The highest standards of data privacy and data security are core characteristics of our brand identity. Back in 2008, we therefore set up a dedicated Board department for Data Privacy, Legal Affairs, and Compliance and established the Group Privacy unit. The responsible Board member is supported by the independent Data Privacy Advisory Board, which comprises renowned experts from politics, science, business, and independent organizations. The Board was founded in February 2009.
In its meeting on May 22, 2019, the Supervisory Board of Deutsche Telekom resolved to restructure the Group Board of Management. As of March 31, 2020, the current Board of Management member responsible for Data Privacy, Legal Affairs, and Compliance is leaving the Company for reasons of age. At the start of 2020, the Board department for Data Privacy, Legal Affairs, and Compliance and the Board department for Human Resources are being merged under the responsibility of the Chief Human Resources Officer. Our Data Privacy Advisory Board is taking on a bigger role, with more members from the Group Board of Management and the Supervisory Board joining.
The Telekom Security business unit commenced operations in 2017. The new unit combines the security activities from various Group areas, thereby reinforcing our portfolio of cybersecurity solutions.
Data protection and data security at Deutsche Telekom are subject to the following regulations:
Both guidelines set forth binding standards that are in line with international standard ISO 27001. These policies allow us to guarantee an adequately high and consistent level of security and data privacy throughout the Group.
Ensuring effective data privacy
Our approach to big data
Growing volumes of data call for particular precautionary measures to protect citizens’ privacy, which is why, back in 2013, we approved eight mandatory principles for handling big data. In 2015, we also approved specific measures to protect data and infrastructure in our “Ten-point program for increased cybersecurity.” On top of that, we developed special protective products, including our Mobile Encryption app designed to ensure end-to-end encryption of mobile communication.
Reviewing our products
Data privacy and security play an important role that starts during the development of our products and services. Our Privacy and Security Assessment (PSA) procedure allows us to review the security of our systems in each step of the development process. This procedure applies to newly developed systems as well as existing systems that undergo changes in technology or in the way data is processed. We use a standardized procedure to document the data privacy and data security status of our products throughout their entire life cycle.