No notes
Empty basket
Print
Delete

Cybersecurity

Since in the present-day reality the most dangerous threats occur on the Internet, our activities focus around the topic of cybersecurity. We keep implementing new solutions and warning our customers and we are aware of our responsibility for the management of customers’ sensitive data. Therefore we continuously undertake measures aimed at ensuring data security.

  • [Custom indicator 7] Actions taken to ensure the security of customers’ personal data Actions taken to ensure the security of customers’ personal data

    Go to GRI list

Cybersecurity management

Data security is a process encompassing all employees of our organization and a number of third parties cooperating with the bank under outsourcing arrangements or third-party partnership agreements.

The key units in charge of cybersecurity matters include:

The Committee is a forum of direct cooperation and communication of all organizational units engaged in the broadly understood cybersecurity processes.

The department undertakes a range of activities and measures to improve the security of provided services, executed transactions and of customer data.

In 2018, our cybersecurity experts focused on the development and upgrading of the prevention area, implementing cutting-edge solutions to prevent all kinds of threats and expanding the scope of exchange of information  about such threats. We were developing mechanisms to analyse threats and we expanded our quick-response teams in charge of management of incidents and the security of IT systems.

GRI:
  • [418-1] Total number of substantiated complaints concerning breaches of customer privacy and losses of customer data Total number of substantiated complaints concerning breaches of customer privacy and losses of customer data

    Go to GRI list

Customer data security

In accordance with the requirements of the GDPR (General Data Protection Regulation) in force since 25 May 2018, we protect personal data by way of regular efforts to update relevant processes, procedures and policies, changing the rules of managing data flows and data storage, ensuring adequate communication and incorporating  the mandatory GDPR-based approach in all projects and system management arrangements