Binding Corporate Rules

This Binding Corporate Rules Processor and Controller Policies establishes the approach taken by Verizon Enterprise Solutions in accordance with EU directives.

This Binding Corporate Rules Processor Policy (“Policy”) establishes the approach taken by Verizon Enterprise Solutions (also referred to as Verizon Wireline and Verizon Business) ('Verizon') to the protection and management of personal information¹ globally by Verizon group members ("GroupMembers") when processing² that information on behalf of a third party or another Group Member andwhere such personal information originates from Europe except where your contract states otherwise.

This Policy applies to all personal information originating from Europe and collected and processed as part of the regular business activities of Verizon in the course of providing services to a third party or another Group Member (equally referred to as the "customer" in this Policy), and Group Members and their employees must comply with and respect this Policy when collecting and processing personal information in their capacity as service providers.

This Policy does not replace any specific data protection requirements that might apply to a business area or function.

Download the Full Binding Corporate Rules Processor Policy

Download the Full Binding Corporate Rules Processor Policy   Submitted to the ICO for annual update April 2019

¹ Personal information means any information relating to an identified or identifiable natural person in line with the definition of “personal data” in EU Directive 95/46/EC.

² For the purposes of this Policy reference to the 'processing' of personal information is as defined in EU Directive 95/46/EC, and references to 'collection' 'use' and 'transfer' are all elements of the definition of processing.

This Binding Corporate Rules Controller Policy (“Policy”) establishes the approach taken by Verizon Enterprise Solutions (also referred to as Verizon Wireline and Verizon Business) ('Verizon') to the protection and management of personal information¹ globally by Verizon group members ("GroupMembers") when processing² that information for their own purposes.

This Policy applies to all personal information that is processed in Europe (which means that it will also include personal information collected by Group Members outside Europe and sent to Group Members in Europe) which is then transferred from Group Members within Europe to Group Members outside Europe.³

This Policy applies to all such personal information processed by Verizon; (i) in the course of customer and supplier management, and (ii) which relates to employees.

Group Members must comply with and respect this Policy when collecting and using personal information for their own purposes.

This Policy does not replace any specific data protection requirements that might apply to a business area or function.

Download the full Binding Corporate Rules Controller Policy

Download the full Binding Corporate Rules Controller Policy   Submitted to the ICO for annual update April 2019

¹ Personal information means any information relating to an identified or identifiable natural person in line with the definition of “personal data” in EU Directive 95/46/EC.

² For the purposes of this Policy reference to the 'processing' of personal information is as defined in EU Directive 95/46/EC, and references to 'collection' 'use' and 'transfer' are all elements of the definition of processing.

³ For the purpose of this Policy reference to Europe means the EEA and Switzerland.