Protecting users and their data online
Grab embeds data and cyber protection into every new product or feature.
Grab’s Impact in 2024
Zero substantiated data privacy complaints
from regulators or third parties related to breaches of consumer privacy that were significant in scale and impact
Pillars of Grab’s data privacy and cybersecurity framework
Data collection and processing
Grab is committed to collecting and processing all personal data on a valid legal basis, including consent, contractual necessity, legal obligations and legitimate interests where applicable.sed.
Protection and safe custody of personal data
Implementing reasonable security arrangements to protect personal data is conducted in Grab. This includes implementing physical, administrative and technical access controls to personal data.
Retaining personal data for no longer than necessary
Grab endeavours to cease the retention of personal data through anonymisation, disposal or other suitable means when there is no longer a legal or business need for us to retain the personal data.
Transparency
Clear information on how Grab collects, uses, processes and discloses personal data is provided through Grab’s Privacy Notice which is publicly available on Grab’s websites, and so is the contact information to reach out to the Grab Privacy Office.
