At Volkswagen, a global company geared towards further growth, the information technology (IT) used in all divisions Group-wide is assuming an increasingly important role. IT risks may occur as a result of unauthorized access to sensitive electronic corporate data and information, limited availability as a consequence of systems failure, or natural disasters. We address the risk of unauthorized access to corporate data by using firewall and intrusion prevention systems as well as virus scanners. We achieve additional protection by restricting the allocation of access rights to systems and information and by keeping backup copies of critical data resources. Permanent availability and the security of our systems are ensured through professional operation of the IT facilities, for which we use technical resources that have been tried and tested in the market – in keeping with the standards applicable throughout the Company. By implementing redundant IT infrastructures we hedge risks that could occur in the event of a natural disaster.
The intensity and sophistication of attacks on our IT systems and data resources increases as Volkswagen’s importance as a multinational corporation grows. This is why we continuously take measures against identified and anticipated risks during the software development process, when protecting the IT infrastructure and also in the allocation of access rights to systems and data resources.
Rapid technical advancement has created a residual risk, especially regarding the threat to IT security, which cannot be managed completely.
Going beyond the risks already outlined, there are other factors that cannot be predicted and are therefore difficult to manage. Should these transpire, they could have an adverse effect on the further development of the Volkswagen Group. These factors include natural disasters, epidemics and terror attacks.