Every employee has a responsibility to protect our data.
One of Dril-Quip's most valuable assets is the information that is critical to our successful business operations.
Personal data, third-party data, and intellectual property data are kept confidential. Only approved personnel are allowed access. Personal data is information that can indirectly or directly identify an individual, including Dril-Quip's stakeholders such as employees, suppliers, directors, shareholders, and customers. All data with cloud providers follows the same policies to protect the confidentiality, integrity, and availability of our data.
Collection of Data
Dril-Quip will gather and process personal information fairly, lawfully, and in a transparent manner. We will only collect personal information that is relevant to and necessary for a particular purpose(s) and will only process personal information in a manner that is not incompatible for the purposes for which it is collected. We will only process personal information that is adequate, relevant, and not excessive for the purpose for which it is processed.
Employees' Responsibility to Protect Data
Employees must exercise discretion and care in handling data to comply with laws, regulations, and contracts. When working with third parties, employees must ensure those third parties are also in compliance. Suspected data breaches will be reported to the Information Technology Security team immediately for further investigation.
Data Storage Guidelines
Data should be backed up frequently. Backups should be tested regularly and be in line with our standard procedures. Data stored on paper should be kept in a secure place where unauthorized people cannot see it.
Data stored electronically that also has been printed out should be kept in a locked location, and employees should make sure printouts are not left where unauthorized people could see them. When paper printouts are no longer required, they should be shredded and disposed of securely.