The Basics • Consumer data belongs to the consumer - they are just letting us borrow it. • We will tell them why we want to collect it, what we will use it for, and obtain their permission prior to collecting any personal information. • If a consumer wants to know what data we have collected about them, we will share that data with them. • If a consumer wants to take their information out of our databases, we will accommodate their request. • A consumer's data is very valuable, and we will not abuse their trust in us. Personally Identifiable vs. Sensitive I Please place mouse over l nformation inks to see more information • Personally Identifiable(PII) o First and last name o Address dress o eMail Ad o Phone Numbers umbers o Government ID N o Photograph tion of o Any combina information, when asked at one time, that could identify a person. • Sensitive ernment ID number l health Note: Audio files may be PII, though in the normal course of P&G business they s o Gov o Race or Ethnic origin o Photograph nions o Political Opi o Religious beliefs or affiliations o Medical History o Physical or menta information o Sex life orientation o Criminal record er o Credit card numb are not. For now they are not included, but if an area believes that their audio file are likely to expose PII, either because the voice is recognizable by likely listeners, or because the person is divulging PII in the audio, then the audio should be considered PII. e.g. social security number Note: fi red PII rst name alone is not conside e.g. postal code (K1B4H3) + gender (female) + age (103)= Mrs. Charles Greene. Locating P&G's Privacy Policy You can find P&G's Privacy Policy at. . . • The company's public home page (www.pg.com/privacy). This is open to consumers. • The CR Community of Practice area in CR Net - CR Connections tab. This is for P&G employees only. ‘phone1’ Data • In countries where Caller ID technology is prevalent, we do collect telephone numbers automatically in the ‘phone1’ field. This information is only used in an emergency or to block repeated offensive callers. • ‘phone1’ data should not be given out to anyone (including P&G employees in other departments) without express permission of your contact center manager. Use of Consumer Data • Personal Identifiable Information (PII) received from consumers will only be used o to follow-up on the consumer's contact o for internal marketing purposes. Data Storage and Security • We will only store consumer data for a reasonable period of time, usually 3 years, although health related information will be stored longer. • We are committed to keeping consumer data secure and will take reasonable precautions to protect their personal information from loss, misuse or alteration. • Precautions you should take: o Never give out your password. o Change your password frequently. o Protect a consumer’s data the way you would protect your own name, address, and phone number. o Ask why someone needs a list of consumer names and addresses before you give it to them. Vendors and Contractors • Agents, contractors, or partners of P&G who have access to consumer’s personal information MUST keep the information confidential and are not permitted to use this information for any other purpose than to carry out the services they are performing for P&G. Consumer Consent • Consumers must consent to have their data collected. • Consumers should understand: o why we are collecting their data o how we plan to use their data o what data we have about them o that the data may be transferred to the U.S or other countries o how they can remove themselves from our databases (also called opting- out) • Every contact center will implement different scripts to convey o that we collect data o that we would like to use their data for a specific purpose (e.g. marketing or follow-up) o when consumers' data will be transferred o and that the choice belongs to the consumer. Children’s Privacy • P&G does not intend to collect personal information from children (usually those under 13 years of age, but this can vary by country) without parental permission. • Where appropriate, P&G will specifically instruct children not to submit such information and/or will take reasonable steps to ensure parental consent to such submission. • If a child has provided us with personal information, a parent or guardian of that child may contact us if they would like this information deleted from our records. We will use reasonable efforts to delete the child's information from our databases. . collecting their data o how we plan to use their data o what data we have about them o that the data may be transferred to the U.S or other countries o how they. The Basics • Consumer data belongs to the consumer - they are just letting us borrow it. • We will tell them why we want to collect