In its cybersecurity report, Swisscom describes different types of data breaches and how it is handling them internally. It receives a "Partial" for this indicator because it does not declare a commitment to notifying users in every type of data breach. Yet there are some instances in which it does provide notification, e.g. in the case of a network quarantine because of a detected threat, "When attempting to connect to the Internet, they are shown an information page explaining what was done and why, and also providing

additional information and tips on how they can rectify the situation themselves." For a blocked account, "If a mailbox is compromised or misused, it is blocked.

This prevents the attacker from reading the contents of the mailbox or using it to obtain passwords for other services. Customers can then use their Swisscom Login to set a new password. If the Swisscom Login is compromised, it is blocked. The block is only lifted and a new password set once the authorised customer has been clearly identified."