CrowdStrike 2025 Global Threat Report: Adversaries have adapted. Have you? Download

Governance

Leading with integrity.

We uphold the highest ethical standards

The world’s leading companies and organizations trust CrowdStrike to keep them safe. We take this responsibility very seriously, and retain the trust of our customers and other stakeholders by backing our solutions with strong governance, ethical business practices, and preeminent expertise in data privacy and information security.1

Ethics and Legal Compliance

We are committed to winning while embodying our core values and always doing the right thing.

We expect all employees, officers, board members, and independent contractors to follow CrowdStrike’s Code of Ethics & Business Conduct, and take an annual mandatory training. Our other related policies include anti-corruption, anti-bribery, and insider trading policies. We expect all business partners to follow our Business Partner Standards. We have a robust system of controls and processes, governed by our Audit Committee, for investigating any reported violations of our policies.

 

CrowdStrike’s Code of Ethics & Business Conduct

CrowdStrike's Business Partner Standards

At CrowdStrike, we're on a mission to stop breaches. We strive to carry out that mission with an unwavering commitment to doing business fairly, honestly, and with integrity.”

— Cathleen Anderson, Chief Legal Officer

Honor

  • We follow the Code and other policies
  • We follow the law

Fairness and Honesty

  • We are honest with our customers, partners, vendors, and other third parties
  • We are fair and transparent in our dealings

Integrity

  • We do not cut corners
  • We do the right thing

CrowdStrike Modern Slavery Statement

CrowdStrike has a zero-tolerance approach to any form of human trafficking, modern slavery, or other forced or child labor, and we fully support the elimination of these human rights violations in the supply chain. Our efforts include risk assessments, due diligence, audits, policies and training.

Data protection, privacy and information security

At CrowdStrike, we are in the business of data protection. Breaches are one of the greatest threats to data privacy, and cybersecurity is critical to protecting privacy and maintaining compliance to GDPR, CCPA, APPI, LGDP, and other regulatory requirements. We help organizations across the globe with holistic cybersecurity preparedness, incident response, and endpoint security.

We continually monitor both the regulatory landscape and threat landscape worldwide. We use our expertise to help customers meet their privacy requirements, as well as engage with decision-makers on key issues at the intersection of security and technology policy. 

We use our cybersecurity capabilities to protect the personal data we collect and to ensure information security.

Our sophisticated privacy compliance program is designed to ensure that CrowdStrike meets our obligations under applicable data protection laws and global privacy standards, and can demonstrate accountability to both regulators and customers in line with our Global Privacy Policy. The program outlines how we integrate privacy compliance into our daily operations through proactive risk management, employee training, privacy by design, incident management, and continuous monitoring.

1 Leader for the fifth consecutive time in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms