Data Privacy
A1 Data Privacy
The A1 Group consistently adheres to current guidelines and legislation, and uses data only when there is a legal basis for doing so and where required in the course of its work. In addition to the statutory requirements in the respective countries, all companies must also adhere to the information security standards created for this purpose and any other country-specific data security guidelines. At A1 in Austria, for example, comprehensive certificates such as ISO 27001, ISAE 3402 and ECO Datacenter 3.0 attest to these high security standards. The Data Privacy department, which reports directly to the Management Board, is in charge of compliance with statutory and internal data protection regulations at A1 in Austria.
The respective companies of the A1 Group also cooperate on a regular basis with authorities in the interest of continuously improving cyber security. For example, A1 in Austria was involved in the sector risk analysis conducted by Rundfunk- und Telekom-Regulierungsbehörde (RTR), which aims to analyze risks inherent in the telecommunications industry and use the findings as a basis to develop recommendations for network and service operators and public authorities. A1’s CERT (Computer Emergency Response Team) shares relevant security information within the national CERT association ATC (Austrian Trust Circle), security expertise is shared within the A1 Group itself and at expert conferences.
Data Protection & Data Security
We are aware and put great focus of the highly sensitive nature of the personal data provided to us by our customers, employees, shareholders and suppliers and do our utmost to protect such data. We collect and process personal data in accordance with European and national data protection regulations, in particular the General Data Protection Regulation (GDPR), national data protection laws and the specific provisions of national telecommunications laws. Comprehensive information about the use of personal data and about data protection in general, is available to our customers, employees, shareholders and suppliers at any time.
Data security is very important to the A1 Group. Providing outmost care and protection of our customers’ data is one of our prime goals. Therefore, we protect the confidentiality, availability, integrity and authenticity of company data and personal data with all available, suitable and appropriate technical and organizational means against unauthorized access, unauthorized or improper use, loss and premature destruction, unplanned, unwanted or unauthorized modification, compromising, theft, manipulation and unavailability.
A1 Data Privacy Governance Policy