Our customers trust us to safeguard the privacy of their personal and financial information — a responsibility that tops our list of priorities. To ensure that we earn and keep their trust, we continue to add new tools to our already-robust fraud detection and prevention program.
We classify all personally identifiable information (PII) as either general PII, sensitive PII or Business Contact Information. In 2018, we broadened our definition of PII to include personal data about an individual's characteristics, behaviors and demographics. This broader definition allows for expanded protection of our customers' data.We also launched an advanced platform that analyzes transactions for suspicious activity and provides real-time alerts. Finally, we invested in new tools that further validate a customer's identity, strengthening our efforts to protect against identity theft and fraudulent account openings.
We recognize that protecting our customers' information is a partnership. We actively reach out to and educate our customers on spotting and preventing fraudulent activity. We do this through security alerts, through messages on bank statements and on social media platforms, through blog posts, and in branches. Accounts feature security options to help customers protect their information.
Every year, all PNC employees and contractors are required to complete annual security and privacy training that covers a wide range of topics — from safeguarding customer data to detecting and preventing money laundering. As of December 2018, 99.9% of all employees had completed the training. Our employees also receive training that is tailored to the area of the bank in which they work. For example, in 2018, employees who work directly with customers were trained on an enhanced customer due-diligence program, designed to address changes made to the Financial Crimes Enforcement Network Customer Due Diligence Rule.
Quarterly phishing exercises also help raise employee awareness of the dangers of this activity and help them hone their ability to identify a potential attempt. These tests enhance our ability to identify, assess, communicate, respond to and recover from a cyber incident.
Our security program is regularly examined by federal regulators for compliance with financial regulations and industry best practices. PNC's program aligns with widely recognized standards and is audited, along with our systems, annually. On the international side, we have put processes in place to comply with the General Data Protection Regulation (GDPR) for our European Union customers and the Personal Informational Protection and Electronic Documents Act that governs the protection of data for our Canadian customers.
Visit the PNC Security and Privacy Center to learn more.