Global Employee Privacy Notice

Last Revised: Feb. 4, 2020

About this Notice

This Notice outlines Intel’s practices for the handling of employee personal information and is applicable worldwide. Intel can amend this notice at any time. Updates will be posted here. This Notice is applicable to employees.

Collection and Use of Your Personal Information

Intel collects and uses employee personal information primarily in order to manage the employment relationship such as delivery of applicable compensation and benefits programs; human resources practices, including hiring, promotion, retention and discipline; centralizing and processing human resources information; participation in company provided programs and events; career development opportunities; promotion of healthy lifestyles; assurance of a safe working environment and legal obligations, including notifying family members or designated contacts in case of emergency; assessing suitability for employment or particular position.

Legal obligations require us to collect and use information as needed to investigate violation of law or company policy, protect against security threats, perform recordkeeping and documentation obligations (such as for financial, accounting or tax laws), respond to subpoenas, discovery or Government or other legal authority requests in the context of litigation or investigations.

Where employees use Intel assets, device or usage information is captured to protect Intel’s assets and rights, Intel records, collects, stores and analyzes information on: (1) your use of, or access to, company-issued equipment, media, applications, network resources and IT services, and (2) any data, content, or communications transmitted to or from, received or printed from, or created, stored or recorded on any of the above, including personal use, such as where Intel-sensitive terms are typed into a web-based online personal email or web form, for example. This is true regardless of the labelling of the data, the use of encryption, the deletion of the data or communications, or any other factor. All activities performed on personally-owned devices used for Intel business, and related data, applications, content and communications, are also subject to these security measures.

Intel may also use information described under this Notice to evaluate, improve and develop services and products, subject to legal review.

How We Share Your Personal Information

We share your personal information with our affiliates, suppliers and vendors as needed to fulfil the lawful bases described in this Notice. Our authorized vendors and suppliers require personal information to provide services we have contracted for, such as web site hosting, data analysis, reviews or investigations, to provide IT services, financial, accounting and billing services, third party oversight and auditing. Our contracts with suppliers and vendors include provisions to protect your information and limit its use to the purposes described in this Privacy Notice. Furthermore we share your personal information with institutions and authorities to which Intel is obliged to transmit data.

We may disclose personal information as part of a contemplated or actual corporate transaction such as a reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings).

Your Choices and Rights

You may request that Intel correct or update your personal information, or request access to or deletion of your personal information. If you request a change to or deletion of your personal information, please note that we may still need to retain certain information for record-keeping purposes or to comply with legal or contractual requirements.

At your request and where the law requires us to do so, we will confirm what personal information we hold about you. You may also have a legal right to obtain a copy of your personal information.

You can make these requests using one of the methods set out in the How to Contact Us section below. We may charge a processing fee for this service where permitted by law and we will require evidence of your identity before fulfilling your request.

Security

Intel is committed to protecting personal information and has implemented appropriate administrative, technical and organizational security measures as well as policies and procedures to protect employee personal information against risks such as temporary or permanent loss, destruction, and unauthorized or unlawful access, alteration, use or disclosure. We require our suppliers and vendors to apply similar protections when they access or use personal information that we share with them.

International Compliance

Intel is a global company with its headquarters in the United States. As such, you can expect that we transfer your personal information between the United States and our affiliates and subsidiaries in other countries. We may also transfer your personal information to our major data centers for processing in the following countries: Argentina, Austria, Brazil, Canada, China, Costa Rica, Denmark, Egypt, Finland, France, Germany, Hong Kong, India, Ireland, Israel, Italy, Japan, Malaysia, Mexico, Netherlands, Philippines, Poland, Romania, Russian Federation, Singapore, South Korea, Sweden, Switzerland, Taiwan, Turkey, United Kingdom, United States, United Arab Emirates, and Vietnam. These countries may change from time to time and Intel can provide a current list upon written request.

We transfer information in order to operate efficiently, to improve performance, and to create redundancies in order to protect information in the event of an outage or other problem.

We will process your personal information in a way that meets the commitments of this Notice and complies with the law wherever we transfer it.

Retention

We retain personal information for the period necessary to: manage the employment relationship, as needed to comply with legal obligations (e.g. to comply mandatory record retention or legal hold requirements), to resolve disputes, and to otherwise fulfill the purposes, rights and obligations outlined in this Privacy Notice. Intel retains records relating to workers for a maximum of ten years following the end of the worker relationship except where a longer retention period is required by applicable law. Some records relating to pensions, compensation plans, profit sharing or payroll may be retained for a longer period as they are subject to ongoing performance obligations. Our retention periods are based on criteria that include legally mandated retention periods, pending or potential litigation, our intellectual property or ownership rights, contract requirements, operational directives or needs, and historical archiving. When personal information is removed from our systems, it will be deleted or destroyed using appropriate security protocols so that it cannot be reconstructed or read.

Third Party Sites & Services

This Privacy Notice does not address, and we are not responsible for, the policies and practices of third parties or other organizations that are not operating on Intel’s behalf, including policies and practices related to privacy and security, data collection, processing, use, storage, and disclosure. This includes: (a) any linked third party operating any site or service (the inclusion of a link does not imply endorsement of the linked site or service by us or by our affiliates); or (b) any app developer, app provider, social media platform provider, operating system provider, wireless service provider or device manufacturer.

Changes to this Privacy Notice

We may change this Privacy Notice from time to time as described in this section so it accurately reflects our practices and legal requirements. You should check back regularly to stay informed of our privacy practices.

The Last Revised section at the top of this Notice states when this Privacy Notice was last amended and we update this date each time a revision is posted. Any non-material changes to this Privacy Notice will become effective when we post the revised Privacy Notice subject to this section.

If any change to our Privacy Notice materially affects the use of your personal information, we use reasonable efforts to notify you in advance, such as by sending an email or posting a prominent notice of the changes, we will give you a reasonable period of time to object to any changes and we will seek affirmative consent if and where this is required by applicable data protection laws.

How to Contact Us

If you have questions or concerns about this Notice, Intel’s privacy practices or to exercise any of your rights and choices as described in this Notice, you can contact Intel’s Privacy Office.

Additional Privacy Supplements

The following privacy supplements are incorporated by reference into this Privacy Notice:

• Privacy Notice Supplement for Israeli Employees (English)
• Privacy Notice Supplement for Israeli Employees (Hebrew)

Appendix for Employees in the European Economic Area (EEA)

If you work for an Intel entity established in the EEA that entity is responsible for handling your personal information, the following sections provide additional information under the EU General Data Protection Regulation (GDPR) and national data protection law.

The data we process is required to perform our working relationship with you (such as staff administration or resource planning), or to comply with legal obligations (such as health and safety management) and Intel’s legitimate interests (subject to legal review, to evaluate, improve and develop services and products). Where we support or protect our assets, rights and security, this processing is also based on our legitimate interest.

Data Sharing – Intel Corporate Privacy Rules

For personal information from the EEA that is transferred to an Intel entity outside the EEA (e.g. to Intel Corporation, Santa Clara, California (USA) that does not have an “adequate level of protection” as determined by the European Commission, Intel does so on the basis of its approved binding corporate rules known as the Intel Corporate Privacy Rules (Intel’s ICPR). Intel’s ICPRs establish adequate protection of personal information and are legally binding on the subsidiaries and affiliates identified in Intel’s Deed Poll. Access Intel’s ICPR. Where Intel’s ICPR do not apply, we rely on other lawful measures, such as contracts that include the EU Standard Contractual Clauses. Review the EU Standard Contractual Clauses on the European Commission’s website.

Data Protection Rights

Employees can request access to their personal information, request correction, deletion or object to processing of their personal information where it is based on legitimate interest, ask us to restrict processing of their personal information or request portability of personal information they provided.

Where consent to the use of personal information has been obtained, it can be withdrawn at any time with future effect. These rights can be exercised by making a written request in one of the ways described in the How to Contact Us section below. Access a list of Intel affiliates and subsidiaries that receive personal information of individuals in the European Union.

If you believe we are using your personal information in a way that is inconsistent with this Privacy Notice or data protection laws or for more information about your rights, you may contact your local data protection authority (contact details for data protection authorities in the European Economic Area).

How to Contact Us

In addition to contacting Intel’s Privacy Office, employees in the EEA may also contact us through our EU Data Protection Officer at the address/email set out below. Please include your contact information and a detailed description of your request or privacy concern.

Data Protection Officer M/S: Intel Privacy Office
Intel Ireland Limited
Collinstown Industrial Park
Co Kildare
Ireland
W23 CX68
By Email: dataprotectionofficer@intel.com

Global Contingent Worker Privacy Notice

Last Revised: Feb. 4, 2020

About this Notice

This Global Contingent Worker Privacy Notice (“this Notice”) outlines Intel’s practices for the handling of contingent worker personal information and is applicable worldwide. Contingent workers are individuals that are not Intel employees but are employed pursuant to a contact with a third party and require Intel facilities or equipment access to perform their duties. Intel can amend this notice at any time. Updates will be posted here. This Notice is in lieu of, and not in addition to, the external Intel Privacy Notice and the Global Employee Privacy Notice.

Collection and Use of Your Personal Information

Intel collects and uses contingent worker personal information such as name, contact details, education background, degrees, occupational history, government issued identification or other identification numbers and physical location in order to perform contract obligations, communicate as part of the work relationship, comply with legal obligations, and for administrative and information security purposes. We obtain personal information about contingent workers from third parties, such as the contingent worker’s employer, for these purposes as well.

Contract performance includes selection and identification of the contingent worker by reviewing resumes, conducting screenings and documenting Statements of Work or similar orders; onboarding which includes completion of forms and issuance of assets, processing compensation and off boarding upon completion of assignment.

During a contingent worker’s assignment, we use personal information to communicate and complete the work, such as email address and contact information like address and phone numbers.

Administrative purposes include collecting a contingent worker’s preferred contact in case of emergency, or identification or travel profile data if business travel is required.

Legal obligations require us to collect and use information as needed to investigate violation of law or company policy, protect against security threats, perform recordkeeping and documentation obligations (such as for financial, accounting or tax laws), responding to subpoenas, discovery or Government or other legal authority requests in the context of litigation or investigations.

Where a contingent worker is using Intel assets, device or usage information is captured to protect Intel’s rights and assets and to provide information security. This information may include identifying hardware data, network connection information, IP address and geographic location (such as through GPS, Bluetooth or WiFi signals). In order to protect other Intel assets, we may record, collect, store and analyze information on: (1) your use of, or access to, company-issued equipment, media, applications, network resources and IT services, and (2) any data, content, or communications transmitted to or from, received or printed from, or created, stored or recorded on any of the above, including personal use, such as where Intel-sensitive terms are typed into a web-based online personal email or web form, for example. This is true regardless of the labelling of the data, the use of encryption, the deletion of the data or communications, or any other factor. All activities performed on personally-owned devices used for Intel business, and related data, applications, content and communications, are also subject to these security measures.

Intel may also use information described under this Notice to evaluate, improve and develop services and products, subject to legal review.

How we Share Your Personal Information

We share contingent worker personal information with our affiliates and with suppliers, vendors and some partners as needed to fulfil the lawful bases described in this Notice. Our authorized vendors and suppliers may require personal information to provide services we have contracted for, such as web site hosting, data analysis, reviews or investigations, to provide IT services, financial, accounting and billing services, third party oversight and auditing. Our contracts with suppliers and vendors include provisions to protect contingent worker information and limiting its use.

We use a wide variety of software and tools at Intel and we process personal information using these tools as a regular course of business.

We may disclose personal information as part of a contemplated or actual corporate transaction such as a reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings).

Intel may disclose contingent worker personal information to any other person or entity after obtaining consent to the disclosure.

Your Choices and Rights

To correct or update personal information, or to request access to or deletion of your personal information, refer to the How to Contact Us section below including your name, email address, and purpose of the request. Following a request to change or delete personal information, please note that we may still need to retain certain information for recordkeeping purposes or to comply with legal or contractual requirements.

Upon a contingent worker’s request and where the law requires us to do so, we will confirm what personal information we hold about the worker. You may also have a legal right to obtain a copy of your personal information and can make such a request by making a written request in one of the ways described in How to Contact Us. We may charge a processing fee for this service where permitted by law and we will require evidence of identity before fulfilling the request.

Security

Intel is committed to protecting personal information and has implemented appropriate administrative, technical and organizational security measures as well as policies and procedures to protect contingent worker personal information against risks such as temporary or permanent loss, destruction, and unauthorized or unlawful access, alteration, use or disclosure. We require our suppliers and vendors to apply similar protections when they access or use personal information that we share with them.

International Compliance

Intel is a global company with its headquarters in the United States. As such, we may transfer your personal information between the United States and our affiliates and subsidiaries in other countries. We may also transfer your personal information to our third party service providers, who may be located in a different country to you. We may also transfer your personal information to our major data centers for processing in the following countries: Argentina, Austria, Brazil, Canada, China, Costa Rica, Denmark, Egypt, Finland, France, Germany, Hong Kong, India, Ireland, Israel, Italy, Japan, Malaysia, Mexico, Netherlands, Philippines, Poland, Romania, Russian Federation, Singapore, South Korea, Sweden, Switzerland, Taiwan, Turkey, United Kingdom, United States, United Arab Emirates, and Vietnam. These countries may change from time to time and Intel can provide a current list upon written request in one of the ways described in the How to Contact Us section below.

We transfer information in order to operate efficiently, to improve performance, and to create redundancies in order to protect information in the event of an outage or other problem. We will process your personal information in a way that meets the commitments of this Notice and complies with the law wherever we transfer it.

Whenever Intel transfers personal information beyond the country of origin, we will do so in accordance with applicable laws.

Retention

We retain personal information for the period necessary to: provide requested Intel Services, as needed to comply with legal obligations (e.g. to comply mandatory record retention or legal hold requirements) as agreed in an individual consent, to resolve disputes, and to otherwise fulfill the purposes, rights and obligations outlined in this Privacy Notice. Intel retains records relating to workers for a maximum of ten years following the end of the worker relationship except where a longer retention period is required by applicable law. Some records relating to pensions, compensation plans, profit sharing or payroll may be retained for a longer period. Our retention periods are based on criteria that include legally mandated retention periods, pending or potential litigation, our intellectual property or ownership rights, contract requirements, operational directives or needs, and historical archiving. When personal information is removed from our systems, it will be deleted or destroyed using appropriate security protocols so that it cannot be reconstructed or read.

Third Party Sites & Services

This Privacy Notice does not address, and we are not responsible for, the policies and practices of third parties or other organizations that are not operating on Intel’s behalf, including policies and practices related to privacy and security, data collection, processing, use, storage, and disclosure. This includes: (a) any linked third party operating any site or service (the inclusion of a link does not imply endorsement of the linked site or service by us or by our affiliates); or (b) any app developer, app provider, social media platform provider, operating system provider, wireless service provider or device manufacturer.

Changes to this Privacy Notice

We may change this Privacy Notice from time to time as described in this section so it accurately reflects our practices and legal requirements. You should check back regularly to stay informed of our privacy practices.

The “Last Revised” section at the top of this Notice states when this Privacy Notice was last amended and we update this date each time a revision is posted. Any non-material changes to this Privacy Notice will become effective when we post the revised Privacy Notice subject to this section.

If any change to our Privacy Notice materially affects the use of your personal information, we use reasonable efforts to notify you in advance, such as by sending an email or posting a prominent notice of the changes, we will give you a reasonable period of time to object to any changes and we will seek affirmative consent if and where this is required by applicable data protection laws.

How to Contact Us

If you have questions or concerns about Intel’s privacy practices or to exercise any of your rights and choices as described in this Notice, you can contact us using any of the following methods:

1. For contingent workers that have access to Intel’s Intranet, you can contact Intel’s Privacy Office.
2. If you do not have access to Circuit, you may contact us through the Contact Usform on our website or by sending a letter in the US to the postal address listed below. Please include your contact information, name of the Intel Service or website, and a detailed description of your request or privacy concern.

   Intel Corporation
   ATTN: Privacy Office
   M/S RNB4-145
   2200 Mission College Blvd.
   Santa Clara, CA 95054 USA

Appendix for Contingent Workers in the European Economic Area (EEA)

If a contingent worker is providing services in the EEA, the Intel entity is responsible for handling the contingent worker’s personal information and the following sections supplement the Notice with additional information relevant under the EU General Data Protection Regulation (“GDPR”) and European national data protection laws.

Data Sharing – Intel Corporate Privacy Rules

For personal information originating in the European Economic Area (EEA) that is transferred to an Intel entity outside the EEA that does not have an “adequate level of protection” as determined by the European Commission, it does so on the basis of its approved binding corporate rules known as the Intel Corporate Privacy Rules (“Intel’s ICPR”). Intel’s ICPRs establish adequate protection of personal information and are legally binding on the subsidiaries and affiliates identified in Intel’s Deed Poll. Access Intel’s ICPR. Where Intel’s ICPR do not apply, we rely on other lawful measures, such as contracts that include the EU standard contractual clauses. Review the EU Standard Contractual Clauses on the European Commission’s website.

Data Protection Rights

Contingent Workers in the EEA can object to processing of their personal information, ask us to restrict processing of their personal information or request portability of their personal information. Where consent to the use of personal information has been obtained, it can be withdrawn at any time with future effect. Withdrawing consent will not affect (1) the lawfulness of any processing we conducted prior to the withdrawal, or (2) processing personal information under other legal bases. These rights can be exercised by making a written request in one of the ways described in the How to Contact Us section below.

Access a list of Intel affiliates and subsidiaries that receive personal information of individuals in the European Union.

If you believe we are using your personal information in a way that is inconsistent with this Privacy Notice or for more information about your rights, you may contact your local data protection authority (contact details for data protection authorities in the European Economic Area).

How to Contact Us

In addition to contacting Intel’s Privacy Office, contingent workers in the EEA may also contact us through our EU Data Protection Officer at the address/email set out below. Please include your contact information and a detailed description of your request or privacy concern.

Data Protection Officer
M/S: Intel Privacy Office
Intel Ireland Limited
Collinstown Industrial Park
Co Kildare
Ireland
W23 CX68

By Email: dataprotectionofficer@intel.com