We attach great importance to the legally compliant and responsible processing of personal data. Our central data governance unit monitors and manages data protection within Swisscom and works closely with all relevant business divisions and other staff units. It is extremely important for us to support this unit by developing and expanding appropriate technical systems.
In the year under review, we pressed ahead with the implementation of the new Swiss Data Protection Act (DPA) by analysing the legal requirements and their implications. It is being carried out in a cross-organisational programme involving all relevant functions. In addition, new directives and information sheets were issued for specific types of data processing.
In 2021, we were also heavily involved in the development of privacy icons. These graphical representations show data subjects quickly and easily which of his or her data is being processed and how. The icons are made available to the public through the Privacy Icons association and can be used free of charge by data processors. We are a member of the association and are represented on the board.
Our Data Ethics Board reviewed several use cases in the year under review to check for compliance with data ethics principles. The data ethics framework has proven its worth and will be continued next year (see ‘Business ethics’).See www.swisscom.ch/data-protection