At Volkswagen, a global company geared towards further growth, the information technology (IT) used in all divisions Group-wide is assuming an increasingly important role. IT risks include unauthorized access to sensitive electronic corporate data and information as well as limited availability as a consequence of systems failure or natural disasters. We address the risk of unauthorized access to corporate data by using virus scanners and firewall and intrusion prevention systems. We achieve additional protection by restricting the allocation of access rights to systems and information and by keeping backup copies of critical data resources. For this, we use technical resources that have been tried and tested in the market, adhering to standards applicable throughout the Company. By implementing redundant IT infrastructures, we protect ourselves against risks that occur in the event of a systems failure or natural disaster.
As Volkswagen’s importance as a multinational corporation grows, so do the intensity and sophistication of the attacks on our IT systems and data resources. This is why we continuously take measures against identified and anticipated risks during the software development process, when protecting the IT infrastructure and also in the allocation of access rights to systems and data resources.
Rapid technological advancement creates a residual risk in relation to IT security that cannot be managed completely.
Going beyond the risks already outlined, there are other factors that cannot be predicted and are therefore difficult to control. Should these transpire, they could have an adverse effect on the further development of the Volkswagen Group. These factors include natural disasters, epidemics and terror attacks.