Digital Audit: Sports Direct (Frasers Group plc)

Audit Phase: Digital (Digital / Technology Forensics) Subject Entity: Sports Direct - operated by Frasers Group plc (LSE: FRAS; formerly Sports Direct International plc; Companies House no. 06035106) Registered Address: Unit A, Brook Park East, Shirebrook, Mansfield, Nottinghamshire NG20 8RY, United Kingdom Audit Date: June 2026 Evidence Base: Published corporate disclosures, vendor press releases, trade and technology press, NGO/civil-society research, and regulatory reporting. All factual claims are drawn from publicly available sources cited in the End Notes.

Scope and directionality note: Digital assesses the digital/technology nexus to Israel. The serious case is the provision of surveillance, digital, data, or cyber technology to the Israeli state, military, or security services. The reverse direction - Frasers Group procuring technology from Israeli-origin vendors - is a customer relationship and is recorded explicitly as such, weighted far lower than provision. No transitive guilt is imputed: an Israeli vendor’s other clients, its founders’ military backgrounds, or a parent group’s separate activities are not attributed to Frasers Group. US-entity relationships (e.g. Microsoft, Salesforce) and other non-Israeli vendors are not Israeli-origin and are noted only for completeness.

Enterprise Technology Stack & Vendor Relationships

Core Digital Platform (Direction: Frasers as customer)

Frasers Group’s principal disclosed enterprise-technology programme is a multi-year digital-transformation build branded internally as FGPX, delivered on “MACH” (microservices, API-first, cloud-native, headless) architecture and underpinned by a committed investment reported as exceeding £150m through 2026.¹² The publicly named platform vendors are commercetools (German-origin) as the e-commerce engine, Amplience (UK-origin) as the content-management system, and Algolia (founded in France in 2012, now San Francisco-headquartered) for search and merchandising; the wider stated partner set also includes Optimizely, Emarsys, and XCM.²³ None of these is an Israeli-origin vendor. Emarsys, named as a marketing-automation partner, was founded in Vienna, Austria, and is owned by the German firm SAP SE; one of its three co-founders (Hagai Hartman) is associated with Israel by background, but the corporate entity is Austrian/German and is recorded here for completeness only.⁴

The MACH platform was built with three named delivery partners - Lab Digital (Netherlands-origin), Valtech (founded in France, 1993; London-headquartered), and AND Digital (UK-origin).⁵ None is Israeli-origin. USC was the first brand migrated to the new platform (2024), with FLANNELS following (2026).²

Other Documented Enterprise Vendors (Direction: Frasers as customer)

• Microsoft / Azure (US-origin) is referenced as part of Frasers Group’s cloud infrastructure modernisation.² This is a US-entity relationship, not Israeli-origin, recorded for completeness.
• Salesforce (US-origin) Commerce Cloud and Service CRM have been deployed across Frasers Group banners (including, per implementation-partner OSF Digital, Fraser Hart and Fields).⁶
• Freshworks (US-origin) supplies Frasers Group’s unified customer-service stack (Freshdesk, Freshchat, Freshcaller), consolidating a reported 16 prior tools across 60+ brands.⁷
• commercetools’ Agentic Commerce Suite (German-origin) was deployed by Frasers Group in October 2025 - reported as the first European retail deployment - enabling Sports Direct, FLANNELS and FRASERS customers to transact inside AI channels including ChatGPT, Google Gemini and Perplexity.³⁸
• F5 (US-origin) is documented supporting Frasers Group’s e-commerce delivery and security.⁹

None of the documented platform vendors above is of Israeli origin.

Israeli-Origin Enterprise / Cybersecurity Vendors

No public evidence was identified of a direct licensing, subscription, or integration relationship between Frasers Group / Sports Direct and any Israeli-origin enterprise-software or cybersecurity vendor - including Check Point, Wiz, CyberArk, SentinelOne, NICE Systems, Verint, or Claroty. None is referenced by name in the trade-press and vendor coverage of Frasers Group’s technology estate reviewed here.¹²³ Palo Alto Networks was co-founded by an Israeli national (Nir Zuk) but is a US-incorporated entity; no Frasers Group procurement relationship with it was identified, and the Israeli-founder criterion alone documents nothing. No public evidence identified.

Procurement Transparency Constraints

Frasers Group is a private-sector retailer not subject to UK public-procurement disclosure obligations. Vendor relationships below the level of named, publicly announced partnerships - in particular the internal cybersecurity stack (EDR, SIEM, PAM, network monitoring) and managed-security sub-vendors - are not in the public domain. This is the principal evidence gap in this domain; Israeli-origin security-product exposure within the resident stack can be neither confirmed nor excluded on public evidence.

Surveillance, Biometrics & Retail Technology

Live Facial Recognition - Facewatch (UK-origin vendor)

Frasers Group is a documented user of live facial-recognition technology in its stores, supplied by Facewatch, a UK-based company.¹⁰¹¹ Reporting in March 2023 stated the technology was in use across at least 27 stores, spanning the Sports Direct and Flannels (and, per civil-society sources, House of Fraser and USC) banners; the system captures biometric profiles of visitors and matches them against watchlists to alert staff to suspected offenders.¹¹¹²¹³ Frasers Group’s then-Head of Loss Prevention, Ben Rudd, was quoted defending the deployment and citing a claimed return on investment, and the group stated the technology “prevents thousands of crimes a month.”¹⁰¹¹

This is a UK domestic retail-security deployment with no identified Israel nexus. The vendor (Facewatch) is UK-origin; primary reporting identifies no Israeli-origin facial-recognition vendor (e.g. Oosto/AnyVision, BriefCam, Corsight) in Frasers Group’s deployment. The directionally serious Digital case - provision of surveillance technology to Israel - does not arise: here Frasers Group is the operator/customer of a UK surveillance product on its own UK estate.¹⁰¹¹

Civil-Society Challenge to the Facewatch Deployment

The deployment drew sustained civil-society opposition. Big Brother Watch characterised the practice as “Orwellian,” and in 2023 wrote to Mike Ashley alongside nearly 50 parliamentarians calling on him to stop scanning customers.¹³¹⁴ Big Brother Watch’s separate ICO complaint concerning Facewatch (filed against Southern Co-op and Facewatch) concluded in March 2023 with the ICO finding Facewatch had breached data-protection law but declining enforcement after the company committed to changes.¹³ None of this civil-society or regulatory activity concerns an Israel nexus; it is recorded as factual digital context.

Israeli-Origin Surveillance / Biometric Vendors

No public evidence was identified that Frasers Group / Sports Direct has deployed facial-recognition, biometric, gait-analysis, or in-store behavioural-analytics technology of Israeli origin (e.g. Oosto/AnyVision, BriefCam, Corsight, Trigo, Trax). The identified facial-recognition vendor is UK-origin (Facewatch). No public evidence identified of an Israeli-origin biometric vendor in the estate.

Conventional CCTV & Loss-Prevention Sub-Contractors

Sports Direct stores operate conventional CCTV consistent with standard UK retail practice. The specific vendors supplying CCTV hardware, video-management software, or loss-prevention analytics beyond Facewatch are not publicly disclosed, and whether any such sub-contractor deploys Israeli-origin technology within its own platform cannot be confirmed or excluded from public sources. No public evidence identified linking any to Israeli-origin technology.

Predictive Analytics, Workforce Monitoring & Social-Media Surveillance

No public evidence was identified of Frasers Group / Sports Direct using Israeli-origin predictive-analytics, sentiment-analysis, social-media-monitoring, or workforce-surveillance tools. (Worker-monitoring practices at the Shirebrook warehouse were the subject of trade-union and media scrutiny in 2015–2016, but the technology involved was not identified as Israeli-origin and the matter concerns UK labour conditions, outside this domain’s Israel nexus.)

Cloud Infrastructure, Data Residency & Sovereign Cloud Participation

Data-Centre Operations in Israel

No public evidence was identified that Frasers Group operates, leases, or co-locates data-centre infrastructure within Israel. Its disclosed cloud posture centres on Microsoft Azure (a US-entity relationship) underpinning the MACH platform, with vendor SaaS components (commercetools, Algolia, Salesforce, Freshworks) hosted by those US/EU providers.²⁷

Project Nimbus & Israeli State Cloud Infrastructure

Not applicable. Project Nimbus is the Israeli-government cloud contract awarded to Google Cloud and Amazon Web Services; Frasers Group is neither a participant nor a sub-provider. Frasers Group is a retail holding company, not a cloud-services provider, infrastructure operator, or systems integrator. No public evidence was identified of Frasers Group involvement in any Israeli state-backed digital-infrastructure programme.

Data-Sovereignty or Resilience Services to Israeli State Institutions

No public evidence identified. Frasers Group does not market or operate as a provider of sovereign cloud, data-residency, or infrastructure-resilience services to any state body, Israeli or otherwise.

Defence, Intelligence & Security Sector Technology Relationships

Military & Intelligence Contracts

No public evidence was identified of any contract, partnership, memorandum of understanding, or service agreement between Frasers Group / Sports Direct and the Israeli Ministry of Defence, the Israel Defense Forces (IDF), Shin Bet, Mossad, or any Israeli intelligence agency or Unit 8200-linked commercial entity. Frasers Group is a retail brand-holding group and does not publicly operate in the defence-technology or security-services sector.

Provision of Technology / Data to the Israeli State or Military

No public evidence was identified of Frasers Group providing surveillance technology, data, software, cloud capacity, or digital services to the Israeli state, military, or security services. This is the directionally serious Digital case, and no qualifying evidence of it was found. No public evidence identified.

Dual-Use Technology Provision

No public evidence was identified of Frasers Group commercial technology being reported or confirmed as deployed for military, intelligence, or law-enforcement surveillance applications in Israel or the Occupied Palestinian Territories.

Offensive Cyber Capability

No public evidence identified. Frasers Group does not develop, license, or sell offensive cyber capability; it is a retail operator, not a technology developer or defence contractor. No major public cyberattack against Frasers Group was identified in the period reviewed; in any case such an incident would be an act done to the company, not a provision of technology to any state.

AI, Algorithmic & Autonomous Systems

AI/ML Provision to Israeli State Bodies

No public evidence identified. Frasers Group’s documented AI/algorithmic activity is confined to retail use cases - demand forecasting and fulfilment optimisation (Blue Yonder), CRM personalisation (Salesforce, Emarsys), search/merchandising (Algolia), and AI-channel commerce via commercetools’ agentic suite (ChatGPT/Gemini/Perplexity checkout).²³⁸ No public evidence was identified of Frasers Group providing AI capability, model access, training data, or inference services to any Israeli state, military, or security body.

Training Data & Model Development Involving Israeli Population Data

No public evidence was identified of Frasers Group contributing to, commissioning, or benefiting from AI model development involving Israeli population datasets, intercepted communications, or surveillance-derived data.

Autonomous Systems & Lethality

No public evidence identified. The development or deployment of autonomous lethal or targeting systems is not within Frasers Group’s business domain.

Internal Algorithmic Deployment - Israeli-Origin AI Tooling

Frasers Group’s documented AI tooling runs through US/EU-origin platforms (commercetools, Algolia, Salesforce, Emarsys, Microsoft).²³⁸ No public evidence was identified of any Israeli-origin AI vendor embedded in the stack; the undisclosed full vendor list means secondary embedding within managed services cannot be positively excluded, but no such instance was identified.

Technology Ecosystem & R&D Footprint

Israeli R&D Facilities

No public evidence was identified that Frasers Group operates any R&D facility, engineering office, innovation lab, or accelerator programme within Israel. Its documented digital-engineering work is delivered from the UK and Europe via Lab Digital (Netherlands), Valtech (UK/France), and AND Digital (UK).⁵

Acquisitions & Investments in Israeli Technology Companies

No public evidence was identified of Frasers Group acquiring, or taking a corporate-venture stake in, any Israeli technology company, venture fund, or accelerator. Frasers Group’s documented M&A activity centres on UK/European retail brands and strategic equity stakes (e.g. Hugo Boss, Mulberry) rather than Israeli technology assets.¹⁵ No public evidence identified of an Israeli-registered Frasers Group subsidiary or holding structure in the filings reviewed.¹⁶

Patents & IP Co-Development with Israeli Institutions

No public evidence was identified of patent portfolios, licensing, or co-development arrangements between Frasers Group and Israeli-domiciled entities or research institutions (Technion, Hebrew University, Weizmann Institute).

Supplier Code of Conduct - Technology Supply-Chain Provisions

No public evidence was identified that Frasers Group’s responsible-sourcing or supplier-conduct frameworks contain provisions governing the national origin or geopolitical exposure of technology vendors, software suppliers, or digital-infrastructure providers. No technology-supply-chain due-diligence framework specific to vendor geopolitical exposure is publicly documented by Frasers Group.

Civil Society Scrutiny & Regulatory History

NGO & Academic Scrutiny - Technology Supply Chain

No public evidence was identified of an NGO investigation, academic study, or UN report addressing Frasers Group’s technology relationships with the Israeli state, Israeli defence entities, or Israeli-origin vendors. Civil-society attention on Frasers Group’s technology has centred on its UK-domestic Facewatch facial-recognition deployment (a privacy and biometrics concern with no Israel nexus), driven principally by Big Brother Watch and Privacy International.¹³¹⁴¹⁷ No public evidence was identified that the Who Profits Research Center lists Frasers Group / Sports Direct in its settlement-economy database; absence from that database does not constitute confirmed non-involvement.

BDS Campaigns

The Palestine Solidarity Campaign maintains a Sports Direct entry, and a localised protest was reported (e.g. by the Ireland Palestine Solidarity Campaign in Derry, 2023).¹⁸ The publicly documented grounds relate to retail products/presence and corporate conduct, not to Israeli-origin technology procurement, software licensing, or digital-infrastructure provision. No public evidence was identified of a BDS or NGO campaign specifically targeting Frasers Group’s technology relationships.

ICO & Data-Protection Regulatory History

The ICO’s 2023 scrutiny relevant to Frasers Group concerns retail live facial recognition (via the Facewatch complaint process); the ICO found Facewatch had breached data-protection law but declined enforcement after remediation commitments.¹³ No public evidence was identified of an ICO enforcement action against Frasers Group relating to Israeli-origin surveillance technology, data transfers to Israeli entities, or occupation-economy data practices. No public evidence identified.

Export Controls & Sanctions Authorities

No public evidence was identified of any action by UK export-control authorities (ECJU/HMRC), the Office of Financial Sanctions Implementation (OFSI), or any equivalent body relating to Frasers Group technology sales, services, or data transfers to Israeli state entities. No public evidence identified.

Regulatory & Legal Actions - Technology Sales to Israeli State Entities

No public evidence identified of any ICO, FCA, HMRC, export-control, or sanctions-body action relating to Frasers Group technology sales or services to Israeli state entities.

Evidence Gaps

1. Internal cybersecurity stack (highest priority) - Frasers Group does not publicly disclose its EDR, SIEM, PAM, or network-monitoring vendors. Israeli-origin security products (e.g. Check Point, SentinelOne, CyberArk) can be neither confirmed nor excluded from public sources; internal procurement records would be required.
2. In-store CCTV & video-analytics vendors beyond Facewatch - The vendors supplying CCTV hardware, VMS, and loss-prevention analytics across the Sports Direct/Flannels estate (other than Facewatch) are not publicly named; Israeli-origin components cannot be assessed.
3. Managed-services / systems-integrator sub-vendors - Where Frasers Group uses MSSPs or outsourced IT operations, the sub-vendor technology stack (including any Israeli-origin components) is not visible in public sources.
4. Platform sub-component provenance - Composable-stack vendors (commercetools, Algolia, Emarsys, Blue Yonder) and Salesforce AppExchange/marketplace integrations may embed third-party components; whether any are Israeli-origin is not determinable from public disclosures.
5. MENA franchise digital infrastructure - Frasers Group’s 10-year MENA franchise partnership with GMG (Gulf states and Egypt, announced February 2025) does not include Israel on public evidence; whether the franchise shares central IT/e-commerce architecture is not documented, and no Israel nexus arises from it.

End Notes