Although the information digitalization bring many convenience for management,the problem of the security also starts subjecting a challenge.Take place several customer data to leak in recent years particularly affairs, influence the image of the enterprise not only, cause the damage of the goodwell,and more stock price decline various injury.This research mainly makes a thorough study to the protection of the customer information, understanding various threats that influences customer information, and the actual situation to the management policy of the customer information. BS7799 Code of Practice for Information Security is the concrete index that constructs the enterprise security mechanism, the purpose lies in insuring a related information property of the enterprise organization, including security of the entity, software and hardware facilities, data, information etc., therefore, this research of BS7799 in the ten control items of information security management systems:security policy, organizational security, asset classification and control, personnel security, physical and environmental security, communications and operations management, access control, systems development and maintenance, business continuity management and compliance are main structure of interview problem. In-depth interview in the qualitative study is the way of the main data collection in this research.According to interviewees’ abundant scholarship and experience in this realm, acquired rich source of the data. Finally sort and induce the interview content and the literature induces, to construct six propositions. Finally This research finds the scope that the protection involves of the customer information is rather extensive, including entity security, the personnel security, the communication security and operation security.Those are closely related each other, complement each other, can't exist alone.And for strengthening the security protection of the customer information, can from acquired the support of the top executive and strengthened a training to guided, enhance personnel control,establish the management mechanism that the aspect of"human nature originally bad" , and embraced the mindset of "provided against possible trouble".