Besides compliance with international and local regulations, GN has not set targets related to data privacy. GN’s ambition is to ensure that all employees have the proper knowledge of data privacy and that GN protects all personal data. GN complies with privacy regulations such as GDPR, Health Insurance Portability and Accountability Act USA (HIPAA), Personal Information Protection Law (China) (PIPL), and The Personal Information Protection and Electronic Documents Act (Canada)(PIPEDA). GN continuously reviews internal procedures and follows regulations to protect consumer and end-user data and ensure the effectiveness of policies and actions implemented. In connection with CSRD implementation, the process is formalized from 2024.