Xiaomi has announced the findings of an independent review into its data protection compliance.

Xiaomi appointed TRUSTe LLC to conduct an independent audit of its data protection and security management. The review comprehensively evaluated whether the processing of personal information conducted by Xiaomi is performed in compliance with the General Data Protection Regulation (GDPR) of the European Union (EU). Cui Baoqiu, Xiaomi Vice President and Chairman of Xiaomi Security and Privacy Committee said:

“We regularly engage with TRUSTe, as well as other credible institutions globally to warrant that Xiaomi’s user privacy protection, including GDPR compliance, keeps improving and perfecting its practices to offer our users reliable and trustworthy products and services. I’m very pleased to see that Xiaomi has completed TRUSTe’s annual audit of GDPR privacy compliance, which demonstrates our commitment to privacy protection.”

Xiaomi continues to submit to outside scrutiny when it comes to data protection and user privacy, adopting the GDPR of the EU compliance assessment in 2018.

The Validation Requirements focus on program-level measures in eight areas: Integrated Governance, Risk Management, Resource Allocation, Policies and Standards, Processes, Awareness and Training, Monitoring and Assurance, and Reporting and Certification.