Protecting Customer Privacy & Security

Our customers trust us to safeguard the privacy of their personal and financial information. That's a responsibility that tops our list of priorities.

Managing Customer Privacy

We recognize that privacy and confidentiality play a critical role in building and maintaining customer trust. That’s why we continuously evolve our privacy program with new tools, technologies and programs to enhance privacy standards.

PNC’s Privacy Office, within Enterprise Compliance, oversees compliance with privacy standards and regulations and can approve or reject business activities that may pose a privacy risk to customers.

In conjunction with the Legal department and the Regulatory Change program, the Privacy Office keeps abreast of new and/or changing privacy laws and regulations at the federal and state levels, and in jurisdictions outside of the U.S. where PNC may be impacted. The Privacy Office also provides guidance to lines of business and other compliance areas. PNC’s board of directors regularly reviews our Enterprise Privacy Policy and updates it as needed. 

All PNC employees and contractors are required to take privacy training. The curriculum provides employees and contractors with the knowledge and skills to recognize privacy concerns and understand what constitutes personal information, the laws that apply to that information, the appropriate access, uses and disclosure of that information, and how to appropriately safeguard it. Additionally, other specific privacy trainings are required for individuals responsible for managing or processing Protected Health Information (PHI) or the personal information of international customers. 

We track the effectiveness of our privacy program and training through regular self-evaluation and feedback from customers and external parties. The ongoing monitoring of this program allows the Privacy Office to review trends and risks, identify areas for improvement and, where necessary, implement remediation.

Since protecting our customers’ personal and financial information is a top priority, we take action that may include customer alerts, account closure, opening a new account and offering credit monitoring, where warranted, at no cost to the customer. We strive to take all appropriate measures to ensure their trust in PNC. 

For more information on how we protect our customers’ data, read our Privacy Notice, which is provided to new consumers, to existing customers on an annual basis, and as otherwise required by law.

Brilliantly Supporting All of Our Stakeholders

We strive to manage our business responsibly and to do right by all our constituents. We make fact-based decisions guided by our established risk appetite and by what is in the best interests of our customers, our employees, our communities and our shareholders. 

Managing Responsibly
Delivering for our Stakeholders
Building a Sustainable Future

Prioritizing Customer Security

Our customers’ security is paramount. Guided and reviewed by PNC’s risk committees and the board of directors, our security program is designed to help PNC identify, prevent, respond to and recover from cyber threats. Several of our risk committees are dedicated to protecting customer security, including the Business Continuity Committee (BCC), Technology Standards Sub-Committee (TSSC), Technology Risk and Business Committee (TRBC), Independent Technology Risk Management Committee (ITRMC) and the Technology Committee of the Board of Directors.

Our Security Practices

PNC requires all employees to participate in mandatory information security trainings and phishing exercises. Employees are also required to partake in an additional ten security trainings that covered topics such as Maintaining Privacy and Security, Cybersecurity, Anti Phishing, Information Security, Red Flags and more. 

Security at PNC

Learn more about our security program.

PNC Security & Privacy Center