Addressing Data Security and Privacy from the Middle; Channel Partners Must Satisfy Customer and Supplier Requirements
Nearly half of U.S. companies have experienced an increase in cyberattacks over the past year, but it might come as a surprise that 60% have experienced a data breach caused by a third party—typically, a vendor, reseller, supplier, software provider, subcontractor, consultant or integrator. While cyberattacks always spell trouble, a breach involvin
Nearly half of U.S. companies have experienced an increase in cyberattacks over the past year, but it might come as a surprise that 60% have experienced a data breach caused by a third party—typically, a vendor, reseller, supplier, software provider, subcontractor, consultant or integrator. While cyberattacks always spell trouble, a breach involving a third party can cause even more far-reaching problems by rippling through not only the company, but its customers and even their customers’ customers.
For consultants, systems integrators, resellers and others that function as a third party, this means two things: Making sure your own cybersecurity practices are mature, tested and demonstrable; and demanding the same from the vendors with whom you partner.
A good way to start is by taking a fresh look at existing data privacy and security policies and developing a data privacy program that reflects applicable standards, laws and regulations. It’s also worth reviewing existing security and privacy tools to ensure that they can protect against today’s incidents and breaches.
To keep the chain of security solid, resellers and other channel partners also should make sure the suppliers they work with have a good handle on cybersecurity. As a data company, NetApp knows that its customers and vendors trust it to protect their data. NetApp provides that protection through strict regulatory compliance and comprehensive policies, procedures and standards. The company maintains its strong stance with a combination of self-assessment, independent audits and an ongoing commitment to comply with continually evolving data security and privacy requirements. You can learn more about NetApp practices in their 2022 ESG Report.
NetApp’s focus on security, privacy, compliance and transparency are anchored by its online Trust Center, which explains how it secures customer information and protects individual privacy. That trust also extends to NetApp’s supply chain, which screens suppliers to ensure that they comply with all requirements and conduct business ethically.
The Security section of the Trust Center explains NetApp’s secure development lifecycle and how it handles vulnerability, patch management, ransomware, encryption, data deletion and disposal. The Privacy section explains NetApp’s privacy principles, which guide how its products and services manage and protect personal data. The Compliance section of the Trust Center describes how NetApp handles compliance and includes a list of global laws and standards it adheres to, while the Transparency section explains how the company shares information about its values, policies and core principles.
With this information readily available, partners and customers know exactly what they can expect from NetApp, and can confidently move forward to incorporate NetApp products and services into their solutions.
View NetApp’s 2022 ESG report here.