Privacy Trust Center | HCLTech
Our Privacy Trust Center: Core to Our Ecosystem and Culture
Overview

Privacy and Data Security Are Built into Our Business Processes, Policies and Practices

We value and protect the data with which our clients have entrusted us. Features our Global Privacy Program include:

  • Leadership oversight, involvement and support
  • Holistic and resilient Privacy Risk Assessment Framework
  • Global subject matter experts, supported by external Data Protection Officers (DPOs)
  • Driving privacy culture into our day-to-day operations, including rigorous privacy training programs
  • Industry-recognized certifications:
Overview
Meet Our Privacy Team

We Are Guided by Our Robust Privacy Governance Structure

Our Data Protection Officer

We have partnered with HewardMills, our external global DPO that provides expert data privacy and protection guidance covering the breadth of the data regulatory ecosystem worldwide. HewardMills’ global team is on hand to ensure HCLTech complies with key regulations and offers strategic steer when required.

It’s been a rewarding journey growing alongside a leading global tech company the size of HCLTech, working closely with HCLTech’s Global Privacy Office and team of experts to ensure their regulatory and data obligations are met throughout the regions they serve their clients. The launch of HCLTech’s Privacy Trust Center is a great initiative that demonstrates best practice and is a robust resource that many people will find invaluable.”

Dyann Heward-Mills

HewardMills, CEO
Global Privacy Program

The Pulse of Our Privacy Principles

Our enterprise privacy and data protection framework is supported by ‘privacy by design’ principles and essential controls. The privacy program requires all processing activities, technologies and tools to be lawful and comply with a defined set of privacy principles.

Any personal data that we process in our capacity as a data processor on behalf of our clients is strictly processed under the instruction of our clients and is not processed for any other purpose.

Lawfulness, fairness and transparency

Lawfulness, fairness and transparency

When processing personal data, HCLTech ensures there is a legal basis to do so and it is communicated to the individuals prior to processing of data.

Purpose limitation

Purpose limitation

Personal data is processed only for the purposes communicated at the time of collection. For any additional purposes, HCLTech informs individuals about the additional purpose prior to undertaking that processing activity.

Data minimization

Data minimization

HCLTech ensures that the processing of personal data is adequate, relevant and necessary to meet the specified purpose at the time of collection.

Accuracy

Accuracy

HCLTech takes reasonable steps to ensure that the personal data it holds is kept accurate and relevant to the purposes for which it was collected.

Storage limitation

Storage limitation

HCLTech ensures that personal data no longer needed for the purposes specified at the time of collection is deleted in accordance with law and organization policies. For all such stored data, adequate security and technical controls are implemented.

Integrity and confidentiality

Integrity and confidentiality

HCLTech is committed to adequately protecting personal data by implementing necessary technical and organizational measures.

Accountability

Accountability

HCLTech has effectively implemented its Privacy Policy and necessary procedures, tools and resources to ensure we uphold our commitments with respect to personal data protection.

Control of your data

Control of your data

HCLTech provides data subjects with a request workflow platform to exercise their control over their personal data through the Data Subject Request Portal.

Global Operating Model

Guided by the European Union's General Data Protection Regulation (GDPR)

The GDPR is widely considered the strongest privacy and security law in the world and our integrated privacy compliance framework meets the standards set out by the law. Here are the critical components of our operating model:

Meet Our Ecosystem Partners

OneTrust
NASSCOM
TeachPrivacy
TrustArc
DSCI
EWF
HewardMills
IAPP
CIPL

Leaders’ Message

C Vijayakumar

C Vijayakumar

Chief Executive Officer and Managing Director, HCLTech

“It’s through the skills, curiosity, and the unique inner spark that people like you bring, that we can supercharge progress for our many clients.”

Krakow, Poland

Kevin McGee

Corporate Vice President, Risk and Compliance, HCLTech

“As a leading edge, digital organization, it is imperative to have a well-governed privacy program to meet regulatory compliance demands and the ever-evolving risk landscape. HCLTech’s Global Privacy Office enables a sustainable, scalable, future-ready data governance framework, that ensures trust and transparency with our clients, partners, employees, and regulators.”

Leaders’ Message

“As a leading edge, digital organization, it is imperative to have a well-governed privacy program to meet regulatory compliance demands and the ever-evolving risk landscape. HCLTech’s Global Privacy Office enables a sustainable, scalable, future-ready data governance framework, that ensures trust and transparency with our clients, partners, employees, and regulators.”

Kevin McGee

Kevin McGee

Corporate Vice President, Risk and Compliance, HCLTech

Data with Purpose

Responsible Data Management
and Governance

We strive to align our privacy practices with the organization’s environmental, social and governance (ESG) goals to ensure responsible data management.

HCLTech is recognized among industry leaders for our information security practices and data privacy standards which are annually attested and certified by independent bodies.

Our enterprise privacy policies, standards and disclosures ensure regulatory compliance and assure employees and stakeholders that our data handling is proper and ethical, thus further strengthening data governance.
We routinely demonstrate the effectiveness of our privacy program to the HCLTech board of directors who have direct oversight of our governance framework.

Additional Information of the Event