PwC Mekong Approach to Data Protection

At PwC, we maintain a professional and well-articulated approach to the management of all personal data. Everyone in our organisation has a role to play in safeguarding personal data so that data subjects and stakeholders can apply their rights.

To protect personal data, we have raised staff awareness and encouraged the proper handling and use of data, including confidential information. We have also implemented operating systems, designed processes, invested in security and embedded well-established data management practices across our business to ensure that personal data provided by clients is securely protected.

Furthermore, we have ingrained a respect for personal data protection in our working culture which is reflected in the standards and policies in place. Our principles have been incorporated in our Data Protection Policy and Network Data Protection Programme (NDPP) which has been implemented by PwC member firms around the world. These standards and policies on data protection provide the requirements and define specific principles for protecting personal data to be aligned with the applicable laws relating to personal data protection.

Awareness of the importance of personal data protection has been cascaded to our staff via mandatory online training about the personal data protection and regular communication informing them of their roles and responsibilities in upholding these standards and policies. This includes with conducting the compliance testing plan to measure the effectiveness of operating system, data protection compliance and policy. This helps ensure that our staff are committed to safeguarding personal data while providing high quality services to clients.