- Santander Bank PolskaSantander Bank Polska
- Responsible bankingBank As You Want It
- SimpleBank As You Want It
- FairBank As You Want It
- PersonalBank As You Want It
- About the reportAbout report
Cybersecurity
Since in the present-day reality the most dangerous threats occur on the Internet, our activities focus around the topic of cybersecurity. We keep implementing new solutions and warning our customers and we are aware of our responsibility for the management of customers’ sensitive data. Therefore we continuously undertake measures aimed at ensuring data security.
-
[Custom indicator 7]
Actions taken to ensure the security of customers’ personal data
Actions taken to ensure the security of customers’ personal data
Go to GRI list
Cybersecurity management
Data security is a process encompassing all employees of our organization and a number of third parties cooperating with the bank under outsourcing arrangements or third-party partnership agreements.
The key units in charge of cybersecurity matters include:
Cybersecurity Risk Committee
The Committee is a forum of direct cooperation and communication of all organizational units engaged in the broadly understood cybersecurity processes.
Cybersecurity Department
The department undertakes a range of activities and measures to improve the security of provided services, executed transactions and of customer data.
In 2018, our cybersecurity experts focused on the development and upgrading of the prevention area, implementing cutting-edge solutions to prevent all kinds of threats and expanding the scope of exchange of information about such threats. We were developing mechanisms to analyse threats and we expanded our quick-response teams in charge of management of incidents and the security of IT systems.
GRI:
-
[418-1]
Total number of substantiated complaints concerning breaches of customer privacy and losses of customer data
Total number of substantiated complaints concerning breaches of customer privacy and losses of customer data
Go to GRI list
Customer data security
In accordance with the requirements of the GDPR (General Data Protection Regulation) in force since 25 May 2018, we protect personal data by way of regular efforts to update relevant processes, procedures and policies, changing the rules of managing data flows and data storage, ensuring adequate communication and incorporating the mandatory GDPR-based approach in all projects and system management arrangements
