Due to the nature of services provided by us we acquire a lot of sensitive data every day. To fully protect the data of each customer, the companies from Cyfrowy Polsat Group implemented the ICT Security Policy and ICT Security System Development Plan. The Policy defines fundamental rules of ICT security management, whereas the Plan shows the way to mitigate the anticipated risk. At the same time, we are aware that even state-of-the-art solutions will not be sufficient to ensure the appropriate level of ICT security. It is also an enormous responsibility of our employees every day and therefore we train them in this respect, while reminding them of the fundamental importance of issues related to safety.
We respect legal regulations
[GRI 416-2] We are proud to mention that we did not record any cases of non-compliance with regulations either in 2016 or in 2017.
[GRI 418-1] in 2016, Polkomtel received 6 complaints from regulatory authorities regarding irregularities in the personal data processing of our customers. In 2017, Polkomtel received only 2 complaints from regulatory authorities regarding irregularities in this process, whereas Cyfrowy Polsat received 4 such complaints. Following administrative proceedings conducted by the General Inspector of Personal Data Protection and provided explanations, the above mentioned customer complaints were dismissed.
As regards the leakage, theft of loss of customer data, in 2016: 22 cases were identified in Cyfrowy Polsat and 11 in Polkomtel, in 2017: 12 and 29 cases were identified, respectively.
Each new service introduced to the market is analyzed from the point of view of security still at the design stage. Key requirements are defined, and all components are verified before the commercial launch.