Toshiba Announces Toshiba Group Privacy Statement

-Aiming to establish a trusted data society by creating
an environment in which customers can safely use Toshiba Group's data service businesses-

December 19, 2022

TOKYO—Toshiba Corporation (TOKYO: 6502) today announced the Toshiba Group Privacy Statement (“the statement”), a corporate core policy statement defining Toshiba Group’s management stance on the use of privacy information in its data service businesses.

The Toshiba Group Management Policy announced in June 2022 elaborated a vision of transforming Toshiba Group by positioning data services as a pillar of earnings by fiscal year 2030. Toshiba aims to harness the power of digital technologies and data to contribute to the realization of carbon neutrality and a circular economy, guided by the Basic Commitment of the Toshiba Group, “Committed to People, Committed to the Future.” To achieve these goals, it is essential to build a sustainable and trusted data society, and Toshiba today published the statement to ensure that customers understand that they can safely use and trust Toshiba Group's data services.

Building on the statement, Toshiba Group will strengthen its governance of privacy information, in anticipation of future active use of data in its data service businesses.

The global market for digital transformation (DX) is expected to triple in the seven years from 2019 to 2026, growing from US$1,180 billion to $3,693.8 billion (*1). With this global trend to DX, the creation of new value and the transformation of business models through the use of various types of data in all fields, privacy protection and the management of data handled by companies that provide data services are a growing concern around the world.

Toshiba Group companies have each established their own privacy policies and implemented legal compliance initiatives wherever they operate. In addition, Toshiba considers addressing privacy information risks as an important management issue in this time of DX, and established Privacy Governance Regulations in July 2021. These stipulate procedures for checking whether there is no risk of privacy infringement in conducting businesses using personal data. Toshiba has also established a Privacy Risk Evaluation Committee that reviews and discusses cases of high privacy risk, and an external advisory board to advise the committee. This Toshiba Group privacy governance system also covers employee education.

The privacy statement, which expresses Toshiba Group’s basic management stance on and approach to the use of privacy information, was first published by Toshiba Data Corporation (hereinafter “TDC”) in August 2021 in Toshiba Group. Established in February 2020 as a wholly-owned subsidiary of Toshiba in the data services business, TDC is charged with converting data into valuable forms for return to the real world.

Toshiba has used TDC’s privacy statement as a model for the entire Toshiba Group, and incorporated recommendations from its external advisory board, with the aim of developing Toshiba Group’s data service businesses.

Toshiba Group will apply this statement to its diverse data service businesses in a wide range of business domains, including energy, infrastructure, and electronic devices, and will promote society’s trust by strengthening governance of data management by the Group.

■Toshiba Group Privacy Statement Website

*1 Global Digital Transformation Market: Current Analysis and Forecast(UnivDatos Market Insights)