cyber security measures

There is encouragement to contact and highlight Audi if there are potential vulnerabilities in any of their products. For this, there is emails and guidance on how to do so as well as information regarding the requirements for the concern to class as a vulnerability. Security threats come under three categories, human error, malicious activity and natural disaster. Audi has a process which deals with IT security issues ranging from data protection to attacks like phishing ad ransomware. Due to the worlds IT world expanding the company’s potential threats to their networks and IT infrastructures are increasing (audi.com, n.d.). to help combat this, Audi uses hybrid-agile methodology to react to new developments within their security department. Their Computer Emergency Response Team (CERT) use skills and assess cyber-attacks and attempt to avoid them working alongside other IT security teams within the company.

With regards to the e-business ethics Audi are in line with the IT ethical issues such as privacy, property, accuracy and accessibility. Audi’s privacy policy (audi.com, 2025) highlights who is responsible for the data processing as well as contact information, guidance as to what data gets processed and where they source the information from e.g. IP address, internet address, date and time etc. Audi uses personal data in accordance with the provisions of the General Data Protection Regulation GDRP and the Federal Data Protection Act (BDSG) (audi.com, 2025). The policy also states their legal reasoning and purpose of the data stores and collected. Standard limitation for data stores is three years however the period for retention can range for two to ten years although in some cases this can be more due to the retention period being able to be determined based on the statutory limitation period. People have the right to request information about the data stored as well as the right to rectify if there is incorrect personal data. If the legal requirements are met, you also have the right to request the immediate erasure of your personal data (audi.com, 2025).