PRIVACY SHIELD WEBSITE MATERIALS
KBR, INC. and KBRwyle
CERTIFYING TO THE E.U.-U.S. PRIVACY SHIELD FRAMEWORK
The following paragraph (and header) will be included in the Company's Website Privacy Statement:
E.U.-U.S. PRIVACY SHIELD WEBSITE PRIVACY STATEMENT
As further described in KBR's Privacy Shield Notice [hyperlink], KBR, Inc., and KBRwyle, have certified to and comply with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of human resource personal information transferred from the European Union and/or European Economic Area to the United States. The Privacy Shield principles to which they adhere for that personal data are: Notice; Choice (Consent); Accountability for Onward Transfer; Security; Data Integrity and Purpose Limitation; Access; and Recourse, Enforcement and Liability. To learn more about the Privacy Shield program, and to view our certification, please visit
The following notice will also be available through the Company's Website (i.e., via the toolbar at the bottom of each page of the website, a well as hyperlinked through the Privacy Shield website commitment paragraph within the Website Privacy Statement (as referenced above):
E.U.-U.S. PRIVACY SHIELD WEBSITE NOTICE
This Privacy Shield Notice is provided by KBR, Inc. and KBRwyle in relation to their certification to the E.U.-U.S. Privacy Shield framework.
KBR's Privacy Shield
KBR, Inc. and KBRwyle have certified their adherence to, and comply with, the E.U.-U.S. Privacy Shield framework as set forth by the U.S. Department of Commerce, with respect to the collection, use, and retention of human resource personal information transferred from the European Union to the United States.
For purposes of their Privacy Shield certification, human resource personal information includes personal data pertaining to KBR, Inc. and/or KBRwyle employees, exited employees, retirees, temporary personnel, interns, and job applicants.
Privacy Shield Principles
KBR, Inc. and KBRwyle commit to uphold the Privacy Shield principles and surrounding requirements of the E.U.-U.S. Privacy Shield framework, for all human resource personal data under their possession or control which pertains to E.U. individuals. The Privacy Shield principles are: Notice; Choice (Consent); Accountability for Onward Transfer; Security; Data Integrity and Purpose Limitation; Access; and Recourse, Enforcement and Liability. For more information on the E.U.-U.S. Privacy Shield or to view our certification, please visit
KBR, Inc. and KBRwyle process human resource personal data of E.U. individuals in connection with offering employment to those individuals, human resource administration, and related legal, compliance, regulatory, financial and accountability purposes.
Third Party Transfers
KBR, Inc. and KBRwyle entrust certain personal data pertaining to E.U. individuals to third-party partners who assist with our business activities or who have regulatory or legal oversight responsibilities in relation to our business activities. We take steps to ensure that the third parties entrusted with E.U. personal data uphold an equivalent level of protection for the data, and also understand that we can be held responsible if our business partners entrusted with E.U. personal data violate those obligations.
Disputes and Resolution
In compliance with the Privacy Shield principles, KBR, Inc. and KBRwyle commit to resolve complaints about their collection or use of E.U. human resource personal data. E.U. individuals with inquiries or complaints regarding our Privacy Shield policies or practices should first contact us by writing to us at: KBR Privacy Shield Program, Legal Department, 601 Jefferson St., Houston, Texas USA 77002. In accordance with our Privacy Shield commitment, we have adopted dispute resolution practices that are designed to evaluate and resolve any complaints or concerns about your privacy and our collection or use of E.U. personal data within thirty (30) days of receipt.
KBR, Inc. and KBRwyle further commit to cooperate with the E.U. supervisory authorities and comply with the advice given by those authorities with regard to unresolved Privacy Shield complaints, including those concerning human resources data transferred from the E.U. in the context of the employment relationship. If E.U. individuals do not receive timely acknowledgment of their complaint, or if we have not addressed a complaint to the individual's satisfaction, they may contact the E.U. supervisory authorities for additional information or assistance, or to file a complaint. The services of E.U. supervisory authorities are provided at no cost to individuals. You may contact us at the address above for help in identifying the relevant supervisory authority.
Regulatory Oversight and Enforcement
In connection with their Privacy Shield certification, KBR, Inc. and KBRwyle are also subject to investigatory and enforcement authority of the U.S. and E.U. agencies who oversee the Privacy Shield framework, namely the U.S. Federal Trade Commission and the relevant E.U. supervisory authorities.
Right to Binding Arbitration
In accordance with the Privacy Shield framework, E.U. individuals may be able to invoke binding arbitration before a Privacy Shield Panel if they believe that their claim has not been handled by KBR, Inc. and/or KBRwyle in a satisfactory manner.
Rights of Individuals to Access Their Data
E.U. individuals have the right to access personal information about them, and to limit use and disclosure of their personal information. With its Privacy Shield certification, KBR, Inc. and KBRwyle commit to respect and uphold those rights. Should you wish to exercise those rights, the company requests that you contact us at: KBR Privacy Shield Program, Legal Department, 601 Jefferson St., Houston, Texas USA 77002. Please note that there are certain limitations on these rights, as described in the Privacy Shield framework.
Law Enforcement Requests
KBR, Inc. and KBRwyle are required to disclose personal information in response to lawful requests by public authorities, including compliance with national security or law enforcement requirements.