The goal of CenterPoint’s Energy Data Privacy Program is to minimize the risk to customer, employee, financial and critical infrastructure information by creating a culture that respects, encourages and demonstrates Data Privacy practices, safeguards data, and enables the trust of our customers, vendors and contractors, regulators, shareholders, the public and employees.
Just as we care for CenterPoint Energy’s physical property, we protect the technology we use to do our job. The proper management of company property and assets allows us to effectively serve our customers.
Proactively Protecting Customer, Consumer and Employee Information
Our Data Privacy governance addresses the collection, storage, usage and destruction of data for a specific business purpose, combined with the public expectation and legal requirement that the data will remain private and protected against unauthorized access or modification.
We take proactive steps for data to remain private and protected against unauthorized access or modification. We respect the privacy of our customers, business partners and suppliers and protect their personal information. We also protect our employee’s personal information.
The Audit Committee of the Board of Directors oversees Data Privacy for CenterPoint Energy. The full Board of Directors receives periodic updates regarding Data Privacy matters. As a part of our governance processes, updates are reviewed regularly. The company’s Data Privacy strategy is the responsibility of the Board of Directors, President and Chief Executive Officer, and General Counsel.
Business Records and Internal Controls
Our core value of Accountability means we are transparent and truthful in conducting our business, maintaining financial records and reporting accurate information to our shareholders. We have a responsibility to be thoughtful in our company expenses and to keep our records clear, accurate and complete.
We are also committed to identifying and preserving records of vital historical, fiscal, and legal value – and to disposing non-essential records in a timely manner, in accordance with CenterPoint Energy’s record retention requirements.
Data Privacy Awareness
Since COVID-19 began, major companies have been the victims of cyberattacks and data breaches. To help mitigate these challenges, we equip employees with the latest information and guidelines to appropriately protect personal information. CenterPoint Energy has implemented various employee awareness initiatives, such as the company’s seven Data Privacy principles, a privacy program guide about implementing best practices at work and security policies. Members of leadership communicate to employees to be vigilant about phishing attempts, COVID-19 scams and opening unknown links. All employees are required to complete privacy and information security training annually.