2 minute read
Cybersecurity & Data Protection
Respecting Data Privacy
Carrier respects the privacy of the people from whom it collects and processes personal information. We have a comprehensive data privacy compliance program that aims to implement appropriate controls on what personal information we collect and process and how we safeguard it. Our approach involves:
• Following applicable data privacy laws.
• Completing privacy impact assessments for new and modified tools, service providers, and products and services that involve collection or processing of personal information.
• Performing an annual self-assessment of our privacy compliance program, involving hundreds of Carrier’s entities.
• Using appropriate security safeguards.
• Adopting detailed policies and Binding
Corporate Rules, which are rules for data privacy compliance approved by
European regulators.
Carrier’s Data Privacy Notice and Data Privacy Policy are available on our website. Strengthening Cybersecurity
Protecting Carrier, our workforce and our stakeholders from cyber risks is a shared responsibility across our organization. It begins with our Cybersecurity team, a part of our Digital Technology organization, which advances a cyberdefense strategy seeking to detect, mitigate and respond to ever-changing cyber threats.
We engage industry experts to conduct regular assessments to validate defensive measures, employing a comprehensive risk management framework to enable effective escalation and management.
Similarly for product security, we collaborate with industry experts to conduct cybersecurity assessments on key products across our portfolio.
As part of governance practices, the Audit Committee of the Carrier Board of Directors reviews Carrier’s privacy and the cybersecurity compliance programs on a regular basis to facilitate proper investments in people, process and technology.
ESG INDICES
Cautionary Statement: This report contains forward-looking statements (including statements that constitute forward-looking statements under the securities laws). These forwardlooking statements are intended to provide management’s current expectations or plans for our future operating and financial performance, based on assumptions currently believed to be valid. Forward-looking statements may include, among other things, statements relating to future sales, earnings, cash flow, results of operations, uses of cash, share repurchases, tax rates and other measures of financial performance or potential future plans, strategies or transactions of Carrier, estimated costs associated with the Separation, statements with respect to current and future potential implications of corporate social responsibility and sustainability topics and other statements that are not historical facts. All forwardlooking statements involve risks, uncertainties and other factors that may cause actual results to differ materially from those expressed or implied in the forward-looking statements. For those statements, we claim the protection of the safe harbor for forward-looking statements contained in the U.S. Private Securities Litigation Reform Act of 1995. The forward-looking statements speak only as of the date of this report. We undertake no obligation to publicly update or revise any forward-looking statements, whether as a result of new information, future events or otherwise, except as required by applicable law. Additional information as to factors that may cause actual results to differ materially from those expressed or implied in the forward-looking statements is disclosed from time to time in our other filings with the Securities and Exchange Commission.
