Category Descriptions

  • Business Disruption - (incidents arising from hazards beyond Transunion's control that disrupt the business, associates or building systems of the organization. EXAMPLES: Earthquake, flooding, snow storm, or civil unrest.)
  • Clients/Products/Business Practices - (Incidents arising from an unintentional or negligent failure to meet a professional obligation to specific clients (including fiduciary and suitability requirements), or from the nature or design of a product. EXAMPLES: Model errors, product defects, improper solicitation, deceptive marketing.)
  • Employment Practices/Workplace Safety - (Issues that arise from the employment relationship. EXAMPLES: Discrimination, harassment, retaliation of whistleblowers, hostile work environment.)
  • Environmental Exposures - (Incidents due to societal or macro-economic trends that are external to TransUnion. EXAMPLES: cyber crime trends, brand/reputation, competition, regulatory trends.)
  • Execution/Delivery/Process Management - (Incidents from failed transaction processing or process management and from relations with vendors. EXAMPLES: Missed deadlines, data entry or loading errors, incorrect customer or consumer records.)
  • External Unauthorized Activities - (Incidents arising from potential unauthorized activities of external parties. EXAMPLES: Creating submitting fraudulent credentials, misuse of credit report information, unauthorized credit report access.)
  • Financial Management -(Incidents associated with corporate financing, including financial transactions that include company loans in risk of default. EXAMPLES: Cashflow or liquidity issues, accounting or audit irregularities, improper loans to executives.)
  • Financial Reporting - (Incidents related to the misstatement and/or destruction of Company accounting documents or audit work papers. Acts that fraudulently influence any public or certified accountant who is either preparing financial statements or conducting an audit for the Company. This is usually performed at the corporate level. EXAMPLES: A person destroys accounting documents to keep auditors from discovering poor accounting practices. A person knowingly enters false information into the Company's financial records.)
  • Internal Unauthorized Activities - (Incidents arising from potential unauthorized activities of TransUnion associates. EXAMPLES: violations of policy, unauthorized maintenance of credit data, conflict of interest.)
  • Safeguarding of Assets - (Information Security type incidents arising from loss or damage to physical or electronic assets, including data, cell phones, laptops, emails, paper documentation, etc.)
  • Strategy Management - (Incidents due to uncertainties and untapped opportunities embedded in TransUnion's strategic plan and how well they are executed.)
  • Technology - (Incidents due to information technology system outages or systems not performing as expected. EXAMPLES: Failure of network routers, implementation of change resulted in downtime, corruption of a database.)