SMG Swiss Marketplace Group AG Sustainabilty Report 2024

Cybersecurity and data protection

As a digital pioneer that connects and empowers people through our online marketplaces, cybersecurity and data protection are integral to our business. Customers rely on us every day to safeguard their data and ensure a secure, trustworthy digital experience. To maintain trust, we commit to high standards of cybersecurity and data protection.

2024 Highlights

SMG’s Chief Information Security Officer (CISO) won the Cybersecurity Excellence Award at the Global Cyber Conference.
Rolled-out Ricardo MoneyGuard as an additional new secure payment method, enhancing safe and trustworthy transactions for Ricardo users.
Launched state-of-the-art adaptive Multi-Factor Authentication (MFA) for customers across our General Marketplace and Real Estate platforms.
Hosted 16 events, including eight during Cybersecurity Month and eight focused on Data Protection and training, such as the international Data Protection Day.
Joined the International Association of Privacy Professionals (IAPP).
Introduced a secure interface across eight platforms, enabling users and authorities to submit data access and deletion requests efficiently.

Agility in the digital space

The ever-changing digital environment presents diverse risks and opportunities for SMG. The adoption of new technologies such as AI helps us drive efficiency and innovation, while the increasing sophistication of cyber threats requires us to remain vigilant and proactive in our approach to security and data protection.

Our robust frameworks and governance help us address these risks and ensure compliance with relevant regulations, while our practices enable us to harness innovation. We invest in cutting-edge security and data protection systems, equip our team with highly skilled legal and security professionals, support our customers in learning how to stay safe online, and collaborate with other leaders in the space to drive advancements for a safer, more accessible digital space for all.

Governance and accountability

The BoD and the CEO oversee cybersecurity risks and data protection requirements, with support from the Chief Information Security Officer (CISO) and Data Protection Officer (DPO).

On an operational level, our CISO leads the group’s Security, Trust, and Safety Team to drive strategy, target setting, and processes, enabling us to pursue our vision as a pioneer of online marketplace security. Our DPO heads the Data Protection Team, oversees data protection compliance, and serves as the primary contact for Swiss data protection authorities. Single Points of Contact (SPOC) within each of our business units and Privacy and Security Champions across all product and engineering teams support company-wide engagement.

Close collaboration between the CISO and the DPO drives the alignment of SMG’s cybersecurity and data protection efforts across business functions. The Group Compliance Officer, the ELT, the RAC as well as the BoD are regularly updated on developments and progress.