The goals of the Adyen Security Program

The Adyen Security Program is defined by a set of documents that address risks, control objectives, processes, policies, project activities, and cultural settings within Adyen.

Its goal is to:

• Ensure the confidentiality, integrity, and availability of data, systems, and processes at Adyen. 
• Ensure that specific information security compliance programs are maintained and externally assessed as appropriate. 

The data we process

Information security is important to our customers because we process their data and their clients’ data. We also use other data from payment networks to communicate transaction authorizations with our customers and initiate payments into customer accounts. 

We also process personal data related to sales leads, customer contacts, and Customer Area users, in addition to service provider contacts, candidates for employment, employees, and former employees. Next to this, we process other categories of data that include cryptographic secrets, credentials, business performance of Adyen and our customers, trade secrets, and intellectual property of ourselves and others.

We operate an information security program to ensure our goal to securely process data is met and that protecting the data we process is appropriately prioritized throughout the business. This consists of documentation and processes used by all Adyen people, depending on their roles and responsibilities, and it’s actively monitored and maintained by specific people and functions within the business.

Tip: Find here a Security Questionnaire example.