Responsible Platform
Grab protects our users and their data, embedding data protection, cybersecurity and AI ethics into our products.
Grab’s Impact in 2025
Zero
substantiated complaints from regulators or third parties related to breaches of customer privacy that were significant in scale and impact
Zero
material cybersecurity breaches identified in 2025
Data Collection and Processing
Grab collects and processes personal data on the basis of valid legal grounds, including consent, contractual necessity, legal obligations and, where applicable, legitimate interests.
Protection and Safe Custody of Personal Data
Grab provides and maintains reasonable security measures to protect personal data, including physical, administrative, and technical access controls.
Retaining Personal Data for No Longer Than Necessary
Grab ceases retaining personal data, through anonymisation, disposal, or other appropriate means, when there is no longer a legal or business need to do so.
Transparency
Grab provides users with clear information on how we collect, use, process, and disclose personal data. Our Privacy Notice is publicly available on our websites, along with the contact information for our Privacy Office.
Responsible Third-Party Sharing
Where personal data needs to be shared, Grab does so responsibly, by partnering exclusively with entities that meet our robust technical and contractual safeguards, ensuring accountability across our entire value chain.
Certifications
Grab is the first superapp to secure and renew the Data Protection Trustmark (DPTM) certification from the Infocomm Media Development Authority of Singapore. We have also received the ISO 27701:2019 Privacy Information Management System certification for selected entities in Indonesia .
Greener hills, brighter homes: restoring forests and cutting emissions across Vietnam
Singapore Grab users support the country’s first large scale seagrass nursery
How we’re making short-term loans more accessible for Grab merchant-partners
