certain Scope 3 GHG disclosures.
GRI (Global Reporting Initiative) remains the most widely used framework for multi-stakeholder impact reporting and uses a double-materiality lens.
TCFD (Task Force on Climate-related Financial Disclosures) is now legacy but its four-pillar structure (governance, strategy, risk management, metrics and targets) lives on inside IFRS S2.
EU CSRD (Corporate Sustainability Reporting Directive) requires reporting under the European Sustainability Reporting Standards (ESRS) on a double-materiality basis. The 2025 “Omnibus I” simplification narrows scope to EU entities with more than 1,000 employees and over €450 million net turnover, cutting the number of in-scope companies sharply and reducing ESRS data points; the changes enter into force on March 18, 2026, with member states given 12 months to transpose them.

The practical implication: ISSB and CSRD differ on materiality. ISSB looks only at financial materiality (how sustainability affects the business), while CSRD and GRI apply double materiality (also how the business affects people and the environment). A global CRE firm typically maps its disclosures to both.

Why is GRESB the key ESG benchmark for CRE?

GRESB matters because it is investor-driven and asset-specific. Unlike a generic corporate ESG rating, GRESB scores real-estate funds and portfolios on a standardized methodology covering both management (policies, governance, stakeholder engagement) and performance (energy, GHG, water, waste, certifications, data coverage). Institutional capital allocators use GRESB results in due diligence and ongoing engagement, which gives the benchmark real teeth: a slipping GRESB score can trigger investor questions, while a 5-star “Green Star” result is a credible, comparable signal. Because the 2025 cycle drew over 2,300 assessments globally, GRESB also functions as the industry’s largest pooled dataset, letting managers benchmark against true peers rather than self-selected narratives.

What distinguishes a best-in-class CRE ESG program? (A rubric)

Use the following rubric to separate leading programs from box-checking. Leaders score “strong” across most rows; laggards cluster in “basic” or “absent.”

Attribute	Best-in-class (strong)	Developing (basic)	Laggard (absent)
Decarbonization target	SBTi-validated net zero by 2040, interim 2030 milestones, all scopes	Self-set net-zero year, no validation	No target or operations-only
Scope 3 / embodied carbon	Measured and managed; EPDs and whole-life carbon for new development	Scope 3 estimated, embodied carbon not addressed	Scope 1 and 2 only
GRESB	Annual participation, 5-star, Green Star, improving trend	Participates, mid-tier score	Does not participate
Certifications	Majority of portfolio LEED/BREEAM; ENERGY STAR benchmarking; WELL/Fitwel for health	Flagship assets certified only	No certifications
Data and assurance	Audited/third-party-assured data, high coverage, like-for-like tracking	Self-reported, partial coverage	Anecdotal or absent
Reporting frameworks	ISSB/IFRS S2, GRI, CSRD where in scope	One framework, partial alignment	Press-release-only
Governance	Board/committee oversight, exec comp linked to ESG KPIs	Management-level only	No formal oversight
Capital deployment	Funded retrofit/renewable pipeline, green financing	Pilots only	No capital committed

The single most important distinction is the gap between targets and execution. A validated 2040 net-zero target is only credible if it is paired with funded retrofits, on-site or contracted renewables, assured data, and a real Scope 3 plan. Programs that publish ambitious commitments without capital, coverage, or assurance behind them are, by current professional standards, incomplete.

How should an asset or REIT investor evaluate a CRE ESG program?

Start with the disclosures, not the marketing. Pull the company’s latest sustainability or annual ESG report and its GRESB result, then check: Is the net-zero target SBTi-validated, and does it cover Scope 3? What share of the portfolio is certified and ENERGY STAR-benchmarked? Is the emissions data third-party assured, and what is the data-coverage percentage? Is there board-level governance and exec-comp linkage? For new development, is embodied carbon measured? Finally, look for a funded transition plan, because the strongest signal a program is real is capital flowing into retrofits, electrification, and renewables, not just a commitment slide.

Frequently asked questions

What is GRESB and why does it matter in CRE?

GRESB is the Global Real Estate Sustainability Benchmark, an investor-driven standard that scores real-estate funds and portfolios on management and performance. In 2025 it drew 1,002 fund managers and 2,382 assessments. Institutional investors use GRESB scores in due diligence, so a 5-star “Green Star” rating is a widely trusted signal of a strong ESG program.

What is the difference between LEED, BREEAM, and ENERGY STAR?

LEED (USGBC, U.S.-led and global) and BREEAM (BRE, UK and Europe) are holistic, whole-building certifications covering energy, water, materials, and indoor environment; BREEAM uses licensed assessors and percentage scores, while LEED uses points. ENERGY STAR (U.S. EPA) is narrower, scoring only operational energy efficiency. LEED v5, launched in 2025, ties about half its credits to decarbonization.

What net-zero targets have major CRE firms set?

Prologis targets net zero by 2040 across all scopes. JLL and CBRE both target net zero across their value chains by 2040 with SBTi-validated interim 2030 goals. Tishman Speyer has committed to net zero by 2050, and Kilroy reports carbon-neutral operations. The credibility marker is SBTi validation plus a Scope 3 plan, not the headline year alone.

What is embodied carbon and why is it now central to CRE ESG?

Embodied carbon is the emissions tied to producing and installing building materials such as concrete and steel. Per the GHG Protocol it falls under Scope 3, and for new development it can rival decades of operational emissions. Leaders use Environmental Product Declarations (EPDs) and whole-life carbon analysis, and regulators in California and several cities are moving to require disclosure or limits.

Is TCFD still required, or has ISSB replaced it?

TCFD disbanded on January 1, 2024, and its recommendations are now embedded in the ISSB’s IFRS S2 standard, which the IFRS Foundation oversees. Companies that previously reported to TCFD generally transition to IFRS S1 and S2, which more than 30 jurisdictions have committed to adopt or align with as of mid-2025.

How does the EU CSRD affect U.S. CRE firms?

CSRD requires reporting under the ESRS on a double-materiality basis and can reach non-EU groups with significant EU operations. The 2025 “Omnibus I” package narrowed scope to entities with more than 1,000 employees and over €450 million net turnover and cut ESRS data points; the revisions enter into force on March 18, 2026. U.S. CRE firms with large European footprints should confirm whether they remain in scope.

What single factor best signals a credible CRE ESG program?

Capital deployment against a validated plan. Ambitious targets are common; what distinguishes leaders is funded retrofits, electrification, contracted renewables, high data coverage with third-party assurance, and a concrete Scope 3 strategy. A strong, improving GRESB score plus SBTi-validated targets is the fastest external proxy for that underlying execution.

Sources & further reading

June 21, 2026

Business Continuity in the Hotel Industry: Resilience and Continuity Planning for Hospitality

Business continuity in the hotel industry is the discipline of keeping a property safe, operational, and revenue-generating through disruptions such as hurricanes, cyberattacks, power loss, pandemics, and staffing crises. The internationally recognized framework is ISO 22301, the standard for business continuity management systems (BCMS), which runs on a Plan-Do-Check-Act lifecycle built around a Business Impact Analysis (BIA), defined Recovery Time and Recovery Point Objectives (RTO/RPO), tested recovery strategies, and rehearsed crisis communications. For hotels, the stakes are unusually high because the asset, the workforce, the guests, and the data systems all sit under one roof, and a single outage can simultaneously threaten life safety, brand reputation, and asset value.

What is business continuity in the hotel industry?

Business continuity (BC) is the capability of a hotel to continue delivering products and services at acceptable, predefined levels following a disruptive incident. It is broader than disaster recovery, which focuses narrowly on restoring IT systems and data. Business continuity covers the whole operation: front desk and reservations, housekeeping, food and beverage, the property management system (PMS), payment processing, life-safety systems, guest communications, and the supply chain that feeds linens, food, and energy into the building.

Hotels are a uniquely concentrated risk environment. Unlike an office that empties at night, a hotel is occupied 24 hours a day by guests who depend on the property for shelter, safety, and information during an emergency. A continuity failure is therefore not only a financial event but potentially a life-safety event. This is why mature hotel BC programs integrate emergency response and life safety directly into the continuity plan rather than treating them as separate documents.

What are the biggest threats to hotel business continuity?

The hospitality risk landscape in 2024-2026 is defined by the convergence of physical, digital, and human threats. Extreme weather is intensifying, ransomware has become an industry-wide epidemic, and labor shortages have made it harder to staff a coordinated response. The table below summarizes the leading threats, their operational impact, and core mitigations.

Threat	Operational impact	Core mitigation
Natural disasters & extreme weather (hurricanes, floods, wildfire, extreme heat)	Property damage, forced closure, evacuation, lost occupancy; insurers raising premiums 20-50% or withdrawing from high-risk areas	Resilient construction to current flood/wind codes, flood barriers, backup power, pre-arranged evacuation and sheltering protocols, parametric insurance
Cyberattacks & guest-data breaches (ransomware, social engineering)	PMS and payment outages, theft of guest PII and card data, regulatory investigations; average hospitality breach cost ~$4.03M in 2025	Multi-factor authentication, help-desk verification procedures, network segmentation, immutable offline backups, PCI DSS compliance, incident response plan
Power & utility failure	Loss of HVAC, lighting, electronic locks, PMS, refrigeration; immediate guest-safety and comfort impact	Generators with tested fuel supply, uninterruptible power supply (UPS) for critical systems, manual override procedures for door locks and check-in
Pandemics & public-health events	Demand collapse, occupancy crashes, workforce illness, sustained operating-model changes	Flexible staffing models, hygiene and isolation protocols, scenario-based demand planning, cross-training, liquidity reserves
Supply-chain disruption	Shortages of food, linens, amenities, and critical spare parts; price volatility	Diversified and local suppliers, safety stock of critical items, vendor continuity clauses, alternate-sourcing playbooks
Staffing & labor shortages	Inability to clean rooms, staff the response, or maintain service; recovery delays	Cross-training, retention incentives, automation of low-value tasks, on-call and agency rosters, documented emergency duty assignments

How serious is the cyber threat to hotels specifically?

Cyber risk has moved to the front of the hotel continuity agenda. The 2023 attack on MGM Resorts International cost the company more than $100 million and was executed by the Scattered Spider group through a single social-engineering (vishing) call to the IT help desk, where an attacker impersonated an employee and obtained super-administrator access. On March 29, 2024, Omni Hotels & Resorts suffered an attack that forced systems offline and disrupted reservations, payment processing, and digital room-key access across many properties. In 2024, a breach at hotel-technology vendor Otelier exposed data tied to brands including Marriott, Hilton, and Hyatt, adding roughly half a million accounts to breach-notification databases. According to the 2025 Verizon Data Breach Investigations Report, ransomware features in 44% of breaches, and the average cost of a hospitality data breach reached approximately $4.03 million in 2025. The lesson for continuity planners is that the weakest link is often a process (help-desk verification) rather than a firewall.

How does extreme weather threaten hotel continuity and value?

2024 was the warmest year in the observational record, accompanied by an extraordinary run of extreme events. The financial tail is long: arrivals to the Hawaiian island of Maui were still down 24% a year after the 2023 wildfires, representing an estimated US$2.6 billion impact. During the 2024 Atlantic hurricane season, Hurricane Milton damaged or closed roughly a quarter of hotels in directly impacted Florida markets, according to JLL Hotels & Hospitality Group, while properties built to current standards for flooding, storm surge, and high winds suffered minimal damage. Annual climate-related economic losses exceeded US$230 billion per year during 2015-2024. For hotel real estate, this translates into rising insurance costs, restricted coverage in coastal zones, and growing investor scrutiny of physical climate exposure.

What is the business continuity planning lifecycle for a hotel?

ISO 22301 organizes continuity around a continuous Plan-Do-Check-Act (PDCA) lifecycle rather than a one-time document. The core phases below apply directly to a hotel.

Phase	What it produces	Hotel-specific focus
1. Business Impact Analysis (BIA) & risk assessment	Inventory of critical functions, maximum tolerable downtime, dependencies	Reservations/PMS, payment processing, electronic locks, life safety, housekeeping, F&B, guest communications
2. Set RTO and RPO targets	Recovery deadlines and acceptable data-loss windows per function	Payment and PMS typically demand the shortest RTO/RPO; back-office can tolerate longer
3. Recovery strategies	Backup systems, manual workarounds, alternate sites, redundancy	Manual check-in procedures, offline lock overrides, cloud PMS failover, generator power
4. Plan development & emergency response	Written BC plan, incident response, evacuation and life-safety procedures	Integrated with NFPA 101 life-safety and fire procedures; clear duty assignments
5. Crisis communications	Pre-drafted messaging, contact trees, spokesperson roles	Guests, staff, suppliers, owners/brand, media, and authorities
6. Testing & exercises	Validated, rehearsed plan; identified gaps	Tabletop and full-scale drills; learning captured from real events
7. Review & continual improvement	Updated plan reflecting changes and lessons learned	Refresh after staff turnover, renovations, system changes, and incidents

What is a Business Impact Analysis for a hotel?

The Business Impact Analysis (BIA) is the foundation of the entire program. It identifies the hotel’s critical functions, quantifies how long each can be offline before unacceptable harm occurs, and maps the dependencies between them. For a hotel, the BIA typically prioritizes guest services, reservations, the PMS, payment processing, electronic door locks, life-safety systems, housekeeping, and food and beverage operations. The output of the BIA drives every downstream decision, because it tells planners where to concentrate scarce time, capital, and redundancy.

What do RTO and RPO mean for hotel systems?

Recovery Time Objective (RTO) is the maximum acceptable time a function can be down after a disruption. Recovery Point Objective (RPO) is the maximum acceptable amount of data loss, measured in time. In a hotel, payment processing and the PMS usually carry the most aggressive targets: an RTO measured in minutes to a few hours, and an RPO low enough that no completed reservation or folio charge is lost. A guest-loyalty analytics dashboard, by contrast, can tolerate an RTO of days. Setting these targets explicitly, per function, is what turns a vague aspiration (“get back up fast”) into an engineerable backup and failover design.

How do hotels protect guest safety and life safety?

Because guests sleep on the premises, life safety is the non-negotiable core of hotel continuity. In the United States, the governing framework is the NFPA 101 Life Safety Code, supported by NFPA 13 (sprinkler installation), NFPA 72 (fire alarm and signaling), NFPA 25 (inspection and maintenance of water-based suppression), and NFPA 96 (commercial cooking fire protection). Modern mid-rise and high-rise hotels generally require full sprinkler coverage, interconnected audible and visual fire alarms in all guest rooms and common areas, battery-backed emergency lighting, illuminated exit signage, and, in larger properties, an emergency voice/alarm communication system (EVACS) to direct occupants during an event. Sprinkler systems must be inspected and tested annually under NFPA 25, alarm notification devices require regular testing under NFPA 72, and staff must be trained to recognize alarms, locate the source, and execute response steps. A continuity plan that ignores these life-safety obligations is incomplete; conversely, a strong life-safety program is the first layer of resilience.

How do hotels build cyber and IT resilience?

IT resilience for hotels centers on three system families: the property management system (PMS), payment and point-of-sale systems, and the growing layer of IoT and smart-room devices (electronic locks, thermostats, voice assistants, building-management systems). Each is a continuity dependency and an attack surface.

Practical measures include multi-factor authentication on all administrative and remote access; strict identity-verification procedures at the IT help desk to defeat the social-engineering tactics that breached MGM; network segmentation so that a compromised guest Wi-Fi or smart-room controller cannot reach the PMS or payment environment; immutable, offline backups tested against ransomware; and PCI DSS compliance for cardholder data. Cloud-based PMS platforms can improve resilience by enabling failover and off-site data, but they also create vendor dependencies; the Otelier breach showed that a third-party hotel-tech provider can become the single point of failure for multiple brands. A robust IT continuity plan therefore includes manual fallback procedures, such as paper check-in and offline lock overrides, so the front desk can keep operating even when systems are dark.

What is ISO 22301 and why does it matter for hotels?

ISO 22301 is the international standard for business continuity management systems. The current published edition is ISO 22301:2019, which streamlined the original 2012 version. In February 2024, ISO published Amendment 1 (ISO 22301:2019/Amd 1:2024), adding climate-action requirements that oblige organizations to consider how climate change may affect their operations and stakeholders, a direct concern for weather-exposed hotel assets. A further revision is under development through ISO/TC 292 and is anticipated to follow. ISO 22301 matters for hotels because it provides a recognized, auditable structure, certification can support insurance negotiations, and brand and owner agreements increasingly expect documented continuity capability. Insurers reward proactive risk management: hotels with thorough continuity plans are viewed as less likely to file large claims, which can translate into more favorable premiums and coverage terms.

How does business continuity connect to ESG and resilience reporting?

For institutionally owned hotel real estate, business continuity has become part of the environmental, social, and governance (ESG) story, specifically the resilience dimension. The GRESB Real Estate Assessment, widely used by institutional real estate investors, asks entities in its 2025 framework to describe how they incorporate resilience into their climate strategy, including whether scenario analysis is used to evaluate that strategy. Physical climate risks, flooding, heatwaves, and wildfires, are increasingly seen as material to asset value; nearly two in five respondents in a GRESB and MIPIM survey said physical climate impacts will have the biggest effect on asset values in 2026. The practical implication is that a hotel’s BIA, climate scenario analysis, recovery strategies, and tested response are no longer purely operational artifacts. They are inputs to investor reporting, capital access, and valuation. ISO 22301’s 2024 climate amendment and the resilience indicators in GRESB are converging: a well-run continuity program is now also an ESG asset.

How should a hotel test and maintain its continuity plan?

A plan that is never exercised is a liability, because gaps surface only during a real crisis. ISO 22301 requires that continuity procedures be exercised and tested regularly, appropriate to the organization’s activities and risk profile. The most accessible method is the tabletop exercise: a guided, scenario-based discussion that brings decision-makers together to walk through a crisis, such as a ransomware lockout during peak occupancy or an evacuation during a hurricane. Tabletops reveal policy and communication gaps and clarify each leader’s authority limits and decision rights without real-world pressure. More advanced programs add part-scale or full-scale exercises, such as a live failover of the PMS or a timed evacuation drill, and they treat real incidents as learning opportunities. Plans should be refreshed after major staff turnover, renovations, system migrations, and every actual incident, closing the Plan-Do-Check-Act loop.

Frequently asked questions

What is the difference between business continuity and disaster recovery in a hotel?

Disaster recovery is a subset of business continuity focused on restoring IT systems and data after an outage. Business continuity is broader: it keeps the whole hotel operation running, including front desk, housekeeping, life safety, supply chain, and guest communications, not just the technology.

Which standard governs hotel business continuity?

ISO 22301 is the international standard for business continuity management systems. The current edition is ISO 22301:2019, with a 2024 amendment adding climate-action requirements. In the United States, life-safety elements are governed separately by NFPA codes such as NFPA 101.

What are RTO and RPO and which hotel systems need the tightest targets?

RTO (Recovery Time Objective) is how fast a function must be restored; RPO (Recovery Point Objective) is how much data loss is acceptable. Payment processing and the property management system typically need the tightest targets, often an RTO of minutes to hours and a near-zero RPO so no reservation or charge is lost.

What was the lesson of the MGM Resorts cyberattack for hotels?

The 2023 MGM attack, which cost over $100 million, began with a single social-engineering phone call to the IT help desk that yielded administrator access. The lesson is that strong identity-verification procedures at the help desk and multi-factor authentication are as important to continuity as technical defenses.

How often should a hotel test its business continuity plan?

ISO 22301 calls for regular exercises appropriate to the organization’s risk profile. In practice, hotels should run at least an annual tabletop exercise, conduct life-safety and evacuation drills on the schedule their jurisdiction and NFPA codes require, and refresh the plan after any major change or real incident.

Does business continuity affect a hotel’s insurance and asset value?

Yes. Insurers view hotels with thorough continuity plans as lower-risk and may offer more favorable premiums and coverage terms. For institutionally owned properties, resilience and climate scenario analysis feed ESG frameworks such as GRESB, where physical climate risk is increasingly treated as material to asset value.

How does a pandemic factor into hotel continuity planning?

Pandemics create demand collapse and workforce illness simultaneously. Continuity plans address them through flexible staffing models, cross-training, hygiene and isolation protocols, scenario-based demand planning, and liquidity reserves. Many operators permanently streamlined staffing models after the COVID-19 period, blending labor reductions with technology-driven efficiency.

Sources & further reading

June 21, 2026

ESG in Banking and Investment: Risk, Lending, and Disclosure

ESG in banking and investment means integrating environmental, social, and governance factors into credit risk, underwriting, lending, and portfolio construction, and disclosing those exposures under frameworks such as the ISSB’s IFRS S1/S2, the EU’s CSRD/ESRS and SFDR, and the Basel Committee’s voluntary climate-risk disclosure framework. The practice is now being reshaped by two opposing forces in 2025-2026: regulatory consolidation around the ISSB baseline globally, and a sharp US “anti-ESG” retreat that drove every major Wall Street bank out of the Net-Zero Banking Alliance (NZBA) between December 2024 and January 2025 and prompted the SEC to abandon and then move to rescind its 2024 climate-disclosure rules.

What does ESG actually mean for a bank or asset manager?

For financial institutions, ESG is not a marketing layer; it is a set of risk factors and a disclosure regime. On the banking side, ESG enters through credit risk: climate transition risk (stranded assets, carbon-pricing exposure), physical risk (flood, wildfire, and heat damage to collateral), and governance and reputational risk in counterparties. On the investment side, ESG enters portfolio management through screening, integration, thematic allocation, stewardship, and impact strategies. Both sides converge on one hard requirement: comparable, decision-useful disclosure. The dominant theme of 2025-2026 is that disclosure rules are simultaneously converging on the ISSB global baseline and being scaled back in scope, especially in the United States and the European Union.

How is ESG used in credit risk, underwriting, and lending?

Banks integrate ESG into underwriting primarily as a forward-looking risk overlay rather than a values screen. Climate transition risk can impair the creditworthiness of carbon-intensive borrowers as carbon costs rise and demand shifts; physical risk can destroy or devalue real-estate and infrastructure collateral. Supervisors increasingly expect banks to run climate scenario analysis, identify concentrations, and reflect material climate risk in their internal capital adequacy assessment. The European Central Bank, the Bank of England, and the US Federal Reserve have all run climate scenario exercises, though none currently impose an explicit climate capital add-on. In practice, ESG factors most often affect pricing, covenants, and concentration limits rather than the binary decision to lend.

What are ESG-linked loans and sustainability-linked bonds?

Two instrument families dominate sustainable finance, and they work differently:

Use-of-proceeds instruments (green/social/sustainability bonds and loans): capital is ring-fenced for defined eligible projects (renewables, clean transport, affordable housing). Green bonds remained the largest single category, at roughly 53-57% of labeled issuance through 2024-2025.
Sustainability-linked instruments (SLLs and SLBs): proceeds are general-purpose, but the coupon or margin steps up or down based on the borrower hitting predefined sustainability performance targets (KPIs/SPTs). These face the most greenwashing scrutiny because weak targets produce a label with little substance.

The labeled bond market hit roughly USD 1 trillion to 1.1 trillion in 2024 (World Bank and Climate Bonds Initiative data), with cumulative labeled issuance reaching about USD 6.2 trillion by December 2024. The sustainability-linked segment has cooled markedly: S&P Global forecast only about USD 35 billion of SLB issuance for 2025, far below the 2021-2023 peak, and labeled loan volumes fell roughly 52% from H1 2024 to H1 2025 as borrowers dropped labels whose pricing benefit (often just a few basis points of margin step-down) no longer justified the verification burden. On 26 March 2025, the loan-market trade associations (LMA/LSTA/APLMA) tightened the Sustainability-Linked Loan Principles, making post-signing verification by a qualified external reviewer mandatory (“shall” rather than “should”).

How do investment and asset-management firms integrate ESG?

Asset managers deploy a spectrum of approaches, often within the same firm: negative/exclusionary screening (e.g., excluding controversial weapons or thermal coal), positive/best-in-class screening, full ESG integration into financial analysis, thematic and impact investing, and active ownership through proxy voting and engagement. Post-2023, the industry has shifted language from “ESG investing” toward “sustainable investing,” “transition finance,” and “responsible investing,” partly to sidestep US political controversy and partly to comply with tighter fund-naming rules. Stewardship and engagement remain widely practiced even where firms have muted public ESG branding.

Which disclosure frameworks apply to financial institutions?

A bank or asset manager operating across major markets faces an overlapping stack of frameworks. The single most important shift is that the ISSB’s IFRS S1 and S2 have become the global baseline, formally consolidating the legacy TCFD recommendations (the IFRS Foundation took over TCFD monitoring in 2024).

Framework	Issuer / jurisdiction	Status (2025-2026)	Relevance to financial institutions
IFRS S1 / S2 (ISSB)	IFRS Foundation (global)	Global baseline; adopted or being adopted by 35+ jurisdictions representing more than half of global GDP	Entity-wide sustainability and climate risk disclosure; absorbs TCFD; basis for UK, Hong Kong, Singapore, Brazil, Nigeria, Malaysia regimes
CSRD / ESRS	EU	In force but scaled back by the 2025 “Omnibus” simplification package	Mandatory double-materiality reporting for large EU banks and insurers; scope sharply reduced
SFDR	EU (ESMA/EC)	Under “SFDR 2.0” overhaul (proposal Nov 2025)	Product-level disclosure and de facto fund labeling for asset managers
TCFD	FSB (legacy)	Disbanded 2023; monitoring absorbed by ISSB	Still referenced in many national rules; superseded by IFRS S2
Basel climate-risk disclosure	BCBS	Published 13 June 2025 as voluntary, not Pillar 3	Bank-specific climate-risk disclosure template; adoption left to national regulators
SEC climate rules	US SEC	Stayed since April 2024; SEC moved to rescind in 2025-2026	Effectively defunct for US registrants

What changed with the EU’s CSRD “Omnibus” package?

In 2025 the EU enacted an “Omnibus” simplification that dramatically narrowed the Corporate Sustainability Reporting Directive. The final deal raised the mandatory threshold to EU companies with more than 1,000 employees and over EUR 450 million in net turnover, cutting the in-scope population by an estimated ~90% versus the original 250-employee threshold. EFRAG delivered simplified ESRS that reduce mandatory data points by roughly 60-70% (from about 1,073 to around 320). The Commission is expected to adopt the revised ESRS by delegated act around mid-2026, with effect potentially from FY2027. Large EU banks and insurers remain in scope, but value-chain data requests from smaller counterparties are now capped.

How do SFDR’s Article 6, 8, and 9 categories work, and what is “SFDR 2.0”?

The EU Sustainable Finance Disclosure Regulation (SFDR) was designed as a disclosure regime but was used by the market as a labeling system. Almost half of EU assets under management sit in Article 8 or Article 9 products.

SFDR classification	Plain-language meaning	Market nickname
Article 6	No sustainability focus, or ESG risks merely considered; baseline disclosure	“Non-ESG”
Article 8	Promotes environmental or social characteristics	“Light green”
Article 9	Has sustainable investment as its objective	“Dark green”

In November 2025 the European Commission proposed “SFDR 2.0,” replacing the Article 8/9 regime with three formal product categories – broadly Sustainable, Transition, and ESG (collection/basics) – each anchored by a roughly 70% portfolio threshold, common exclusions, and short-form disclosures. The legislative process is expected to run through 2026-2027, with application unlikely before 2028. Until then, the Article 6/8/9 framework remains in force.

What do fund-naming and greenwashing rules require?

Two regimes police the gap between a fund’s name and its holdings. In the EU, ESMA’s fund-naming guidelines took effect in 2024 with a compliance deadline of May 2025: funds using ESG, “sustainable,” “impact,” or environmental terms such as “green” must invest at least 80% of assets in line with the relevant characteristics and apply Paris-Aligned Benchmark exclusions. The effect was immediate – per an ESMA study of 924 funds, about 64% changed their names ahead of the deadline, with many simply dropping ESG terminology rather than greening portfolios.

In the United States, the SEC’s amended Names Rule (adopted September 2023) extended the longstanding “80% investment policy” to fund names suggesting “particular characteristics,” explicitly capturing ESG and sustainability funds: a fund whose name implies an ESG focus must hold at least 80% of assets consistent with that focus. The SEC began reviewing the rule’s application to ESG names in 2026, leaving its long-term future uncertain.

What is the “anti-ESG” backlash, and what did it actually change?

The 2024-2026 US backlash combined state-level legislation, litigation threats, and political pressure that materially changed institutional behavior even where the underlying risk analysis did not change. The clearest signal was the collapse of the Net-Zero Banking Alliance (NZBA): between December 2024 and January 2025, Goldman Sachs, Wells Fargo, Citigroup, Bank of America, Morgan Stanley, and finally JPMorgan Chase (7 January 2025) all exited, and the alliance subsequently paused operations and moved to restructure into a looser framework body. Major US asset managers similarly stepped back from net-zero investor coalitions such as Climate Action 100+ and the Net Zero Asset Managers initiative, which suspended activities in early 2025.

Crucially, most institutions framed these as departures from coalitions and public commitments, not from risk management. Banks continued climate scenario analysis, transition-risk modeling, and sustainable-finance underwriting where commercially driven. The same period saw regulators retreat on mandates: the SEC stopped defending its climate rules in March 2025 and proposed full rescission; the Basel Committee downgraded its bank climate-disclosure framework to voluntary in June 2025 after US pressure, dropping the requirement to disclose financed and facilitated emissions regardless of materiality. The net effect is a bifurcated world: a tighter, ISSB-anchored disclosure regime maturing across the UK, EU, and Asia-Pacific, and a deregulatory, depoliticized posture in the United States.

Frequently asked questions

Is ESG investing legally required for US banks?

No. There is no US federal mandate requiring banks or asset managers to “do ESG.” US disclosure of climate risk via the SEC’s 2024 rules was stayed and is being rescinded. ESG-relevant obligations for US firms now flow mainly from fiduciary duty, the Names Rule for fund branding, and exposure to EU rules when operating in Europe.

What replaced the TCFD framework?

The ISSB’s IFRS S2 absorbed and superseded the TCFD recommendations. The Task Force on Climate-related Financial Disclosures was disbanded in 2023, and the IFRS Foundation took over monitoring climate-related disclosure progress in 2024. National rules built on TCFD are migrating to the IFRS S1/S2 baseline.

Did banks abandon climate risk management when they left the NZBA?

Generally no. Leaving the Net-Zero Banking Alliance removed a public coalition commitment but did not switch off internal climate-risk analysis, scenario testing, or sustainable-finance lending, which banks largely retained as commercial and prudential disciplines.

What is the difference between a green bond and a sustainability-linked bond?

A green bond ring-fences proceeds for specific eligible green projects, so its “greenness” is in how the money is spent. A sustainability-linked bond can fund anything, but its coupon adjusts based on whether the issuer meets predefined sustainability targets, so its integrity depends entirely on how ambitious those targets are.

Does a fund called “sustainable” have to hold a minimum percentage of sustainable assets?

Yes, in both major markets. Under ESMA’s EU guidelines, ESG/sustainability-named funds must hold at least 80% of assets aligned with those characteristics and apply benchmark exclusions. Under the SEC Names Rule, an ESG-named US fund must keep at least 80% of assets consistent with the name.

Is the EU still requiring CSRD reporting after the Omnibus changes?

Yes, but for far fewer companies. The 2025 Omnibus package raised the mandatory threshold to roughly 1,000 employees and EUR 450 million in net turnover, cutting in-scope entities by an estimated 90% and reducing required ESRS data points by 60-70%. Large EU banks and insurers remain in scope.

Is the Basel climate-disclosure framework mandatory for banks?

No. The Basel Committee published its climate-related financial-risk disclosure framework on 13 June 2025 as a voluntary standard outside the Pillar 3 mandatory requirements, leaving adoption to individual national regulators.

Sources & further reading

June 21, 2026

ESG Ratings Compared: MSCI vs Sustainalytics vs ISS ESG vs CDP vs EcoVadis (2026 Methodology Guide)

The five most-cited ESG rating systems — MSCI, Morningstar Sustainalytics, ISS ESG, CDP, and EcoVadis — measure different things, on different scales, in different directions. MSCI grades industry-relative resilience on an AAA–CCC letter scale; Sustainalytics scores absolute unmanaged risk from 0 to 100 where lower is better; ISS ESG flags “Prime” status on an A+ to D- scale; CDP scores environmental disclosure from A to D-; and EcoVadis awards medals to suppliers by percentile rank. Because they define and weight “ESG” so differently, their scores for the same company correlate only about 0.54 on average. This guide explains each methodology, why the numbers disagree, and how to improve every one.

ESG ratings at a glance: the five systems compared

Provider	Owned by	What it measures	Scale & direction	Relative or absolute	Primary audience
MSCI ESG Ratings	MSCI Inc.	Resilience to financially material, industry-specific ESG risks & opportunities	AAA → CCC (7 tiers); 0–10 underlying score. Higher is better.	Industry-relative (vs. GICS sub-industry peers)	Asset managers, index funds
Morningstar Sustainalytics	Morningstar	Magnitude of a company’s unmanaged ESG risk	0–100 risk score; 5 bands (Negligible → Severe). Lower is better.	Absolute (comparable across industries)	Investors, brokerages, risk teams
ISS ESG Corporate Rating	ISS STOXX (Deutsche Börse)	Absolute ESG performance vs. demanding best-in-class expectations	A+ → D-; “Prime/Not Prime” threshold; decile rank 1–10. Higher is better.	Absolute grade + relative decile	European institutional investors
CDP	CDP (nonprofit)	Quality of environmental disclosure and action (climate, water, forests)	A/A- → D/D- (+ F for non-response). Higher is better.	Absolute (criteria-based)	Investors & procurement
EcoVadis	EcoVadis	Quality of a supplier’s sustainability management system	0–100 score; Medals by percentile (Bronze → Platinum). Higher is better.	Relative (percentile vs. all assessed companies)	Procurement / supply-chain teams

The single most important takeaway: a “good” score in one system does not translate to another, because the systems are not measuring the same construct. MSCI asks “is this company managing its material risks better than its peers?” Sustainalytics asks “how much unmanaged risk is left on the table, in absolute terms?” CDP asks “how good is this company’s environmental disclosure?” Comparing a Sustainalytics “Low Risk” to an MSCI “AA” is comparing different questions, not different answers to the same question.

Why ESG ratings disagree (the research most people miss)

Credit ratings from Moody’s and S&P correlate at roughly 0.99. ESG ratings do not come close. The landmark study on this is “Aggregate Confusion: The Divergence of ESG Ratings” by Berg, Kölbel & Rigobon, published in the Review of Finance (2022). Examining six major raters, they found:

Average correlation of just 0.54 across ESG ratings, ranging from 0.38 to 0.71.
Governance ratings are the least correlated, at 0.30 — the dimension investors often assume is most objective is actually where raters disagree most.
The social dimension correlates at about 0.42.

They decompose the disagreement into three sources:

Measurement (56%) — raters measure the same attribute (e.g., “employee turnover”) using different indicators and data, and reach different conclusions.
Scope (38%) — raters include different sets of attributes. One counts lobbying; another doesn’t.
Weight (6%) — raters weight the same attributes differently.

The study also identified a “rater effect” (a halo): once an agency forms an overall view of a company, that view bleeds into how it scores individual categories. The practical consequence — confirmed in follow-on research — is that ESG rating divergence sends companies mixed signals about which actions the market actually values, and can dampen the incentive to improve.

What this means for you: never treat a single ESG score as ground truth. Triangulate across providers, and always ask what the rating measures before you act on it.

MSCI ESG Ratings: industry-relative resilience (AAA–CCC)

What it measures. MSCI ESG Ratings assess a company’s resilience to financially material, industry-specific ESG risks and opportunities. It is explicitly a financial materiality lens — “which ESG issues could hit the bottom line in this industry, and how well is this company managing them?”

The scale. Companies receive a 0–10 underlying score that maps to a seven-tier letter rating:

Leader: AAA, AA
Average: A, BBB, BB
Laggard: B, CCC

How it works. MSCI identifies the Key Issues that are material for each GICS sub-industry. Each Environmental or Social Key Issue carries a weight of roughly 5% to 30% of the total rating, set according to how much the industry contributes to that issue’s negative externality and how quickly the issue is expected to materialize. Scores are then normalized within each industry, so the rating is fundamentally peer-relative: an AA tells you the company leads its industry on managing material risks, not that it is “sustainable” in an absolute sense.

Worth knowing for 2026: MSCI announced a multi-stage ESG Ratings model update (disclosed October 2025) that is transitioning through 2026. If you are benchmarking or citing a specific rating, confirm it against MSCI’s current model rather than an older snapshot.

How to improve an MSCI rating: focus only on the Key Issues MSCI deems material for your sub-industry (managing an immaterial issue won’t move the score), strengthen disclosure on those issues, and remember the score is relative — improvement requires outpacing peers, not just improving in absolute terms.

Morningstar Sustainalytics: absolute unmanaged risk (0–100, lower is better)

What it measures. The Sustainalytics ESG Risk Rating measures the magnitude of a company’s unmanaged ESG risk — the portion of material ESG exposure that the company has not addressed through programs and policies. Crucially, it runs in the opposite direction from MSCI: a lower score is better.

The scale. Scores run 0 to 100 and sort into five risk categories:

Negligible: 0–10
Low: 10–20
Medium: 20–30
High: 30–40
Severe: 40+

How it works. For each Material ESG Issue (MEI), Sustainalytics calculates Exposure (how much risk the business is inherently subject to) and then subtracts Managed Risk (the part addressed by the company) — plus a recognized band of risk that is simply unmanageable for that business. Unmanaged Risk = Exposure − Managed Risk. Because exposure is assessed at the sub-industry level but the final score is absolute, Sustainalytics ratings are designed to be comparable across industries and regions — a key difference from MSCI’s peer-relative approach. This is the rating you most often see surfaced on retail brokerages and finance portals.

How to improve a Sustainalytics score: close the gap between exposure and management — demonstrate concrete programs, policies, and outcomes on your highest-exposure MEIs. Because the score is absolute, real management improvements move it even if peers don’t change.

ISS ESG Corporate Rating: “Prime” status (A+ to D-)

What it measures. Now part of ISS STOXX (Deutsche Börse Group), the ISS ESG Corporate Rating evaluates a company against demanding, absolute best-in-class performance expectations for its industry.

The scale. A twelve-grade scale from A+ (best) to D- (worst), with two headline outputs:

Prime / Not Prime: companies that clear an industry-specific threshold (often C+, but higher for industries with greater ESG exposure) earn “Prime” status — a signal of ESG investability.
Decile rank (1–10): shows relative standing within the industry, where 1 is the strongest and 10 the weakest.

How it works. ISS ESG combines an absolute letter grade (against a fixed bar) with a relative decile rank (against peers), so you get both “did it meet the standard?” and “how does it rank?” in one rating. As of 2025, ISS defines SMEs as companies with fewer than 500 employees and under USD 500 million in revenue, reflecting expanding mandatory sustainability reporting.

How to improve an ISS ESG rating: identify the industry-specific Prime threshold and the absolute criteria behind it, then prioritize the indicators that lift you above the Prime line — the binary Prime status often matters more to investors than incremental grade movement.

CDP: environmental disclosure, scored A to D-

What it measures. CDP is different in kind from the others — it is a nonprofit disclosure platform, not a paid third-party rater. Companies respond to CDP’s questionnaire and are scored on the completeness and ambition of their environmental disclosure and action across Climate Change, Forests, and Water Security (with new scoring for cocoa, coffee, and rubber added in 2025).

The scale. Four bands, each reflecting a level of progress:

A / A- — Leadership (the “A List”)
B / B- — Management
C / C- — Awareness
D / D- — Disclosure
F — failure to provide sufficient information / non-response

How it works. A company must satisfy CDP’s “Essential Criteria” at each level to progress — and as of 2025 those criteria apply at every tier, not just the top. A notable 2025 change: companies must have Scope 1 and Scope 2 emissions externally verified to reach the highest scores, and Forests and Water Security are now publicly scored for the financial-services sector. Because CDP rewards disclosure quality, a high CDP score signals transparency and process maturity — not necessarily low ESG risk.

How to improve a CDP score: map your response against the Essential Criteria for the level you’re targeting, secure third-party verification of Scope 1 & 2 emissions early, and treat the questionnaire as a year-round data project rather than an annual scramble.

EcoVadis: supply-chain medals by percentile

What it measures. EcoVadis assesses the quality of a company’s sustainability management system — primarily for procurement and supply-chain vetting. It is evidence-based: companies submit documentation, which EcoVadis evaluates through a Policies–Actions–Results (P-A-R) lens.

The scale. A 0–100 score across 21 criteria in four themes — Environment; Labor & Human Rights; Ethics; and Sustainable Procurement — translated into medals by percentile:

Platinum: top 1% of assessed companies
Gold: top 5%
Silver: top 15%
Bronze: top 35%

How it works. Medals are awarded relative to all companies assessed in the prior 12 months, so the bar moves with the population. A company is not eligible for any medal if its score in any single theme falls below 30, which prevents one strong theme from masking a weak one. As of January 2025, EcoVadis displays unrounded theme scores (e.g., 68/100) and uses them in the overall calculation.

How to improve an EcoVadis medal: close your weakest theme first (the sub-30 cutoff is the most common medal-blocker), and supply concrete evidence for Policies, Actions, and Results — claims without documentation don’t score.

How to use multiple ESG ratings together

Because each system answers a different question, the right move is to read them as complementary, not competing:

Want financial-materiality and peer benchmarking? Lead with MSCI.
Want an absolute, cross-industry risk number? Lead with Sustainalytics.
Need a Prime/Not-Prime investability screen (especially in Europe)? Use ISS ESG.
Assessing environmental transparency and climate action? Use CDP.
Vetting a supplier? Use EcoVadis.

When two providers disagree sharply on the same company, that’s signal, not noise: it usually means they scope ESG differently (the 38% scope-divergence finding) or weight a controversy differently. Read the underlying sub-scores, not just the headline grade.

For a deeper walkthrough of how each scoring methodology is built and provider-specific tactics for lifting a score, see our companion guide to ESG ratings methodology and rating-improvement strategy.

Frequently asked questions

Which ESG rating is the most accurate?

None is definitively “most accurate” because they measure different things. MSCI and ISS ESG measure managed performance and resilience; Sustainalytics measures unmanaged risk; CDP measures environmental disclosure; EcoVadis measures supply-chain management systems. “Accuracy” depends on the question you’re asking. The more useful goal is to match the rating to your use case and triangulate across at least two.

Why does the same company get different ESG scores?

Because raters disagree on what to measure (scope), how to measure it (measurement), and how to weight it (weight). Research by Berg, Kölbel & Rigobon (2022) found ESG ratings correlate only about 0.54 on average, with measurement differences driving 56% of the divergence. A “rater effect” halo also nudges category scores toward each agency’s overall view of the company.

Is a low Sustainalytics score good or bad?

Good. The Sustainalytics ESG Risk Rating runs 0–100 where lower is better — a low score means little unmanaged risk. This is the opposite of MSCI, CDP, ISS ESG, and EcoVadis, where higher is better. Reversing this direction is one of the most common ESG-rating mistakes.

What does an MSCI rating of A or BBB mean?

On MSCI’s AAA–CCC scale, both A and BBB fall in the “Average” band — the company is neither a leader (AAA/AA) nor a laggard (B/CCC) at managing the ESG risks material to its industry. Because the rating is industry-relative, the same letter can reflect very different absolute practices across sectors.

Is CDP an ESG rating?

Not in the traditional sense. CDP is a nonprofit environmental disclosure platform that scores the quality of a company’s reporting and action on climate, water, and forests (A to D-). It rewards transparency and management maturity rather than scoring overall ESG risk, which is why CDP is best read alongside a true risk or performance rating.

Does MSCI use CDP data?

ESG raters draw on many overlapping public sources — corporate filings, CDP disclosures, regulatory data, news and NGO reports — but each applies its own model, indicators, and weights on top. Shared inputs do not produce shared conclusions, which is a core reason ratings still diverge even when raters read the same underlying disclosures.

What’s the difference between EcoVadis Gold and Platinum?

Both are percentile awards: Platinum goes to the top 1% of companies assessed by EcoVadis in the prior 12 months, and Gold to the top 5%. Because they’re relative to the assessed population, the score needed for each medal can shift year to year. No medal is awarded if any single theme scores below 30.

Sources & further reading

MSCI, ESG Ratings Methodology (AAA–CCC scale, industry-relative Key Issues).
Morningstar Sustainalytics, ESG Risk Ratings (0–100 unmanaged-risk scale, five risk categories).
ISS ESG, Corporate Rating & Prime Status (A+ to D-, decile rank).
CDP, How CDP Scores Companies (A to D- disclosure scoring on climate, water, forests).
EcoVadis, Medals & Badges (percentile medals across four themes).
Berg, Kölbel & Rigobon (2022), “Aggregate Confusion: The Divergence of ESG Ratings,” Review of Finance.

June 21, 2026

Business Continuity Planning for Property Management Firms: The NYC Building Playbook

Last updated: June 10, 2026. By Will Tygart. Written for property management firms running NYC commercial buildings — with the FDNY rule citations and the post-loss compliance steps most continuity guides skip.

A business continuity plan for a property management firm has to answer three questions most corporate BCP templates never ask: can the building legally operate the morning after the event, can the management firm keep serving its whole portfolio while one property is in crisis, and does the recovery generate the documentation that regulators and reporting frameworks will ask for later? In New York City, those questions have specific legal anchors — FDNY’s combined fire safety and emergency action plan requirements, the city’s Business Preparedness and Resiliency Program, and (the one nobody connects) Local Law 97’s disaster-mitigation provision, which can turn a well-documented loss into a zero-dollar penalty year.

What makes property management continuity different

A corporate occupier plans for one organization in leased space. A PM firm plans for a portfolio: the event at 425 Whatever Street is also a staffing, communication, and vendor-allocation problem for every other building the same team serves. The plan therefore has two layers:

The building layer — life safety, systems recovery, tenant communication, and regulatory continuity for each property.
The firm layer — who backstops the affected property team, how vendor capacity is allocated when two buildings flood in the same storm, and how the firm communicates to owners and tenants portfolio-wide.

The NYC legal floor (cite these, your insurers do)

FDNY 3 RCNY §06-02 — office buildings must maintain a combined Fire Safety and Emergency Action Plan (EAP), accepted by FDNY; buildings with an occupancy over 100 require an EAP Director holding the FDNY Certificate of Fitness; fire drills run semi-annually and EAP drills annually. This is the legally required core your BCP extends — not a separate document.
NYC Fire Code Chapter 4 — the emergency planning and preparedness baseline for the occupancy types in your portfolio.
NYC Business Preparedness and Resiliency Program (BPRP) — the city’s free continuity planning resources for businesses, useful as the tenant-facing layer of your plan.

The plan, in seven components

Life safety and the legal documents — current FDNY-accepted plans, named EAP Director and deputies, drill records. Everything else assumes this layer is real.
Systems and dependencies map — per building: power, steam/gas, elevators, BMS, telecom, and the single points of failure (the one transformer vault, the one riser). The LL87 energy audit you already paid for contains half of this map; reuse it.
Vendor pre-positioning — signed MSAs with restoration, mechanical, electrical, and environmental vendors before the loss, with rate schedules and response-time commitments. Procurement during a crisis through an insurance TPA is how buildings end up with whoever was available. This is also where the emissions-data clause belongs — one sentence added now, because post-event is too late.
Communication tree — owner, tenants, insurers, FDNY/DOB, utility, and the firm’s other properties. Pre-drafted tenant notices for the five most likely events (water, fire, power, elevator, weather closure) save the worst hour of the worst day.
Data continuity — the building’s compliance records (ESPM access, BEAM filings, drill logs, equipment inventories) survive the event if they live in the firm layer, not in a flooded management office. The portfolio that can produce its records recovers its operations — and its insurance claim — faster.
The documentation reflex — from hour one: photographs, equipment logs, timelines. This is simultaneously your insurance claim, your LL97 penalty-zero evidence (1 RCNY 103-14(i)(1): documented hurricane, flooding, or fire damage “may result in a penalty of zero dollars” for the year), and — if your vendors report under CRCP — the carbon record your owner’s GRESB submission and your tenants’ Scope 3 inventories will ask for.
The after-action loop — every event updates the plan, the vendor scorecards, and the dependency map. Continuity planning is calibration, not a binder.

The part other BCP guides miss: recovery is a reporting event

A major loss at a covered NYC building triggers a paperwork cascade that begins after the water is out: the insurance claim, the LL97 filing for a distorted emissions year (emissions during declared emergencies are excluded by statute; disaster damage is a named penalty-mitigation factor), the benchmarking anomaly you will explain in next year’s LL84 data, and — increasingly — the ESG questions from owners and corporate tenants about what the recovery itself emitted. A continuity plan that treats documentation as a recovery deliverable, not an afterthought, converts the worst week of the building’s year into the best-evidenced file in the portfolio. That is the practical meaning of resilience for a management firm: the building reopens, the penalties zero out, and the data survives.

What this means for each seat at the table

If you are the…	Continuity means…
Owner	Asset protection plus penalty protection: the documented loss is the difference between an LL97 penalty year and a zero-dollar one, and pre-positioned vendors beat crisis pricing every time.
Facility / property manager	You run both layers — the building’s legal floor (FDNY plans, drills, the EAP Director’s certificate) and the firm’s portfolio response. The vendor MSAs and the documentation reflex are yours to build this quarter, not during the event.
Tenant	Your own continuity plan should reference the building’s: evacuation roles, restoration priority for your space, and — if you report under SB 253 or CSRD — how recovery work in your suite gets carbon-documented.

Frequently asked questions

What should a business continuity plan for a property management firm include?

Seven components: the FDNY-required life-safety plans, a building systems and dependency map, pre-positioned vendor agreements, a communication tree with pre-drafted tenant notices, firm-level data continuity for compliance records, a documentation protocol that starts at hour one, and an after-action update loop.

What emergency plans are legally required in NYC office buildings?

A combined Fire Safety and Emergency Action Plan accepted by FDNY under 3 RCNY §06-02, an EAP Director with the FDNY Certificate of Fitness where occupancy exceeds 100, semi-annual fire drills, and annual EAP drills — the mandatory core a business continuity plan builds on.

How does business continuity connect to Local Law 97?

Two ways: emissions during declared emergencies are excluded from a building’s LL97 calculation, and documented disaster damage (hurricane, severe flooding, fire — with photographs) can reduce the year’s penalty to zero under 1 RCNY 103-14(i)(1). The documentation your recovery generates is compliance evidence.

Why pre-position restoration vendors before a loss?

Crisis procurement through an insurance TPA optimizes for availability, not fit. Pre-signed MSAs lock rates, response times, documentation standards — and the emissions-data clause that makes the vendor’s job file feed your ESG reporting, which cannot be added retroactively.

Who in a property management firm should own the continuity plan?

The building layer belongs to each property’s manager with the EAP Director; the firm layer — portfolio staffing, vendor allocation, owner communication — belongs to a named senior operations owner. Plans without a named owner are shelf documents.

Primary sources

NYC Fire Code Chapter 4 — emergency planning and FDNY 3 RCNY §06-02 (combined fire safety/EAP)
NYC Business Preparedness and Resiliency Program
1 RCNY 103-14 — LL97 disaster mitigation provision
The Commercial Restoration Carbon Protocol (vendor documentation standard)

June 9, 2026

The Property Management Vendor ESG Due Diligence Checklist (2026)

Last updated: June 10, 2026. By Will Tygart, author of the Commercial Restoration Carbon Protocol (CRCP). The full checklist is on this page in plain HTML — no gate, no form.

Vendor due diligence in property management has always meant three folders: license, insurance, references. ESG adds a fourth — and for most building vendors it comes down to twelve questions across environmental data capability, waste handling, labor practice, and governance basics. This checklist is built for the vendors a building actually hires — restoration crews, mechanical contractors, roofers, haulers, cleaners — not for the Fortune 500 supplier surveys that ask a 30-person contractor for a corporate sustainability report it will never have.

Why this is landing on property managers now: large enterprises are pushing their Scope 3 obligations down the chain. California’s SB 253 puts purchased goods/services and waste in the first Scope 3 reporting wave (2027); CSRD already reaches the value chains of European-exposed companies; and GRESB scores real estate entities on whether they “monitor external suppliers’ compliance with ESG-specific requirements” (GRESB Reference Guide). For a smaller vendor, inability to answer basic ESG questions is starting to mean lost contracts — which makes this checklist as useful to send your vendors in advance as it is to score them with.

The checklist

Part 1 — Environmental (the part with dollar consequences)

#	Question	What good looks like
E1	Can you provide job-level emissions activity data (equipment runtime, fuel, mileage, materials) in a standard format?	Yes, per-job — the CRCP twelve-field record or equivalent. “We can send our sustainability brochure” is a no.
E2	How do you document waste streams and disposal?	Manifests retained, receiving facilities named, diversion/recycling rates known for typical jobs.
E3	What is your fleet and equipment profile?	Vehicle list with fuel types; any electric equipment; generator policy (when grid power is available, do crews use it?).
E4	What chemicals do you bring into occupied buildings?	SDS sheets on request, low-VOC defaults, antimicrobial protocols that respect indoor air in occupied space.
E5	Have you accepted contractual emissions-data clauses before?	Yes, or willing — the MSA line: “per-job emissions data in the requesting organization’s specified format as a condition of final invoice approval.”

Part 2 — Social (the part your tenants ask about)

#	Question	What good looks like
S1	Workforce: employees or 1099 crews? Training and certifications current?	Stable crews, named certs (IICRC for restoration, EPA 608 for mechanical, OSHA 30 supervision).
S2	Prevailing wage / labor compliance where applicable?	Clean record; no open wage cases. (NYC work makes this a practical, not theoretical, screen.)
S3	Site conduct in occupied buildings: background checks, badging, tenant-interaction policy?	A written policy, not an assurance.

Part 3 — Governance (the part that predicts the other two)

#	Question	What good looks like
G1	Who owns ESG/compliance questions at the firm?	A named person who answers within a business day — ownership is the whole test.
G2	Documentation discipline: can you produce last year’s job files?	Fast retrieval. A vendor who can find the file can fill the carbon template; insurance-trained contractors usually can.
G3	Data handling: how is our building’s information stored and shared?	Basic answer covering job photos, access records, and any cloud platforms used.
G4	Subcontracting: do these standards flow down?	Yes, contractually — otherwise every answer above only covers the top layer.

How to score it without building a bureaucracy

Three tiers, not a spreadsheet of weights: Ready (answers E1/E2/G2 affirmatively with evidence — these are your strategic vendors and your CRCP early adopters); Willing (gaps, but accepts the MSA clause and the template — most good trade vendors live here in 2026; give them a cycle to mature); Resistant (will not commit to documentation — a flag that predicts problems well beyond carbon). The honest framing for vendors: none of this is legally required of them today, and you should say so. It is contractually required by you, because GRESB, SB 253-covered tenants, and investor questionnaires are asking you — and the vendors who can answer become the ones you can put in front of any client.

Apply the 80/20 before applying the checklist

CDP’s supplier data shows roughly 20% of suppliers drive about 80% of supply-chain emissions — and fewer than half of data requests get answered at all. Run the full checklist on the carbon-heavy minority — restoration, demolition, roofing, mechanical replacement, hauling — and only Parts 2–3 on the long tail. Your window washer does not need a fleet profile; your restoration vendor absolutely does, because a single large water loss can out-emit a year of routine maintenance (the only published figure in the field: restoring one flooded home ≈ 6.5 return transatlantic flights of CO2, per Aviva — commercial losses run larger).

What this means for each seat at the table

If you are the…	The checklist is…
Owner	Your GRESB supplier-monitoring evidence, generated as a byproduct of procurement you already do.
Facility / property manager	A one-page addition to vendor onboarding that future-proofs every contract you sign this year — send it before the RFP, not after the award.
Tenant (corporate occupier)	Proof your landlord’s vendor pool can feed your Scope 3 inventory — worth one question in your next lease negotiation.

Frequently asked questions

What should a vendor ESG questionnaire ask?

Twelve questions across three parts: environmental data capability (job-level emissions data, waste documentation, fleet, chemicals, contract clauses), social practice (workforce, wage compliance, site conduct), and governance (a named owner, document retrieval, data handling, subcontractor flow-down). Skip corporate-footprint questions small vendors cannot answer.

Is ESG vendor due diligence legally required for property managers?

No law requires it today. The drivers are GRESB’s scored supplier-monitoring indicator, SB 253-covered tenants whose 2027 Scope 3 reporting includes purchased services and waste, and investor questionnaires — contractual and commercial pressure, not statute.

How is this different from a normal vendor compliance checklist?

Standard checklists cover licenses, insurance, and references. This adds the ESG layer that those never touch — specifically the job-level carbon data capability that generic corporate supplier surveys ask for in a form building trades cannot answer.

Which vendors should get the full checklist?

The carbon-heavy 20%: restoration, demolition, roofing, mechanical replacement, and hauling. Routine low-impact services need only the social and governance parts.

What if a vendor fails the environmental section?

Distinguish willing from resistant. A vendor with gaps who accepts the data clause and template is normal in 2026 — give them a cycle. A vendor who refuses documentation commitments is telling you something about every future claim file too.

Sources

June 9, 2026

LL84, LL88, LL97, and LL33: The NYC Building Compliance Stack as One Calendar (2026)

Last updated: June 10, 2026. By Will Tygart. One calendar, four laws, every threshold and fine from primary sources.

New York City’s building energy laws are not four separate compliance problems — they are one data pipeline with four filing outputs, and the law with the fines (LL97) legally depends on the two you might be tempted to ignore (LL84 and LL88). The same ENERGY STAR Portfolio Manager record feeds the LL84 benchmark and the LL97 emissions report, both due May 1. The LL84 data generates your LL33 letter grade each fall. And if your building is ever over its LL97 cap, the good-faith-efforts mitigation that can save six figures requires current LL84 benchmarking and an LL88 attestation as legal prerequisites (1 RCNY 103-14(i)(2)). Treat them as one workflow and the marginal cost of each additional law approaches zero; treat them separately and you pay four consultants to chase one dataset.

The four laws in one table

Law	What it requires	Who is covered	Deadline	Penalty
LL84 (benchmarking)	Annual energy + water data via ESPM	Single buildings >25,000 gsf; 2+ buildings on one lot together >100,000 gsf	May 1	$500/quarter, max $2,000/yr
LL88 (lighting + submeters)	Lighting to current code; submeters in tenant spaces >5,000 gsf — both were due Jan 1, 2025	Same thresholds as LL84	Reports due May 1, 2026 for buildings not yet compliant	Violations + blocks LL97 mitigation
LL97 (emissions caps)	RDP-certified annual emissions report in BEAM; stay under the cap	Single buildings >25,000 gsf; aggregates >50,000 gsf	May 1 (grace to Jun 30)	$268/tCO2e over; $0.50/sqft/month unfiled
LL33/95 (grades)	Post the A–F energy grade at every public entrance	All LL84-benchmarked buildings	Oct 1–31	Violations for failure to post

Two traps hide in that table. First, the aggregation thresholds differ: LL84 aggregates multi-building lots at 100,000 sqft while LL97 aggregates at 50,000 — so a three-building, 70,000 sqft tax lot can be covered by LL97 and not by LL84. Never assume one Covered Buildings List answers for the other. Second, an A grade does not mean LL97 compliance: LL33 grades score your ENERGY STAR percentile relative to peers, while LL97 caps are absolute carbon limits. A building full of efficient-but-electric-resistant systems can post a B in the lobby and still owe $268-per-ton penalties — and vice versa.

The dependency nobody prices in: LL84 + LL88 are your LL97 insurance

If your building exceeds its cap, the difference between paying full freight and paying little or nothing usually runs through good-faith-efforts mitigation. The rule’s mandatory entry criteria (1 RCNY 103-14(i)(2)): a filed emissions report, uploaded LL84 benchmarking data, and an attestation of LL88 lighting upgrades and tenant submetering — before any of the qualifying pathways (decarbonization plan, approved compliance work, electric readiness, a prior under-cap year) even get considered. A skipped $500-a-quarter LL84 filing can therefore disqualify a building from mitigation worth tens or hundreds of thousands. Compliance with the cheap laws is the admission ticket for relief from the expensive one.

The unified compliance calendar (rest of 2026 and beyond)

Date	Filing
June 30, 2026	LL97 CY2025 grace ends; last day for the $60 extension (to Aug 29) — full guide
Aug 1 / Nov 1 / Feb 1	LL84 quarterly violation cure deadlines if you missed May 1
Oct 1–31, 2026	LL33 grade posted at every public entrance
Dec 31, 2026	LL87 energy audit + retro-commissioning reports for buildings in the 2026 cycle (10-year rotation by block number)
Jan–Apr 2027	Tenant data collection → ESPM → LL84 + LL97 prep (the pipeline restarts)
May 1, 2028	Good-faith decarbonization-plan filers must show DOB-approved applications for 2030-cap work
Jan 1, 2030	LL97 caps tighten 50–79% by property type — run both periods in the calculator

Run it as one workflow

One data owner. A single person (or consultant) holds the ESPM record, the tenant-data chase, and the utility authorizations. Every law downstream consumes their output.
One January kickoff. Tenant energy requests, ESPM access verification, and property-type checks happen once, in January — not once per law in April.
One filing sprint. LL84 and LL97 are due the same day from the same dataset; file them as a pair through the three-portal sequence.
One evidence file. LL88 attestations, LL87 reports, grades, and any disaster documentation live in one place — because the day you need good-faith mitigation, DOB asks for all of it at once.

What this means for each seat at the table

If you are the…	The stack means…
Owner	Budget the stack as one program. The $2,000-capped LL84 fine is trivial; its absence disqualifying you from LL97 mitigation is not.
Facility / property manager	You own the pipeline: one ESPM record feeds four filings. Calendar the January kickoff and the stack mostly runs itself.
Tenant	Your submeter (LL88) and your consumption (LL84/97) are inside the building’s legal machinery, and the grade at the door (LL33) is partly your doing. Lease language increasingly formalizes all three.

Frequently asked questions

What is the difference between Local Law 84 and Local Law 97?

LL84 is annual energy and water benchmarking — data disclosure through ENERGY STAR Portfolio Manager, penalties capped at $2,000 a year. LL97 is an emissions cap with real teeth: $268 per ton over the limit and $0.50 per square foot per month for not filing. LL84’s data feeds LL97’s report, and both are due May 1.

Does a good LL33 letter grade mean my building complies with LL97?

No. Grades score your ENERGY STAR percentile relative to similar buildings; LL97 caps are absolute carbon limits. A building can post a B and still owe LL97 penalties, or post a D while staying under its cap.

What is Local Law 88?

LL88 required covered buildings to upgrade lighting to current code and install electrical submeters in tenant spaces over 5,000 sqft by January 1, 2025; buildings not yet compliant file reports due May 1, 2026. The LL88 attestation is also a mandatory prerequisite for LL97 good-faith-efforts penalty mitigation.

Why is my building covered by LL97 but not LL84?

The aggregation thresholds differ: multi-building tax lots aggregate at 50,000 sqft for LL97 but 100,000 sqft for LL84. Single buildings over 25,000 sqft are covered by both.

What is due December 31, 2026?

LL87 energy audit and retro-commissioning reports for buildings whose block numbers fall in the 2026 cycle — the ten-year rotating requirement that pairs with the annual stack.

Primary sources

June 9, 2026

Local Law 97 Fines: The $268-Per-Ton Math and a Calculator Built From the Rule Itself (2026)

Last updated: June 9, 2026. By Will Tygart. Every factor in the calculator below was extracted from the current consolidated text of 1 RCNY 103-14 and verified against the rule on June 9, 2026.

A Local Law 97 fine is calculated in one line: (your building’s actual annual emissions − its emissions limit) × $268 per metric ton of CO2e, assessed every year you remain over the cap. The limit is your gross floor area times a published factor for your property type — 0.00758 tCO2e per square foot for an office today, falling to 0.002690852 in 2030. The separate failure-to-file penalty is gross floor area × $0.50 per month. Use the calculator below for your building, then read the part nobody’s calculator shows you: what the 2030 factors do to a building that is comfortably compliant today.

LL97 Penalty Calculator — emissions factors as printed in 1 RCNY 103-14(c)(3); penalty rate $268/tCO2e per Admin Code §28-320.6.

Property type (ESPM)

Gross floor area (sq ft)

Annual building emissions, if known (tCO2e) — from your LL97 report or energy audit

Estimates only. Mixed-use buildings use square-footage-weighted factors; for 2024–2025 owners could elect the statutory occupancy-group limits instead; good-faith-efforts mitigation, RECs, AHRF offsets, and the disaster provision can reduce penalties. Always confirm against 1 RCNY 103-14 and your Registered Design Professional.

The formula, worked by hand

Take a 60,000 sq ft Midtown office building:

Limit today: 60,000 × 0.00758 = 454.8 tCO2e/year
If it emits 550 tCO2e: (550 − 454.8) × $268 = $25,514/year
If it never files: 60,000 × $0.50 = $30,000/month — one month of silence costs more than a year of being 21% over the cap. Whatever else is true about your building, file.

The 2030 cliff, in numbers nobody publishes

Most LL97 coverage says the 2030 limits get “roughly 40% stricter.” The actual factors in the rule (1 RCNY 103-14(c)(3)(iii)) are far more dramatic for some property types:

ESPM property type	2024–2029 factor	2030–2034 factor	Reduction
Office	0.00758	0.002690852	−65%
Multifamily Housing	0.00675	0.003346640	−50%
Hotel	0.00987	0.003850668	−61%
Retail Store	0.00758	0.002104490	−72%
Non-Refrigerated Warehouse	0.00426	0.000883187	−79%
Hospital	0.02381	0.007335204	−69%
Data Center	0.02381	0.014791131	−38%
Restaurant	0.01181	0.004038374	−66%
K-12 School	0.00675	0.002230588	−67%
Medical Office	0.01074	0.002912778	−73%

(Factors are tCO2e per square foot per year, as printed in the rule. The 2030 table also cuts the grid-electricity coefficient roughly in half — to 0.000145 tCO2e/kWh — reflecting expected grid cleanup, which softens the blow for electrified buildings specifically.)

What that does to a real building: the same 60,000 sq ft office emitting 400 tCO2e is comfortably under its 454.8-ton cap today — penalty $0. In 2030 its cap drops to 161.5 tons. Same building, same energy use: 238.5 tons over, $63,931 per year, every year. That is why Urban Green’s finding — only ~9% of properties exceed today’s caps but ~57% exceed the 2030 caps — is the single most important number in NYC real estate planning, and why a “we’re compliant” answer in 2026 is only half an answer.

The fines-versus-retrofit math, honestly

Some owners are paying. Habitat’s reporting quotes a senior official at a prominent real estate firm: eliminating the fines would mean investing “15 to 20 times the fine amount,” and an energy manager’s example pits an $8–10M retrofit against a ~$180,000-a-year penalty (Habitat, March 2025). For 2026, that arithmetic can be rational.

It stops being rational on three clocks. First, fines repeat annually, forever — a $180K/year penalty is $1.8M over a decade against a one-time retrofit. Second, the 2030 factors multiply the overage: the building paying $180K today may be paying three to five times that from 2030. Third, equipment dies on its own schedule anyway — the cheapest compliance is the boiler you were already replacing, replaced electric, with beneficial-electrification credits that are richest before December 2026. REBNY projects citywide fines approaching $900 million a year once the 2030 limits bite — the buildings that avoid contributing to that number are the ones doing the math now, while the retrofit can ride the capital calendar instead of fighting it.

Five things that legitimately reduce an LL97 penalty

Good-faith-efforts mitigation (1 RCNY 103-14(i)(2)) — requires a filed report, current LL84 benchmarking, and LL88 attestation, plus a qualifying path such as an RDP-certified decarbonization plan or an approved application for compliance work.
RECs — offset electricity-attributable emissions only, must be NYC-deliverable, currently uncapped (decarbonization-plan filers excluded); Zone J Tier 4 supply (CHPE, Clean Path NY) becomes materially available during 2026.
AHRF offsets — capped at 10% of your limit, priced at $268/ton (deliberately equal to the penalty), funding affordable-housing decarbonization.
The disaster provision (1 RCNY 103-14(i)(1)) — documented hurricane, severe flooding, or fire damage that precluded compliance can zero the year’s penalty. Your restoration contractor’s job file is the evidence; see what LL97 does and does not count.
Mediated resolution — a negotiated DOB compliance plan in lieu of penalty, case by case.

What this means for each seat at the table

If you are the…	The penalty math says…
Owner	Run the calculator twice — today’s factor and 2030’s. The second number belongs in the capital plan and the next refinancing conversation, because lenders are already running it.
Facility / property manager	Your energy data is the input to a six-figure equation. Tight ESPM records, submetering, and vendor documentation are what make the difference between an estimated overage and a defended one.
Tenant	Your consumption is inside the building’s number, and lease structures increasingly pass LL97 exposure through. A tenant who can demonstrate efficiency is negotiating leverage; one who cannot is a cost center.

Frequently asked questions

How are Local Law 97 fines calculated?

(Actual annual building emissions − the building’s emissions limit) × $268 per metric ton CO2e, assessed annually. The limit is gross floor area × the published factor for your ESPM property type — 0.00758 tCO2e/sqft for offices in 2024–2029, dropping to 0.002690852 in 2030.

How much is the LL97 penalty per ton?

$268 per metric ton of CO2e over the limit, per year. The Affordable Housing Reinvestment Fund offset is deliberately priced at the same $268 — the city set the escape hatch at exactly the cost of the penalty.

What is the penalty for not filing an LL97 report?

Gross floor area × $0.50 per month, retroactive to May 1 of the filing year. On a 60,000 sq ft building that is $30,000 a month — typically far worse than the overage penalty itself.

When do LL97 fines start?

They already have: caps took effect January 1, 2024, first reports were due in 2025, and DOB confirmed in April 2026 that ~1,400 non-filers are in the enforcement pipeline with OATH cases in preparation. The much larger fine wave arrives with the 2030 limits, which roughly 57% of covered buildings currently exceed.

How much stricter do LL97 limits get in 2030?

It depends on property type: offices drop 65%, retail 72%, warehouses 79%, multifamily 50%, data centers 38% — per the factors printed in 1 RCNY 103-14(c)(3)(iii). A building comfortably compliant today can face a six-figure annual penalty in 2030 at the same energy use.

Is there an official LL97 penalty calculator?

DOB publishes the factors and formula but no official calculator; NYC Accelerator’s Building Energy Snapshot is the closest city tool. The calculator on this page applies the rule’s printed factors directly and shows both compliance periods side by side.

Primary sources

June 9, 2026

Is Local Law 97 Only for NYC? What Long Island Commercial Buildings Actually Face in 2026

Last updated: June 9, 2026. By Will Tygart. Written for Long Island commercial property and facility managers — including the verified negatives no one else publishes.

Yes — Local Law 97 applies only inside New York City’s five boroughs. A commercial building in Nassau or Suffolk County has no LL97 obligation, no emissions cap, and no benchmarking filing due — and as of June 2026, neither county nor any Long Island town has adopted an equivalent. One disambiguation that trips up even the search engines: Long Island City is in Queens, which means LL97 fully applies there — and since Brooklyn and Queens sit on the geographic island of Long Island, a “Long Island portfolio” can absolutely contain covered buildings. The clean rule: coverage follows NYC Department of Finance tax lots, not geography.

That is the myth busted. Here is what a Long Island commercial building actually faces in 2026 — which is not nothing.

The applicability table (what applies on Long Island, really)

Mandate	Applies in Nassau/Suffolk?	Status as of June 2026
NYC Local Law 97 (emissions caps)	No	Five boroughs only — but it reaches your NYC buildings and your NYC-exposed tenants
NYC LL84 benchmarking	No	No Nassau, Suffolk, Hempstead, or Islip benchmarking ordinance exists
2025 NYS Energy Code (ECCCNYS)	Yes	In force statewide for permit applications filed on/after Dec 31, 2025 — no grace period; notably stricter air-leakage and air-barrier testing for commercial buildings
All-Electric Buildings Act (new construction)	Pending	Enforcement suspended per the Nov 12, 2025 stipulation until ~4 months after the Second Circuit rules; towns may keep permitting fossil-fuel systems meanwhile
Town of Babylon green building law	Babylon only	New commercial buildings ≥4,000 sqft must demonstrate LEED certification; $0.03/sqft fee (capped $15,000), refunded on certification — the one true local green mandate on the island
NYS Part 253 mandatory GHG reporting	Large facilities only	10,000+ tCO2e/yr facilities (large hospitals, campuses, industrial) track CY2026 now; first reports due June 1, 2027. Typical offices fall far below the threshold — but fuel suppliers report regardless
NY cap-and-invest (carbon price)	Indirectly, later	Delayed to late 2026–2027; when live, allowance costs flow into LI heating fuel and gas prices

Also worth knowing: New York State’s own climate law was just amended — the May 26, 2026 budget bill dropped the CLCPA’s 2030 milestone in favor of a softer 2040 target. Our full breakdown covers it; the short version for LI operators is that the state-level pressure eased while the city-level pressure (LL97) did not move an inch.

So why do LI property managers keep getting carbon questions?

Three channels reach Long Island operators without a single LI ordinance:

Portfolio spillover. An LI-based management firm with even one NYC building over 25,000 sqft carries full LL97 exposure on it: the $268/tCO2e penalties, the May 1 reporting cycle (CY2025 grace ends June 30, 2026), and the 2030 caps that roughly 57% of covered buildings currently exceed. The firm’s compliance muscle has to exist anyway — the only question is whether it stops at the city line.
Tenant and investor demand. GRESB-reporting owners and corporate tenants under California SB 253 and the EU’s CSRD need emissions data from their Long Island spaces and vendors regardless of New York law — the lease, not the legislature, is the enforcement mechanism. This is exactly the gap the Commercial Restoration Carbon Protocol covers on the vendor side.
The coming fuel-price channel. Part 253 reporting puts LI fuel suppliers into the state’s carbon accounting now; when cap-and-invest launches, allowance costs arrive as operating expense, not as a filing.

The carrot side: what an LI building can collect in 2026

No mandates does not mean no money. The island’s two energy programs are unusually generous right now:

PSEG Long Island — Business First (announced March 2026): grants up to $125,000 for business customers, free commercial energy assessments, heat-pump HVAC and water-heater rebates (up to $1,200 for ENERGY STAR HPWHs), multifamily heating/cooling rebates of $4,000 per apartment ($5,000 in designated Disadvantaged Communities), EV make-ready up to $45,000 per charging plug, and a concierge “Business FIRST Advocate” service (PSEG LI). One LI-specific quirk: PSEG LI/LIPA runs its own programs outside the state’s Clean Heat utility pool — cite PSEG LI program pages, not Con Edison’s.
National Grid (LI gas): commercial rebates on high-efficiency boilers, water heaters, controls, and heat recovery — plus a gas demand-response program paying up to 15% of a building’s annual gas bill, rising to 20% when the incentive funds an efficiency project (National Grid).

For an LI facility manager, the rational 2026 posture is: harvest the incentives while they are rich, build the data habit voluntarily, and let your NYC-exposed peers’ compliance pain be your preview.

The watch-list (what would change this answer)

The Second Circuit ruling on the All-Electric Buildings Act — enforcement resumes roughly four months after a decision upholding it, hitting most new LI buildings under 7 stories and commercial under 100,000 sqft.
Statewide private-building benchmarking — bills like S838 (annual energy/water benchmarking for private buildings >50,000 sqft statewide) have been proposed but not enacted; passage would create LI’s first filing obligation.
Cap-and-invest litigation — courts have ordered DEC to move faster on economy-wide rules; the state’s appeal continues through 2026.

This page is maintained against those three triggers — the “as of” date at the top is the tell.

What this means for each seat at the table

If you are the…	On Long Island in 2026, your move is…
Owner	No LL97 line item — but if any NYC building is in the portfolio, its compliance calendar is yours, and lender/investor ESG questionnaires do not check county lines. Harvest PSEG/National Grid money on equipment you were replacing anyway.
Facility / property manager	Your binding documents are the 2025 NYS Energy Code on every permit and (in Babylon) the LEED ordinance on new commercial work. Build the vendor and energy data habit voluntarily now — the requests are coming from tenants before they come from Albany.
Tenant (corporate occupier)	Your SB 253 / CSRD / GHG Protocol obligations follow you onto Long Island even though LL97 does not — the restoration job in your Melville office is still your Scope 3 Category 1 line item.

Frequently asked questions

Is Local Law 97 only for NYC?

Yes. LL97 covers buildings on New York City tax lots in the five boroughs. Nassau and Suffolk County buildings have no LL97 obligation — though Brooklyn and Queens, which sit on the geographic island, are fully covered, and Long Island City (in Queens) is covered despite the name.

Does Long Island have its own building emissions or benchmarking law?

No. As of June 2026, neither Nassau nor Suffolk County, nor towns including Hempstead and Islip, has adopted an energy benchmarking or emissions-cap ordinance. The one true local green-building mandate is the Town of Babylon’s LEED certification requirement for new commercial buildings of 4,000 square feet or more.

What energy rules DO apply to a Long Island commercial building?

The 2025 NYS Energy Code (ECCCNYS), in force statewide for permits filed on or after December 31, 2025 with no grace period; the suspended-but-pending All-Electric Buildings Act for new construction; and, for facilities emitting 10,000+ tCO2e a year, the Part 253 mandatory GHG reporting rule (first reports June 1, 2027).

Will New York’s cap-and-invest program affect Long Island buildings?

Indirectly, yes — when it launches (now expected late 2026 or 2027), fuel suppliers will pass allowance costs into heating fuel and natural gas prices. It arrives as an operating cost, not a compliance filing.

My firm manages buildings in both NYC and Long Island — what should we do?

Run one compliance program with two zones: full LL97/LL84 machinery for the NYC assets (the CY2025 grace deadline is June 30, 2026), and on the LI side, incentive harvesting (PSEG Business First, National Grid demand response) plus voluntary energy and vendor-carbon data collection so tenant and investor requests never catch you flat.

Primary sources

June 9, 2026

Local Law 97 for Co-ops and Condos: Pathways, Penalties, and the 2026 Board Playbook

Last updated: June 9, 2026. By Will Tygart. Written for co-op and condo boards and the managing agents who serve them — every claim links to a primary source.

If your co-op or condo building is over 25,000 square feet, Local Law 97 applies to you — but which version applies, and what it costs, depends on your building’s rent-regulation mix, and 2026 is the year one of the gentler pathways gets real. The legal challenge is over (the Glen Oaks suit — brought by a Queens co-op — lost at New York’s highest court in May 2025, with no appeal possible), the Council bill to delay penalties for moderate-value condos and co-ops died at the end of session, and multifamily buildings filed their first-year reports at a 94% rate. The question for boards is no longer whether LL97 is happening. It is which pathway you are on, and what the next capital plan should assume.

First question: which pathway is your building on?

LL97 is not one rule for all residential buildings — coverage splits on rent regulation and affordability status (DOB LL97 page):

Pathway	Who is on it	What applies
Article 320, standard (Pathway 0)	Most market-rate co-ops and condos >25,000 sqft (or condo buildings sharing a board totaling >50,000 sqft)	Emissions caps from 2024, annual RDP-certified reports, $268/tCO2e overage penalties
Article 320, 2026 start (Pathway 1)	Buildings with at least one but no more than 35% rent-regulated units	Cap compliance began January 1, 2026 — this year is their first capped year
Article 320, 2035 start (Pathway 2)	Certain buildings under §28-320.3.9	Caps begin 2035
Article 321, prescriptive (Pathway 3)	>35% rent-regulated, HDFC co-ops, Mitchell-Lama, income-restricted, project-based federal housing	One-time prescriptive energy measures (a defined checklist of upgrades) instead of caps; $10,000 penalties for non-compliance

Your pathway is shown on the Covered Buildings List published each year on DOB’s LL97 page; disputes go through a BEAM portal ticket. If your building has a mix of rent-regulated units, checking the percentage against DOF records is the single highest-value hour a managing agent can spend this year — Pathway 1 buildings are in their first capped year right now, and many boards do not know it.

The math boards actually face

The multifamily emissions cap for 2024–2029 is 0.00675 tCO2e per square foot (1 RCNY 103-14). For a 120,000 sq ft co-op, that is an annual limit of 810 tCO2e. Exceed it by 100 tons and the penalty is $26,800 a year. Fail to file at all and the penalty is 120,000 × $0.50 = $60,000 per month — which is why “we’re under the cap so we don’t need to do anything” is the most expensive sentence in co-op governance. Filing is mandatory regardless of emissions; for most buildings under the cap it costs the $210 fee plus the engineer.

About 9% of covered properties exceed today’s caps — but roughly 57% exceed the 2030 caps (Urban Green Council). For residential boards the 2030 number is the one that belongs in the reserve study, because the realistic retrofit menu — heat pump conversions, window and envelope work, boiler replacement timed to end-of-life — takes more than one budget cycle to finance and execute. Habitat’s reporting captured the honest owner calculus: some owners are choosing fines over retrofits because, as one put it, eliminating the fine would cost “15 to 20 times the fine amount” (Habitat, March 2025). That math can be rational in 2026 — and flips as the caps tighten and the fines repeat annually, forever.

What boards hoping for a rescue should know

The lawsuit is over. Glen Oaks Village Owners — a Queens garden co-op — argued the state climate law preempted LL97. The NY Court of Appeals rejected the challenge on May 22, 2025 (opinion); as a state-law ruling from the highest court, it cannot be appealed further.
The relief bills stalled. Int 1197 (Lee/Ung), which would have delayed penalties for condos and co-ops with average unit assessed value under $65,000, was never moved by the Speaker; Int 1180’s REC cap also died at end of session. No amendment has touched the $268 rate, the caps, or the May 1 cycle.
Enforcement has started. DOB’s April 22, 2026 release: 93% of covered properties filed, ~1,400 non-filers are receiving Notices of Deficiency, and OATH penalty cases are being prepared (DOB press release).

The board playbook for 2026

Confirm your pathway and your filing status today. If the CY2025 report is not filed, the grace period ends June 30, 2026 — a $60 extension (applied for in BEAM by June 30) buys you until August 29. See the full deadline guide.
Get the real number before the meeting. An energy audit that converts “we might be over” into “we are 110 tons over, which is $29,480 a year, and these three measures close 80% of it” changes the quality of every board conversation that follows.
Time retrofits to equipment life, not to panic. The cheapest decarbonization is the boiler you were going to replace anyway, replaced with the electric option, with the beneficial-electrification credits that remain richest before December 2026.
Know the mitigation menu before you need it: good-faith-efforts (requires filed reports + current LL84 + LL88 attestation plus a qualifying path like an RDP-certified decarbonization plan); RECs (electricity-attributable emissions only, NYC-deliverable); AHRF offsets (capped at 10% of your limit, $268/ton); and after a fire or flood, the disaster provision that can zero a penalty year with documentation (1 RCNY 103-14(i)(1)).
Use the free help. NYC Accelerator provides no-cost LL97 compliance guidance, and the Building Energy Exchange published a co-op/condo-specific playbook, Cutting Carbon in Co-ops & Condos, in May 2026.

What this means for each seat at the table

If you are the…	LL97 in 2026 means…
Board (the owner)	The penalty exposure and the capital plan are yours. Put the 2030 number in the reserve study now; annual fines are a recurring line item, not a one-time fee.
Managing agent (the coordinator)	Pathway verification, the three-portal filing chain, the RDP booking, and the mitigation paperwork run through you — including the disaster documentation if the building ever floods or burns.
Shareholders / unit owners (the residents)	LL97 costs reach you through maintenance and common charges either as planned retrofit financing or as unplanned fines — and the planned version is almost always cheaper. The A–F energy grade at the entrance is your building’s public report card.

Frequently asked questions

Does Local Law 97 apply to co-ops and condos?

Yes — co-op and condo buildings over 25,000 square feet (or condo buildings under one board totaling over 50,000 square feet) are covered. The applicable pathway depends on rent-regulation and affordability status: most market-rate buildings face Article 320 caps; buildings over 35% rent-regulated, HDFC, and Mitchell-Lama follow Article 321’s one-time prescriptive measures instead.

What is the LL97 penalty for a co-op?

The same as any Article 320 building: (actual emissions minus the cap) × $268 per ton CO2e per year, and $0.50 per square foot per month for failing to file. Article 321 buildings face $10,000 penalties for late or missing compliance reports.

What changed for partially rent-regulated buildings in 2026?

Buildings with at least one but no more than 35% rent-regulated units (Pathway 1) began cap compliance on January 1, 2026 — 2026 is their first capped calendar year, reportable in 2027.

Did the co-op lawsuit against LL97 succeed?

No. Glen Oaks Village Owners v. City of New York was decided against the challengers by the NY Court of Appeals on May 22, 2025, and cannot be appealed further. LL97 is settled law.

Will LL97 raise my maintenance or common charges?

For buildings over their caps, yes — the only question is whether the increase funds planned retrofits (often with incentives, and timed to equipment replacement) or recurring annual fines. The retrofit usually wins over a ten-year horizon, especially with 2030’s stricter caps.

Where can a board get free LL97 help?

NYC Accelerator (accelerator.nyc/ll97) offers free compliance guidance, and the Building Energy Exchange’s May 2026 “Cutting Carbon in Co-ops & Condos” playbook is written specifically for residential boards.

Primary sources

June 9, 2026

How to File a Local Law 97 Report: The DOB NOW, ESPM, and BEAM Walkthrough Nobody Gives You

Last updated: June 9, 2026. By Will Tygart. Written for the property managers and facility managers who coordinate LL97 filings — every fee, portal, and gotcha below links to a primary source.

Filing a Local Law 97 report takes three separate city systems used in a fixed order — pay the fee in DOB NOW: Safety, stage your energy data in ENERGY STAR Portfolio Manager, then file in BEAM — and because the systems sync overnight, the whole sequence physically cannot be completed in one day. That is not an exaggeration; it is the Department of Buildings’ own guidance. As DOB’s assistant commissioner for sustainability put it: “You cannot complete a report in one day and you need to plan for that” (Habitat, March 2025).

Here is the full walkthrough — who does what, in what order, with which fees — written for the person actually coordinating it.

Before you touch a portal: the five things to line up

Confirm your building is on the Covered Buildings List. The current-year CBL is published on DOB’s LL97 page; coverage follows Department of Finance records (>25,000 gsf single building; 50,000 gsf tax-lot or condo-board aggregates). Disputes are filed as a ticket in BEAM — not by email, not by phone.
Book your Registered Design Professional now. Only a NY-licensed PE or RA can certify and submit an Article 320 report. RDP calendars compress brutally in May and June; the engineer, not the portal, is the real bottleneck.
Gather your identifiers: BBL (borough-block-lot) and BIN numbers, plus the ESPM property ID. Reports and fees are keyed to these.
Align the email addresses. The owner, the property manager, and the energy consultant must use consistent email addresses across all three systems — mismatched emails are the most common reason a filing stalls with no error message.
Check your ESPM property type. “Other” and “Mixed Use” property types are prohibited for LL97 reporting. If your building is typed that way in Portfolio Manager, fix it before anything else — the report cannot file against it.

Step 1 — DOB NOW: Safety: pay first, or nothing unlocks

All LL97 fees are paid in DOB NOW: Safety, and BEAM will not accept your report until the payment clears — which happens in the overnight sync, not instantly. The fee schedule (1 RCNY 101-03):

Filing	Fee
Simple annual emissions report	$210
Complex annual emissions report	$615
Extension request	$60
Good-faith-efforts report	$950
Article 321 mediated resolution report	$800

Practical translation: if your deadline is June 30, the last safe day to pay is June 29 — and treating June 26 as the real deadline is what a coordinator who has done this before actually does.

Step 2 — ENERGY STAR Portfolio Manager: where the numbers live

Your building’s energy consumption — electricity, gas, steam, fuel oil — flows from ESPM, the same system used for LL84 benchmarking (due the same May 1). Three coordinator notes:

Find your ESPM Data Administrator early. Buildings change managers and consultants; the person who holds administrative rights over the ESPM record is frequently someone who left two years ago. Recovering access takes days you may not have.
Whole-building data means tenant data. If tenants are separately metered, their consumption still counts against the building’s number — the annual tenant-data chase should start in January, not May.
LL84 and LL97 feed from the same trough. Upload once, comply twice: current LL84 benchmarking is also a legal prerequisite for LL97 good-faith-efforts penalty mitigation.

Step 3 — BEAM: where the report actually files

The BEAM portal (launched March 3, 2025) is where the RDP certifies and submits the report — and where everything else LL97 happens too, as numbered tickets: extension requests, Covered Buildings List disputes, penalty-mitigation claims, and deductions. Two things to know:

BEAM unlocks only after your DOB NOW payment has cleared overnight. Pay Monday, file Tuesday at the earliest.
The RDP submits; you prepare. A smooth filing is one where the engineer logs in to a record with clean ESPM data, matching emails, and a cleared fee — and spends their billable hour certifying instead of troubleshooting.

The complete sequence, as a checklist

When	Action	System	Who
January	Start tenant energy data collection; verify ESPM access and property type	ESPM	PM / consultant
February	Book the RDP; confirm CBL status; align emails across systems	—	PM
March–April	Complete ESPM data for the calendar year; run LL84 benchmarking	ESPM	Consultant
April	Pay the LL97 filing fee	DOB NOW: Safety	PM
By May 1	RDP certifies and submits the report	BEAM	RDP
If late: by June 30	File within grace, or pay $60 and apply for extension to Aug 29	BEAM + DOB NOW	PM

If something goes wrong

Building should not be on the CBL (sold, demolished, under threshold)? File the CBL dispute ticket in BEAM with DOF documentation — do not simply skip filing; the $0.50/sqft/month non-filing penalty attaches to the listed property until the list changes.
Over the cap? File anyway — filing and penalty exposure are separate questions — then pursue good-faith-efforts mitigation (1 RCNY 103-14(i)(2)) or, after a documented disaster, the penalty-zero provision (103-14(i)(1)).
Missed June 30 with no extension? File as fast as possible: penalties accrue monthly and retroactively to May 1, so every month of delay on a 60,000 sq ft building is another $30,000.

What this means for each seat at the table

If you are the…	Your part of the filing is…
Owner	Authorize fees early and sign off on the RDP engagement in Q1, not Q2. The cheapest LL97 program is the one that never touches the penalty schedule.
Facility / property manager	You are the integration layer: CBL status, identifiers, email consistency, ESPM access, tenant data, fee payment, and the RDP’s calendar. The portals don’t talk to each other — you are the API.
Tenant	Your meter data is part of the building’s filing. Answering the energy-data request in February instead of April is the single most helpful thing you can do — and increasingly, leases require it.

Frequently asked questions

How do I file a Local Law 97 report?

In three systems, in order: pay the filing fee in DOB NOW: Safety ($210 simple / $615 complex), stage the building’s energy data in ENERGY STAR Portfolio Manager, then have a Registered Design Professional certify and submit the report in the BEAM portal. The systems sync overnight, so the sequence takes a minimum of two days.

What is the BEAM portal?

BEAM (nyc.beam-portal.org) is DOB’s LL97 filing system, launched March 3, 2025. Reports, extension requests, Covered Buildings List disputes, and penalty-mitigation claims are all submitted there as numbered tickets.

Why won’t BEAM accept my report?

The two most common causes: the DOB NOW fee payment has not cleared the overnight sync yet, or the email addresses on the BEAM, DOB NOW, and ESPM records do not match. A prohibited ESPM property type (“Other” or “Mixed Use”) will also block the filing.

Can I file the LL97 report myself?

No. An Article 320 report must be certified and submitted by a Registered Design Professional — a NY-licensed Professional Engineer or Registered Architect. The property manager prepares and coordinates; the RDP files.

How much does it cost to file?

$210 for a simple annual report, $615 for a complex one, $60 for an extension application, $950 for a good-faith-efforts report — all paid in DOB NOW: Safety, all per 1 RCNY 101-03. The RDP’s professional fee is separate and market-rate.

Do LL84 and LL97 use the same data?

Largely yes — both draw on the building’s ENERGY STAR Portfolio Manager record, and both are due May 1. Keeping LL84 benchmarking current is also a legal prerequisite for LL97 good-faith-efforts penalty mitigation.

Primary sources

June 9, 2026

New York Just Rewrote Its Climate Law: What the May 2026 CLCPA Amendment Means for Buildings

Last updated: June 9, 2026. By Will Tygart. Every claim links to a primary or named source; this analysis reflects the law as of the date above.

On May 26, 2026, Governor Hochul signed a state budget bill that amended New York’s landmark climate law itself: the CLCPA’s 2030 milestone — a 40% emissions cut below 1990 levels — is gone, replaced by a 2040 target of 60% qualified by “to the maximum extent feasible and cost effective.” The 2050 milestone (85% below 1990) survives, DEC’s deadline to issue implementing regulations moves to December 31, 2028, the state switches its greenhouse gas accounting from a 20-year to a 100-year global warming potential timeframe (which reduces how heavily methane counts), and the same budget allocates more than $450 million toward reducing building emissions — retrofits, heat pumps, and efficiency (BCLP client alert).

For anyone who owns, manages, or occupies commercial buildings in New York, the practical question is what actually changed about your obligations. The short answer: less than the headlines suggest — and nothing at all if your buildings are in the five boroughs.

What changed on May 26

Provision	Before	After
2030 milestone	40% below 1990 by 2030	Removed
Interim target	—	60% below 1990 by 2040, “to the maximum extent feasible and cost effective”
2050 milestone	85% below 1990	Unchanged
DEC implementing regulations	Due Dec 31, 2024 (missed)	Due Dec 31, 2028
GHG accounting	20-year GWP	100-year GWP (methane counts for less)
Building money	—	$450M+ for building-emissions reduction (retrofits, heat pumps, efficiency)

What did NOT change (this is the part that matters operationally)

NYC Local Law 97 is untouched. LL97 is a city law, not a CLCPA regulation — and the state’s highest court already ruled in Glen Oaks v. City of New York (May 22, 2025, unappealable) that the CLCPA does not preempt it. The $268/ton penalties, the May 1 reporting cycle, and the 2030 cap tightening that roughly 57% of covered buildings currently exceed: all fully in force. If anything, the state softening its own milestone makes LL97 more important as the binding constraint on NYC buildings.
The Part 253 Mandatory GHG Reporting Rule stands. Finalized December 2025: facilities emitting 10,000+ tCO2e/year, fuel suppliers, electric power entities, and large waste operations track calendar-year-2026 emissions now, with first reports due June 1, 2027 (DEC). Most commercial buildings fall below the threshold, but the fuel suppliers serving them do not — which is how a future carbon price reaches your operating budget.
Cap-and-invest remains pending, not canceled — launch expectations sit in late 2026–2027, with litigation over DEC’s rulemaking timeline still moving through the courts.
The All-Electric Buildings Act is still in legal limbo, not repealed — enforcement is suspended under a November 2025 stipulation until roughly four months after the Second Circuit rules on the appeal of the decision upholding it.
The 2025 NYS Energy Code (effective December 31, 2025, statewide, no grace period) continues to govern every permit application — including all of Nassau and Suffolk.

What this means for each seat at the table

If you are the…	The May 26 amendment means…
Owner	No relief on LL97 — your binding constraint is city law and it just became the strictest thing on your calendar by a wider margin. The new $450M+ building-decarbonization pot is worth watching as it is programmed: it is retrofit money, and the 2030 LL97 cliff is a retrofit problem.
Facility / property manager	Your compliance calendar is unchanged: LL97/LL84 filings, Part 253 if you run a 10,000+ tCO2e facility (hospitals and campuses, check your number), Energy Code on every permit. The state milestone was never your filing obligation — do not let anyone in a budget meeting tell you “New York rolled back climate rules” as a reason to defer the retrofit study.
Tenant (corporate occupier)	Your disclosure obligations live in SB 253, CSRD, and the GHG Protocol — none of them New York state law, none of them affected. The state’s 100-year GWP switch does not change how your corporate inventory counts methane under the GHG Protocol.

The honest read

The amendment is a genuine softening of state ambition — removing a statutory 2030 milestone and adding “feasible and cost effective” qualifiers is not nothing, and environmental groups have said so loudly. But for building operators the regulatory architecture that actually bills you — LL97 penalties, LL84 filings, the Energy Code, Part 253’s reporting machinery, and the coming fuel-supplier carbon costs — survived intact. New York’s climate pressure on buildings did not get weaker in May; it got more local. The city, not the state, now owns the strictest line — and the city’s line has a $268-per-ton number on it.

Frequently asked questions

What did the May 2026 CLCPA amendment change?

It removed the CLCPA’s 2030 milestone (40% below 1990), added a 2040 target of 60% qualified by “to the maximum extent feasible and cost effective,” kept the 2050 milestone (85%), moved DEC’s regulations deadline to December 31, 2028, switched GHG accounting to a 100-year GWP timeframe, and allocated over $450 million to building-emissions reduction.

Does the CLCPA amendment affect NYC Local Law 97?

No. LL97 is city law, upheld against CLCPA preemption by the Court of Appeals in May 2025. Its penalties, deadlines, and 2030 cap tightening are unchanged.

Is New York cap-and-invest dead?

No — delayed. Only the Mandatory GHG Reporting Rule (Part 253) has been finalized; the full program is expected in late 2026 or 2027, with litigation ongoing over the state’s rulemaking timeline.

Does Part 253 reporting apply to my building?

Only if a facility emits 10,000+ metric tons CO2e per year — large hospitals, campuses, and industrial sites, not typical offices. But fuel suppliers report regardless, which is the channel through which carbon costs will reach building operating budgets.

Did the amendment change the All-Electric Buildings Act?

No. That law remains suspended pending the Second Circuit appeal, under the November 2025 enforcement stipulation — a separate track entirely.

Sources

June 9, 2026