We strongly value our relationships and the trust of our customers and partners.
In today's high-technology environment we understand an adaptable and agile security program is vital to the integrity of our business, and the privacy and security of confidential and proprietary data is one of our highest priorities. We are data-driven and relentlessly curious; constantly evaluating and evolving our security controls to keep up with the current threat landscape. Learn more about how we do it below.
At Dun & Bradstreet, security is everyone's responsibility and we understand it all starts with our employees. We begin by performing background checks on employees upon hiring. From the start, our employees are provided a custom designed security training and annually thereafter. Throughout the year, we continue to share and reinforce security best practices to keep our employees up-to-date on the latest trends.
We do not tolerate modern slavery or human trafficking in our supply chains or in any part of our business. Here is our full Modern Slavery Statement.
We believe security and privacy should be built into our products from the start. Our security plan is multi-faceted; from development to deployment to production. Our application security team continuously performs testing on applications in all aspects of software development, and leverages our partnership of industry leading security experts as a second layer. We monitor and scan our environment 24x7 to detect vulnerabilities and have a team dedicated to driving the remediation and patching. And if our team of security ninjas isn't enough, we offer custom-designed secure development training to our developers globally to keep them current on the latest security trends.
We safeguard confidential data by using high-grade encryption and the latest generation anti-malware software. Only authorized employees have access to information necessary for them to perform their job duties and when access is no longer needed, we make sure to remove it. Alongside these security controls, we have policies and procedures that are validated and enforced through a risk assessment and audit program.
In the case of an unexpected event, global incident response plans are in place so we can be prepared. Our business continuity strategies and plans have been developed to address events such as natural disasters or manmade disasters. We have a process for dealing with incidents, and leverage our trusted threat intelligence community including major US enterprises and law enforcement to quickly gather the information we need to address the event and pick up right where we left off.
Maintaining the security and privacy of our customers' confidential data is one of our highest priorities. For almost two centuries, our customers have trusted Dun & Bradstreet with their company proprietary information, and we are committed to applying the appropriate security standards to safeguard that information.
In order to better serve our customers,
Dun & Bradstreet has become Privacy Shield-certified.
Dun & Bradstreet is a participant in the U.S. Department of Commerce and European Commission Privacy Shield program. Privacy Shield replaces the Safe Harbor program, which was invalidated in October 2015. As a certified Privacy Shield company, Dun & Bradstreet is able to receive personal information from the European Union into the United States in compliance with European Union (EU) data protection requirements.
Under the Privacy Shield program, Dun & Bradstreet must comply with the program’s seven privacy principles, which include notice; choice; accountability for onward transfer; security, data integrity and purpose limitation; access; and recourse, enforcement, and liability. For more details, visit https://www.privacyshield.gov.