© Copyright 1994-2009 Motorola, Inc. All rights reserved.
Privacy: Performance and goals
A reportable breach occurs when unencrypted personal information is believed to have been acquired by an unauthorized person or entity.
"Personal information" refers to a person's last name paired with a first name or first initial and one of the following: a U.S. Social Security or equivalent national identification number; a driver's license or equivalent identification number; or a number from a bank account, credit card or debit card, along with a password or security code that would give access to the account.
In 2008, Motorola had one reportable breach of personal data. This occurred when a delivery van that was transporting computer data tapes was stolen from a Motorola contractor. The tapes contained unencrypted personal information of Motorola's French employees, including payroll data. Upon discovery and investigation of the incident, we informed affected employees, notified the regulatory authority in France and worked with the contractor to help prevent future occurrences.
Internet fraud In 2008, Motorola's brand was illegally used in a fraudulent email and text message campaign that originated outside of Motorola. Messages using Motorola trademarks indicated that recipients had won money in a fictitious Motorola "Internet lottery." The messages invited people to send their personal information, which the criminals intended to use to commit fraud and steal the money, a practice known as "phishing."
We raised awareness of this phishing campaign by posting public advisories on Motorola websites and reporting the scam to an international anti-phishing council. We also gave advice to people who contacted Motorola.
Training and awareness In 2008, 74 percent of our employees have completed Motorola's general introduction to privacy protection course and/or Motorola's introduction to information protection course. We also conducted a number of internal workshops and training events including:
• Four anti-spam workshops • A seminar on behavioral marketing and mobile marketing • A privacy compliance seminar for our law department • An in-depth look at privacy with our issues management team • Two privacy webinars for our customer advocacy office
Detailed privacy and security documentation and tools, including training modules and issue-specific privacy reference guides, are available to employees and contractors whose jobs involve handling personal information. A newsletter on global privacy topics in English and Chinese was distributed every two weeks to about 1,500 subscribers.
Policy updates In 2008, we updated and revised a number of our policies and control standards:
• Added a guideline to our global policies to ensure that potential recipients of marketing communications must actively choose ("opt-in") to receive them • Revised the privacy component of iProtect • Applied the revised Internet privacy statement globally • Developed new resources including: — Mobile marketing guidelines — Behavioral marketing guidelines — A customer and consumer privacy protection handbook — An anti-spam reference guide — A call center privacy reference guide — Guidance on collecting personal information from children — Updated guidance on transferring personal information across international borders
RSS Feed