Privacy and data security

Credit Suisse considers the privacy of its clients and employees critical and places the protection of the data within its stewardship a priority. Such is the significance, the Executive Board provides direct oversight via a specific Sub-Committee, ensuring compliance with global obligations. Information on the data that we collect, and use is made clear to individuals from the outset through our Privacy Statements. Once in our control, data is handled on a strict “need-to-know” basis in line with our global policies on data confidentiality, protection and privacy and information security supported with compulsory training delivered to all employees annually. These requirements are then enforced with controls which are continually being developed to mitigate the risk of data loss through a range of differing mechanisms. Should an incident occur, robust practices are in place to assess the risks to individuals and take action as appropriate.