Veritas has a dedicated function to address security and privacy matters, along with established processes for individuals to exercise their data protection rights. Veritas uses state-of-the-art methods to ensure secure processing and to secure customer data. We review our data-breach incident response plan annually and maintain a suite of privacy policies that govern how we handle customer data.
All Veritas information subprocessors agree to our data processing terms, which include the agreement to implement and maintain appropriate technical and organizational measures to protect data against unauthorized or unlawful processing and against accidental loss, destruction, damage, theft, alteration, or disclosure that aligns with data protection language and Veritas provider security requirements.
Where information is under Veritas control, we will notify our customers without undue delay if Veritas becomes aware of confirmed accidental, unauthorized, or unlawful destruction, loss, alteration, or disclosure of, or access to, customers’ personal data. We will take such reasonable steps as may be required to investigate and remedy the data breach as soon as possible. Veritas customers, as data controllers, are responsible for communicating a personal data breach to their respective customers.