Who do we share your personal information with, why and how?
We share your personal information with other companies within the BT Group. We have a group-wide arrangement, known as binding corporate rules, to make sure your personal information is protected, no matter which company in the BT Group holds that information. You can ask for a copy of our binding corporate rules by emailing our data protection office, contact details can be found here.
We also use other service providers to process personal information on our behalf. Details of how they handle your personal information are set out below.
Using other service providers
We use other providers to carry out services on our behalf or to help us provide services to you. We also use them to:
- provide customer-service, marketing, infrastructure and information-technology services;
- personalise our service and make it work better;
- process payment transactions;
- carry out fraud and credit checks and collect debts;
- analyse and improve the information we hold (including about your interactions with our service); and
- run surveys.
Where we use another organisation, we still control your personal information. And we have strict controls in place to make sure it’s properly protected.
Finally, the section above describes the situations in which your personal information is shared to other organisations, government bodies and law enforcement agencies. When we share your information with other organisations we’ll make sure it’s protected, as far as is reasonably possible.
If we need to transfer your personal information to another organisation for processing in countries that aren’t listed as 'adequate' by the European Commission, we’ll only do so if we have model contracts or other appropriate safeguards (protection) in place.
If there’s a change (or expected change) in who owns us or any of our assets, we might share personal information to the new (or prospective) owner. If we do, they’ll have to keep it confidential.
For more details, or if you’d like a copy of our binding corporate rules or other information about a specific transfer of your personal information, get in touch with us here. The fraud prevention section above provides details on transfers fraud prevention agencies may carry out.
The countries we share personal information to
BT Group is a large multinational organisation. Our binding corporate rules reflect how we operate. They include a list of countries (below) which are structured to allow us to transfer personal information to the countries where we have a presence. For us, after the UK and wider EU, India and the Philippines are where most of our processing of personal information takes place. Your personal information is used for customer or IT support or operations purposes in these countries. While our binding corporate rules allow us to transfer personal information to these countries, the information won’t always include your personal information in every case.
Algeria, Argentina, Australia, Bahrain, Bangladesh, Barbados, Bermuda, Bolivia, Bosnia and Herzegovina, Botswana, Brazil, Canada, China, Colombia, Costa Rica, Cote d'Ivoire, Dominican Republic, Ecuador, Egypt, El Salvador, Ghana, Gibraltar, Guatemala, Honduras, Hong Kong, India, Indonesia, Isle of Man, Israel, Jamaica, Japan, Jersey, Jordan, Kazakhstan, Kenya, Republic of Korea, Lebanon, Macedonia, Malawi, Malaysia, Mauritius, Mexico, Moldova, Montenegro, Morocco, Mozambique, Namibia, Nicaragua, Nigeria, Norway, Oman, Pakistan, Panama, Paraguay, Peru, Philippines, Puerto Rico, Qatar, Russian Federation, Serbia, Singapore, South Africa, Sri Lanka, Switzerland, Taiwan, Tanzania, Thailand, Trinidad and Tobago, Tunisia, Turkey, Uganda, Ukraine, United Arab Emirates, United States, Uruguay, Venezuela, Vietnam, British Virgin Islands, Zambia and Zimbabwe.