As part of its operations, Swisscom processes customer data. Such data are subject to the Data Protection Act and the Telecommunications Act. The protection of privacy, compliance with data protection laws and the observance of telecommunications secrecy are key concerns for Swisscom. The Data Protection Declaration explains how Swisscom handles personal data in the context of its website and e-mail activities. Swisscom complies rigorously with the legislation currently in force, in particular with the laws on telecommunications and the protection of data. It collects, stores and processes only such data as are required for the provision of services, the handling and maintenance of the customer relationship – namely ensuring high service quality – for the security of the company and its infrastructure and for billing purposes. Customers also consent to Swisscom processing their data for marketing purposes and to their data being processed for the same purposes within the Swisscom Group. Customers have the option of stating what types of advertising material they do or do not wish to receive (“opt-out”). As a trustworthy partner, Swisscom has set itself the goal of providing all employees who have access to customer data as part of their job with thorough instruction on compliance within their work. In addition, Swisscom makes its employees aware of, and equips them to recognise, the issues and requirements of data protection and to ensure they are properly implemented. All Swisscom employees thus have to regularly take part in data protection training sessions.
The persons responsible for security within the company also launched a comprehensive project in 2012 with the aim of improving data protection. This project has been successfully completed. During the course of the project, Swisscom reviewed and redefined all access rights to critical customer data. In addition, Swisscom set up a system that determines whether attempts to access critical customer data are linked to enquiries regarding the customers in question and are thus warranted. Swisscom will continue to do everything in its power to ensure the best possible protection for its customers’ data by means of optimisations in technology, organisation, processes and training. Swisscom is aware of its responsibility for data protection. In bringing in new technologies and in meeting new needs, Swisscom will exercise the required sensitivity and assume its social responsibility as a companion in the digital world.