Policy@Intel
A place to exchange ideas and perspectives, promoting a thriving innovation economy through public policy
643 Discussions

Approval of Intel’s Corporate Privacy Rules

David_Hoffman
Employee
0 0 242
davidhoffman1.jpgBy David Hoffman, Director of Security Policy and Global Privacy Officer

I am pleased to announce that Intel’s Binding Corporate Rules (BCRs), to be known as the Intel Corporate Privacy Rules (ICPRs) (found here: IntelCorporatePrivacyRules), have been approved by the Irish Data Protection Commissioner. This announcement from the lead data protection authority for Intel’s BCRs application signals many other European Union data protection authorities consider the ICPRs sufficient for the global transfer of personal data between Intel companies.

The ICPRs describe our approach to privacy and data protection compliance, and will invigorate the existing privacy program. 

Intel has long been a strong proponent for the concept of “accountability” in privacy and data protection.  We believe private sector companies should work together with all stakeholders – governments, non-governmental organizations, and users – to create and increase trust in the use of digital devices and the way those devices are used to collect, process and use personal data.  The primary way organizations can increase trust in privacy is by demonstrating accountability to the privacy commitments required by law and promised in privacy policies.  For instance, one way companies can demonstrate privacy accountability is by innovating to build trust in their products or design processes.  We strongly believe industry must do more, in a systemic and systematic way, to demonstrate accountability processes than to simply say, “Trust us—we’re accountable.”  Acknowledgement by European data protection authorities that Intel’s ICPRs satisfy European Union requirements in the BCRs mutual recognition procedure is a significant step in demonstrating our commitment to privacy accountability.

As the EU is revising its main data protection legislation, it becomes clear that BCR approval by data protection authorities will play an even stronger role in the future system of international data transfers.  We look forward to sharing our positive experience in obtaining BCR approval as we work with European policymakers and legislators on the data protection review.