Measuring sustainability progress

Safeguarding data
via information security  GRI 418–1

Why

High data protection standards are integral to our brand. Compliance with data protection and privacy laws is an essential part of our company’s way of conducting business in a trustworthy manner. Equally, our customers and business partners consider data privacy to be critical to our business success. Data privacy and security is identified on the materiality matrix as a crucial topic for stakeholders. See the materiality matrix in this report.
 

Aim

Our Privacy Policy sets out the minimum global standards for the Group. These standards provide the basis for our employees to handle personal data appropriately throughout the Group, while at the same time strengthening our reputation as a reliable partner for our customers and a trustworthy employer.
 

Target

Our data protection management system that ensures Group-wide compliance with regulatory requirements. In addition, a global network of data privacy experts ensures that knowledge and information on relevant data privacy aspects are shared.

Data protection is a major consideration from the very beginning in the development of new products and services. Appropriate technical and organisational measures and the principles of data protection by design and data protection by default are important parts of the development process.
 

Progress 2020

The ongoing digitalisation in all areas and the new way of working through the Covid-19 situation have dominated the year 2020 in data protection. As a multinational company, Kuehne+Nagel provides an important contribution to the international transport of goods, often essential for life. The security of personal information is a very important topic and many countries around the world have strengthened data protection with restrictive laws.

Kuehne+Nagel is subject to strict requirements, especially for international data transfer, and takes the requirements very seriously.

The established data breach management process has proven to be helpful to discover and stop data breaches, as well as to ensure similar violations do not happen again. Remediation activities always include a risk analysis on potential similar situations and the learnings are implemented in process changes accordingly.