With DNA rooted in security, we operate in over 50 countries around the world, including in regions like Germany and Japan, where data privacy regulations have historically been some of the most rigorous in the world. And with the introduction of the GDPR, Trend Micro’s focus on security and data protection continues to be a top priority, underpinning the commitment to evolve our already strong security policies across all operating regions.
A holistic approach to GDPR Readiness
As part of our GDPR compliance journey, we are working with internal and external subject matter experts, independent auditors, and consulting partners, while also referencing multiple checklists from the UK Information Commissioner’s Office (ICO) and other EU regulatory organizations. This thorough approach helps us ensure that we cover all areas of the regulation and have all necessary activities and processes in place to protect our – and your – data.
Our GDPR journey
Our approach to data privacy is comprehensive and holistic, leveraging the GDPR to become a baseline level of security across the globe – this is not just an EU initiative for Trend Micro. We have touched many parts of the organization to ensure that we are ready for May 25, 2018.
Awareness and education are fundamental to any program focused on security. As a part of our focus on protecting customers’ data and complying with the GDPR, we are committed to providing training across our organization and ensuring clear communication to maximize awareness, including:
In order to protect data, you need to know what and where it is. Integral to our compliance journey is assessing the data we have across the company and its composition as well as putting in place measures to ensure ongoing knowledge of all new data entering the company. This process includes activities like:
We are diligently working on refining our best practices for the proper use, access, and management of data.
The GDPR requires a new enterprise security role – the Data Protection Officer (DPO). The DPO is responsible for overseeing data protection strategies and meeting GDPR compliance requirements. To that end, Trend Micro has the following positons: