Data Protection & Information Security

How we implement customer data protection and information security in the Group

Background in petrol. In the foreground a secured lock

Data Protection

In times of increasing digitalisation, the protection of customer data and the preservation of banking secrecy are of utmost importance and a basic prerequisite for the satisfaction of our customers. That is why data security is a key issue for us in terms of responsible banking. Commerzbank AG takes the protection of your personal data very seriously and adheres to the rules of data protection, in particular the provisions of the EU General Data Protection Regulation (GDPR) and our Group Data Protection Policy.

Your contact for queries regarding data protection

Data Protection Officer

Responding to cybercrime

With the increasing digital networking of the state, the economy and society, cyber security and resilience are becoming ever more important. In this context, Commerzbank considers not only its own information, premises and IT systems, but also those of customers and service providers, including independent transport routes where applicable. Cyber security is a strong driver of trust and therefore also an important competitive factor. As part of the critical infrastructure, the financial industry is subject to extended legal requirements.

Group Risk Management

We want to take appropriate account of this development and future challenges in managing cyber risks. Cyber and information security risks are managed by the Group Risk Management - Cyber Risk & Information Security (GRM-CRIS) unit. The area is under the responsibility of the Group Chief Information Security Officer. In addition to already established security functions such as the information security management system, the focus is on cyber risk management and strengthening Commerzbank's cyber resilience, including information security incident management capabilities.

Hacker Island

To cover the so-called human component, Commerzbank Aktiengesellschaft also relies on a high level of security and risk awareness among its employees. We promote this as part of a special awareness campaign on information security. Here you will find a corresponding offer for corporate customers: Cyber Security E-Learning: How to train your employees - Commerzbank (German only)

German Competence Centre against Cybercrime

Commerzbank Aktiengesellschaft is also a founding member of the German Competence Centre against Cybercrime (G4C), which cooperates with the German Federal Criminal Police Office. The aim of the association is to establish and optimize protective measures against cybercrime in order to prevent damage to its members and their customers.