This Binding Corporate Rules Controller Policy (“Policy”) establishes the approach taken by Verizon Enterprise Solutions (also referred to as Verizon Wireline and Verizon Business) ('Verizon') to the protection and management of personal information1 globally by Verizon group members ("GroupMembers") when processing2 that information for their own purposes.
This Policy applies to all personal information that is processed in Europe (which means that it will also include personal information collected by Group Members outside Europe and sent to Group Members in Europe) which is then transferred from Group Members within Europe to Group Members outside Europe.3
This Policy applies to all such personal information processed by Verizon; (i) in the course of customer and supplier management, and (ii) which relates to employees.
Group Members must comply with and respect this Policy when collecting and using personal information for their own purposes.
This Policy does not replace any specific data protection requirements that might apply to a business area or function.
Download the full Binding Corporate Rules Controller Policy
Download the full Binding Corporate Rules Controller Policy Submitted to the ICO for annual update April 2019
1 Personal information means any information relating to an identified or identifiable natural person in line with the definition of “personal data” in EU Directive 95/46/EC.
2 For the purposes of this Policy reference to the 'processing' of personal information is as defined in EU Directive 95/46/EC, and references to 'collection' 'use' and 'transfer' are all elements of the definition of processing.
3 For the purpose of this Policy reference to Europe means the EEA and Switzerland.