Governance
Leading with integrity.
We uphold the highest ethical standards
The world’s leading companies and organizations trust CrowdStrike to keep them safe. We take this responsibility very seriously, and retain the trust of our customers and other stakeholders by backing our solutions with strong governance, ethical business practices, and preeminent expertise in data privacy and information security.1
Ethics and Legal Compliance
We are committed to winning while embodying our core values and always doing the right thing.
We expect all employees, officers, board members, and independent contractors to follow CrowdStrike’s Code of Ethics & Business Conduct, and take an annual mandatory training. Our other related policies include anti-corruption, anti-bribery, and insider trading policies. We expect all business partners to follow our Business Partner Standards. We have a robust system of controls and processes, governed by our Audit Committee, for investigating any reported violations of our policies.
At CrowdStrike, we're on a mission to stop breaches. We strive to carry out that mission with an unwavering commitment to doing business fairly, honestly, and with integrity.”
— Cathleen Anderson, Chief Legal Officer
Honor
- We follow the Code and other policies
- We follow the law
Fairness and Honesty
- We are honest with our customers, partners, vendors, and other third parties
- We are fair and transparent in our dealings
Integrity
- We do not cut corners
- We do the right thing
CrowdStrike Modern Slavery Statement
CrowdStrike has a zero-tolerance approach to any form of human trafficking, modern slavery, or other forced or child labor, and we fully support the elimination of these human rights violations in the supply chain. Our efforts include risk assessments, due diligence, audits, policies and training.
Data protection, privacy and information security
At CrowdStrike, we are in the business of data protection. Breaches are one of the greatest threats to data privacy, and cybersecurity is critical to protecting privacy and maintaining compliance to GDPR, CCPA, APPI, LGDP, and other regulatory requirements. We help organizations across the globe with holistic cybersecurity preparedness, incident response, and endpoint security.
We continually monitor both the regulatory landscape and threat landscape worldwide. We use our expertise to help customers meet their privacy requirements, as well as engage with decision-makers on key issues at the intersection of security and technology policy.
We use our cybersecurity capabilities to protect the personal data we collect and to ensure information security.
Our sophisticated privacy compliance program is designed to ensure that CrowdStrike meets our obligations under applicable data protection laws and global privacy standards, and can demonstrate accountability to both regulators and customers in line with our Global Privacy Policy. The program outlines how we integrate privacy compliance into our daily operations through proactive risk management, employee training, privacy by design, incident management, and continuous monitoring.
1 Leader for the fifth consecutive time in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
