What is privacy and why does it matter to Ericsson?
Definitions of privacy can vary between stakeholders or countries. However, broadly speaking, privacy is the right to be left alone or to enjoy freedom from interference or intrusion, including the right to be provided information about and have control over how personal data is collected, used, shared, retained, and disposed of.
Privacy is recognized as a fundamental human right by the United Nations (UN) in the Universal Declaration of Human Rights, as well as in other UN conventions. Ericsson is committed to supporting the right to privacy of people, as we lead the Information and Communication Technology transformation across industries and enable a connected world.
How is Ericsson protecting privacy?
Ericsson’s global privacy program aims to incorporate privacy by design into Ericsson’s processes, tools, products, and services. The program encourages proactive engagement with key stakeholders and secures buy-in at each stage of the privacy and data protection value chain. The program supports our commitment to the integrity of all personal data for which we are responsible and helps our customers to develop trusted relationships with consumers and businesses.
Respect for the right to privacy is included in Ericsson’s Code of Business Ethics, which defines the behaviors we expect from all Ericsson employees. Along with professionalism and perseverance, the concept of respect is one of Ericsson’s three core values and therefore forms part of the foundation of our company culture.
We recognize that securing privacy in a connected world requires a sustained cross-industry effort. New technologies bring new privacy implications, and continuous dialog between industry, governments, regulators, and civil society is essential. Ericsson is committed to driving and participating in these multi-stakeholder discussions.
In addition to the applicable laws, our Binding Corporate Rules regulate how we process and share personal data.
Ericsson privacy principles
- We implement policies, procedures and guidelines designed to achieve compliance with applicable laws.
- We inform data subjects how their personal data will be collected and processed.
- We process personal data only where there is a valid legal basis for processing.
- We share personal data (within and outside Ericsson) only in accordance with our policies, procedures and guidelines.
- We take appropriate measures so that the personal data we process is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed, and that the data is accurate and, where necessary, kept up to date.
- We take measures to consider privacy when designing and building products and services.
- We adhere to the Ericsson Group standard security measures, including appropriate technical and organizational measures to protect personal data.
- We respect applicable data subject rights.
- We follow the intra-group rules set out in the Ericsson Binding Corporate Rules.