Personnel Privacy Notice
SECTION I - INTRODUCTION
Brookfield is committed to compliance with applicable legal and regulatory requirements relating to data protection, privacy and cybersecurity as further set out in our Code of Business Conduct and Ethics. At Brookfield, we respect your privacy and this employee and personnel data protection policy and privacy notice (“Notice”) governs how Brookfield collects, processes and uses your Personal Data (defined below).
This Notice applies to all directors, officers, employees and temporary workers of Brookfield (“Personnel”). California residents, please click here to go directly to Annex A (California Privacy Rights).
For the purposes of applicable laws and regulations relating to data protection and privacy (“Data Protection Legislation”), where relevant the “Data Controller” in respect of your Personal Data (as defined below) is the Brookfield entity with which you work as a director, officer, employee or temporary worker. This Notice should be read in conjunction with your terms of employment or contract and other Brookfield policies and notices.
This Notice was last updated in May 2026.
SECTION II - DEFINITIONS
The following definitions shall apply to this Notice:
“Brookfield”, “we”, “us” ,“our” means the Brookfield Entity with which you work as a director, officer, employee or temporary worker.
“Brookfield Entity” means Brookfield Corporation, Brookfield Asset Management Ltd., Brookfield Wealth Solutions Ltd., Brookfield Business Partners LP, Brookfield Infrastructure Partners LP, Brookfield Property Partners LP, Brookfield Renewable Partners LP, and their respective wholly owned subsidiaries excluding operating and portfolio companies.
“Personal Data” has the meaning given to it or any similar term (e.g., “personal information,” “nonpublic personal information,” “PII,” “personally referable information”) in applicable Data Protection Legislation and for the avoidance of doubt includes any information which directly or indirectly identifies or otherwise relates to an individual, which is in the possession or under the control of Brookfield (or its representatives or service providers).
SECTION III - THE TYPES OF PERSONAL DATA WE COLLECT
In the course of your employment or contract with Brookfield, we must obtain Personal Data about you in order to administer your relationship with us, to perform the services we have been engaged by our clients to provide, and to comply with applicable law or policies. Such Personal Data includes:
a) Identity and Contact Data. We collect, where relevant, details of your name, age, date of birth, email address, address, telephone number, identification number, online identifier, location, gender, nationality, citizenship, other contact information, right to work status (including passport, driving license, birth or adoption certificate, work permit and residence permit), marital status, emergency contact details, qualifications, skills and work experience, details of previous compensation, benefits and terms of employment, and signature.
b) Payroll and tax data. We collect, where relevant:
• pension and superannuation details;
• the shares and options that you hold;
• payroll and tax documentation;
• your social insurance or Medicare or social security number or other tax identification number and details of tax residency; and
• details provided for the purposes of relocation assistance and the provision of certain benefits (including benefit membership numbers and visa details of you and your family).
c) Background and propriety data (with your consent where legally required). We collect, where relevant:
• if you are a regulated individual, details of your regulated status and role (including your fitness and propriety for the role);
• data collected during the course of carrying out anti-money laundering checks, know your client checks and company secretarial functions on behalf of Brookfield; and
• details of your suitability to work with us, your past performance at work, regulatory references, your character, your educational history including educational institutions attended, your qualifications (for example degrees, diplomas and professional licenses), details of your fitness to work verification of the information that you provide to us as part of your application, and if legally permitted, any history concerning criminal convictions and/or health checks, from third-party references that you provide to us, from your previous and/or current employers, opinions expressed by Brookfield and/or others about you and from third-party background checking services or a previous employer or other referee.
d) Employment Administration Data. We collect, where relevant:
• work-related details such as your job position, contact details, performance at work, absences, pay and benefits information, service history, a copy of your employment agreement, appraisals (including annual and interim reviews), disciplinary and training records; details of maternity/paternity/adoption/shared parental leave;
• corporate headshots, promotional photography, and biographies;
• to the extent you have been subject to a TUPE transfer, details of your terms and conditions with your previous employer; and
• information required as a result of legal, tax and regulatory requirements or internal policies.
e) Political Donation Data. If you are a US citizen or a lawfully permitted permanent US resident, we collect, where relevant, details of any US political donations made by you;
f) Health Data. (with your consent where legally required): We collect, where relevant, information about your health, including sickness absences, medical certificates; and
g) Internet or Other Electronic Network Activity Data. We collect, where relevant:
• data that we collect through various monitoring activities, including monitoring your use of our IT and email systems, access to our premises and other location monitoring, monitoring of personal account dealing, expenses, gifts and compliance; and
• data collected during the course of carrying out business activities (such as arranging travel bookings).
Please note that if you do not provide certain Personal Data to Brookfield when requested (and where relevant and permitted by Data Protection Legislation, provide your consent), we may not be able to continue to provide certain employment-related services to you. For more information on how Brookfield electronically monitors employee activity and collects Personal Data electronically, see Section XII.
SECTION IV - HOW WE COLLECT YOUR PERSONAL DATA
Brookfield may collect the types of Personal Data described above in Section III:
a) Directly from you, including, for example, through your use of Brookfield websites, when you send us an email, visit our premises, or otherwise contact or communicate with us;
b) From within Brookfield and from our affiliates;
c) From a third party acting on your or our behalf, for example an intermediary, lawyer or service provider;
d) From publicly available sources; and
e) From other organizations or individuals, for example previous employers, background check providers, employment references and pension providers.
SECTION V - HOW WE USE YOUR PERSONAL DATA
Your Personal Data will be collected, stored, disclosed and processed by Brookfield for the following purposes. Depending on your jurisdiction, these activities are done on the basis of your consent to this Notice and/or the following legal bases:
| Purpose | Data Categories (as defined above) | Legal Basis |
|---|---|---|
| To carry out pre-employment, background and related checks and to conduct due diligence (such as to verify the details that you provide and to ensure that you are suitable for the role for which you have applied), as determined by applicable laws. This may involve the use of a credit reference agency/credit bureau or other third parties acting as our agents to conduct these verifications and searches. We will also screen against publicly available government and/or law enforcement agency sanctions lists. | Identity and contact data. Background and propriety data.
| Our legal obligations to conduct background checks and propriety checks in relation to our Personnel. To the extent such checks are not required by law, our legitimate interests in ensuring that Brookfield Personnel are appropriate individuals. |
| For equal opportunity and diversity monitoring purposes. | Identity and contact data. | Where such monitoring is required by law, our legal obligations to undertake equal opportunity and diversity monitoring. Otherwise, our legitimate interests in ensuring that we maintain a diverse workplace. |
| To respond to your enquiries. | Identity and contact data. | Our legitimate interests in responding to your queries. |
| For the management and administration of our business, including human resources administration, IT systems administration, and business planning. | Identity and contact data. Payroll and tax data. Employment administration data. Health Data. Internet or Other Electronic Network Activity Data. | Our legitimate interests in managing our business including providing IT systems to our Personnel. |
| For the management and administration of our internal resources, including corporate photographs. | Employment administration data. Identity and contact data. | Our legitimate interests in managing our internal resources. Our legal obligations under Data Protection Legislation. |
| To promote our business across different platforms, including on our website, and jurisdictions and for different recipients, including investors, partners and potential employees. | Employment administration data. Identity and contact data. | Our legitimate interests in promoting our business. |
| To comply with and in order to assess compliance with applicable laws, rules and regulations (including tax reporting purposes pursuant to tax legislation), industry codes, voluntary codes we decide to adopt, or good practice, anywhere in the world and internal policies and procedures. | Identity and contact data. Background and propriety data. Payroll and tax data. Political contributions data. | Our legal obligations under applicable laws, including those laws relating to tax, money-laundering. Our legitimate interests in complying with industry codes and best practice. |
| To detect, investigate and prevent fraud and other crimes, breaches of company policy, or malpractice. | All data listed in this Notice. | Our legitimate interests in detecting and preventing fraud and other crimes or malpractice. |
| For the purpose of, or in connection with, any legal proceedings (including prospective legal proceedings), regulatory investigation, internal investigation, or similar assessment, and to obtain legal advice or to establish, exercise or defend legal rights. | All data listed in this Notice. | Our legal obligations to respond to any court or regulatory order. Our legitimate interests in bringing or defending ourselves against legal claims. |
| To manage our employment relationship with you (where applicable) and perform our obligations and exercise our rights under your contract of employment or other contract with Brookfield. For example, Brookfield will use your Personal Data to identify you, pay you, and to evaluate your individual performance, provide benefits in connection with your employment or contract or its termination, and, where applicable, administer your pension. | Identity and contact data. Payroll and tax data. Employment administration data. | Our legal obligations under applicable laws including employment law. Our legitimate interest in maintaining and administering our relationship with our Personnel. |
| In order to facilitate your career development and assess your performance. | Identity and contact data. Employment administration data. | Our legitimate interest in maintaining and administering our relationship with our Personnel, including supporting their career development and assessing their performance. |
| To contact you or your family in the event of an emergency and for business continuity purposes. | Identity and contact data. Health Data. | In order to protected the vital interests of our Personnel. Our legitimate interests in managing our business and ensuring business continuity. |
| To provide references to third parties upon request. | Identity and contact data. Professional and employment data. | Our legitimate interest in maintaining a relationship with our Personnel. |
| In order to assist you and your family with relocation (e.g., in relation to visa applications). | Identity and contact data. Payroll and tax data. Background and propriety data. | Our legitimate interest in maintaining an employment relationship with our Personnel. |
| To facilitate business transactions, including the sale or reorganization of all or part of our business. | All data listed above. | Our legitimate interests in undertaking business transactions. |
| To consider you for future roles at Brookfield. | Identity and contact data. Employment administration data. Background and propriety data. | Our legitimate interests in finding suitable candidates for open positions. |
Brookfield may also rely on alternative legal bases for processing of personal data to the extent permitted by Data Protection Legislation.
If you are located in a jurisdiction which requires us to obtain your consent to collect, use, store, process and disclose your Personal Data, you understand that, to the extent permitted by applicable law, by accepting the terms of this Notice you expressly provide your consent to Brookfield collecting, using, storing, processing and disclosing your Personal Data as set out in this Notice. Where we are required to obtain your consent, but are not permitted by Data Protection Legislation to obtain your consent by virtue of providing this Policy to you, we will endeavor to obtain your free, specific, unequivocal, and informed consent separately.
SECTION VI - SENSITIVE PERSONAL DATA
Certain forms of Personal Data, known as “sensitive” or “special category” personal data, are subject to specific protection or restriction by law in certain territories or regions, including the EU, the UK and China. This is because individuals may experience greater harm if this Personal Data is subject to unauthorized loss, disclosure or abuse. Depending on the jurisdiction, this data can include, but may not be limited to:
a) data relating to racial or ethnic origin;
b) political opinions;
c) religious, intellectual, political or philosophical beliefs;
d) trade union membership information;
e) genetic data;
f) biometric data;
g) data concerning health;
h) data concerning health or sex life or sexual orientation;
i) data relating to criminal activity or proceedings, including any criminal offenses and criminal convictions;
j) password and financial information such as bank account details, credit card and debit card details;
k) citizenship or immigration status;
l) government-issued identifiers such as social security numbers;
m) housing fund account number;
n) payroll and payroll information;
o) real property information;
p) tax information;
q) precise geolocation data; and
r) in certain circumstances, the contents of an individual’s mail, email or text messages.
We will not process your Sensitive Personal Data unless such processing is compliant with applicable Data Protection Legislation.
To the extent that we need to obtain your explicit consent to process your Personal Data, to the fullest extent permitted by law, when you provide your Personal Data to us you are deemed to have consented to us processing your Personal Data (including your Sensitive Personal Data) which includes disclosing your Personal Data (including your Sensitive Personal Data) to third parties as set out in Section VII below.
SECTION VII - DISCLOSURE OF YOUR PERSONAL DATA TO THIRD PARTIES
For the purposes described in the table above, Brookfield shares or provides access to your Personal Data among its affiliates and business units and third-party agents, service providers and contractors outside of Brookfield:
a) Business Management. For the purpose of the management and administration of Brookfield’s business (for example, Brookfield’s insurers);
b) Verification. In order to verify the information you have provided, including (without limitation) background check or identity verification service providers;
c) HR Functions. Complying with the functions that Brookfield may perform relating to HR decisions;
d) Provision of Services. For the purposes of providing you with and enhancing certain services, including by way of a third party, for example, travel tools which track your location or tax jurisdiction;
e) Database Management. For the purpose of the administration and maintenance of the databases storing Personal Data (for example, Brookfield’s cloud hosting providers and system development and support providers);
f) Vendor Services. For the purposes of Brookfield receiving services (for example, Brookfield’s accountants, administrators, auditors, service providers, custodians, depositories, third-party managers, paying agents, professional advisors such as consultants and legal advisors, HR support, event management vendors and caterers, IT and communications providers or any entity we reasonably consider necessary for the purposes outlined above). These third parties are expected to be subject to confidentiality requirements (either by contract, professional obligation, duty or otherwise) that require them to only use your Personal Data as described above;
g) System Protection. For the purpose of detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible; debugging to identify and repair errors that impair intended functionality;
h) Compliance with Law. To the extent required by law (for example, if Brookfield is compelled by an obligation or a duty to disclose your Personal Data where we believe it is necessary or appropriate to comply with any legal obligation, rule, regulations or internal Brookfield policies and procedures, including (without limitation) in order to comply with tax reporting requirements and other statutory reporting and disclosures to regulatory authorities), or to establish, exercise or defend its legal rights. This may include disclosure to regulatory bodies or government agencies, law enforcement or courts;
i) Communication. Where your Personal Data is held as part of an internal directory, enabling adequate communication with you by the employees or contractors of Brookfield, for the performance of employment or contractual duties or for emergency reasons;
j) ESG Reporting. For the purpose of monitoring and reporting equal opportunities and diversity statistics;
k) Business Transactions. As part of a transaction, financing, or for other business needs (for example, if Brookfield sells any of its businesses or assets, applies for a loan, or opens bank accounts, in which case Brookfield may need to disclose your Personal Data to the prospective buyer, lender or bank, as the case may be, as part of certain due diligence processes); or
l) Change of Control. If Brookfield or any of its affiliates, divisions or business units is acquired by a third party, including in the unlikely event of a bankruptcy, in which case the Personal Data held by Brookfield about you will be accessible to, and may be acquired by, the third-party buyer.
Brookfield may, to the extent permitted and in compliance with the applicable Data Protection Legislation, share anonymous or aggregated data with third parties such as service providers in order to facilitate our business operations. To the extent such data constitutes de-identified data under the California Consumer Privacy Act (“CCPA”), Brookfield will maintain the data in de-identified form and will not attempt to re-identify the data other than to confirm whether our de-identification process satisfies CCPA requirements.
During your employment or contract with Brookfield, we may process some of your Personal Data automatically for one or more of the purposes above, but we do not use computer algorithms to make automated decisions based on your Personal Data.
SECTION VIII - TRANSFERS OF PERSONAL DATA
Brookfield operates globally. This means Personal Data may be processed and disclosed as described above, in any jurisdiction in which we conduct business or have a service provider. Where your Personal Data is processed by third parties outside your jurisdiction, we will seek to ensure appropriate safeguards are in place to adequately protect it, as required by Data Protection Legislation. When you provide your Personal Data to Brookfield, you acknowledge and agree that we may disclose your Personal Data to recipients (including, but not limited to, service providers, Brookfield affiliates or agents, and Brookfield IT servers) located in jurisdictions other than your own, including, but not limited to, the following countries: Australia, Brazil, Canada, China, Hong Kong, India, Japan, Singapore, South Korea, UAE, UK, USA, Spain, Germany, Colombia, the Cayman Islands, Bermuda and Luxembourg. When your personal information is transferred to a jurisdiction other than your own, it may be subject to the law of that foreign jurisdiction, including any law permitting or requiring disclosure of the information to the government, government agencies, courts and law enforcement in that jurisdiction.
To the extent that applicable Data Protection Legislation does not allow or permit us to obtain your valid consent by virtue of providing this Notice to you, or otherwise rely on the other grounds set out in this Notice for disclosing your Personal Data outside of your jurisdiction, we will seek to obtain your explicit consent through other means (if necessary and applicable) and, where relevant, seek to ensure that the recipient is required to provide a standard of protection to your Personal Data that is equivalent to that under the Data Protection Legislation of your jurisdiction (e.g., by using standard contractual clauses for such international transfers).
SECTION IX - HOW WE SAFEGUARD YOUR PERSONAL DATA
Brookfield has implemented reasonable security measures, including commercially reasonable controls and appropriate technical and organizational measures designed to protect Personal Data, as well as to maintain the security of our information and information systems in respect of Personal Data. Files containing Personal Data are protected with safeguards according to the sensitivity of the information contained therein. Appropriate controls (such as restricted access) are placed on our computer systems and used where appropriate. Reasonable measures are taken to ensure physical access to Personal Data is limited to authorized employees.
Unauthorized use or disclosure of confidential information by Brookfield Personnel is prohibited and may result in disciplinary measures.
SECTION X - RETENTION AND DESTRUCTION OF PERSONAL DATA
The period for which Brookfield will hold your Personal Data will vary and will be determined by the following criteria:
a) The purpose for which Brookfield is using it. Brookfield is required to retain the Personal Data for as long as is necessary to satisfy or meet the purposes for which it was obtained including applicable legal or regulatory requirements;
b) Legal Obligations. Laws or regulations may set a minimum period for which Brookfield must retain your Personal Data; and
c) Legal Claims. Where applicable, Brookfield may retain certain Personal Data for a longer period to establish, exercise, or defend potential legal claims, taking into account relevant limitation periods under applicable law. We will regularly review the Personal Data it holds to ensure it is kept no longer than necessary and will securely delete or anonymize Personal Data when it is no longer required.
In general, this means that we will hold your Personal Data for the duration of your employment or engagement with us and then for a further seven years from the date your contract terminates, although this period may be longer in certain circumstances, where it is necessary for us retain your Personal Data beyond that period for a specific purpose.
Depending on the requirements of the Data Protection Legislation of your jurisdiction, Brookfield will take reasonable steps using appropriate technical methods in the circumstances to delete or destroy your Personal Data when we no longer have a legal basis to retain it or to ensure that the information is anonymized Electronic files containing Personal Data will be deleted. Any physical documents, records, printouts or any other recording media will be securely disposed of.
SECTION XI - YOUR RIGHTS
To the extent provided by the law of your jurisdiction, you may have legal rights in relation to the Personal Data about you that Brookfield holds. These rights may include:
a) the right to refuse to provide any Personal Data and the right to object at any time to the processing of your Personal Data. Please note that such refusal or objection may prevent us from employing or otherwise contracting with you, or providing certain Personnel-related services to you;
b) the right to confirm whether we process your Personal Data and to obtain information regarding the processing of your Personal Data and access to the Personal Data about you that Brookfield holds (including any available information as to the source of the Personal Data and any safeguards that may have been used to transfer Personal Data outside of your jurisdiction, as referred to in Section VIII above);
c) where consent was provided for certain processing activities, the right to withdraw your consent to the collection, processing, use and/or disclosure of your Personal Data at any time. Please note, however, that this will not affect the lawfulness of any collection, processing, use or disclosure undertaken before your withdrawal and that Brookfield may still be entitled to process your Personal Data if it has another legitimate reason (other than consent) or a consent exception for doing so. In some cases, withdrawing your consent to the collection, use, process or disclosure of some or all of your Personal Data may prevent us from employing or otherwise contracting with you, or providing certain Personnel-related services to you;
d) in some circumstances, the right to receive a copy of some Personal Data in a structured, commonly used and machine-readable format and/or request that Brookfield transmit that data to a third party where this is technically feasible. Please note that this right may, depending on the jurisdiction, only apply to Personal Data that you have provided to Brookfield;
e) the right to request that Brookfield complete, update, rectify or correct your Personal Data if it is inaccurate, outdated, incomplete or irrelevant;
f) in some circumstances, the right to request that Brookfield erase or delete your Personal Data. Please note that there may be circumstances where Brookfield is legally entitled to retain Personal Data regardless of any such request;
g) in some circumstances, the right to request that Brookfield restrict, anonymize or block its processing of your Personal Data. Please note that there may be circumstances where Brookfield is legally entitled to refuse that request;
h) in some circumstances, the right to obtain information about the public and private entities with which Brookfield made shared use of the Personal Data as a joint controller;
i) in some circumstances, the right to receive information on the possibility of not providing consent and on the consequences of the refusal;
j) in some circumstances, the right to non-discrimination against you for exercising your legal rights in relation to your Personal Data; and
k) where applicable, the right to lodge a complaint with the data protection regulator in your jurisdiction if you think that any of your rights have been infringed by Brookfield.
l) to request information concerning the measures that the overseas recipient of your Personal Data is taking to protect your Personal Data and its details, countries to which the relevant personal data is transferred, and the existence or non-existence of data protection legislation in the countries and the details thereof.
In some jurisdictions you may be entitled to access a copy of this Notice in another language.
You can enquire about your rights, which are applicable to you, by contacting Brookfield using the details listed below in Section XIV. If you wish to exercise any of the rights, which are applicable to you, when you contact Brookfield using the details listed below, you will be asked to complete a ‘Subject Access Request Form’.
SECTION XII - ELECTRONIC MONITORING POLICY
Where we have a lawful basis for doing so, and in accordance with applicable law and regulation, we collect information through electronic monitoring of employees from time to time. In addition to the applicable reasons set out in Sections V and VII above, these reasons include:
a) protecting the integrity of our network and communications equipment against computer viruses, damage to software or hardware, loss of documents or information, and protecting against excessive telephone or computer usage;
b) protecting against unauthorized access or disclosure of our information, systems, data, proprietary information, or employee and third-party personal information in our control;
c) protecting employees against discriminatory, harassing or violent behavior from co-workers or third parties;
d) monitoring employee compliance with our policies and procedures, and applicable law;
e) finding lost messages or data, or to retrieve messages lost due to technological failures; and
f) investigating or assisting in investigation of alleged or potential wrongdoing or violations of our policies (including in connection with litigation).
To achieve these and related purposes, we may, at any time access, intercept or review any information created on, transmitted to, received, printed from, stored or recorded on or in our communications and other technological equipment and systems (including computers and mobile devices). Electronic monitoring may include, without limitation, the review or tracking of:
a) transactions, messages, communications, postings, log-ins, recordings and other uses of our communications systems and equipment;
b) system access using our communication and other equipment;
c) websites visited on our systems or phone calls made using our communications equipment;
d) any creation, modification, transmission or deletion of files using our communications or other equipment;
e) any installation, removal or alteration of software or hardware on our communications or other equipment; and
f) employee access to our offices and networks, including through video surveillance, key card swipe logs and system/VPN logins.
SECTION XIII - QUESTIONS AND CONCERNS
If you have any questions or concerns about Brookfield’s handling of your Personal Data, or about this Notice, please contact our Privacy Officer using the contact information set out below.
We are typically able to resolve privacy questions or concerns promptly and effectively. If you are not satisfied with the response you receive from our Privacy Officer, depending on your jurisdiction, you may have the option to escalate concerns to the applicable privacy regulator in your jurisdiction, the details of which can be obtained from the Privacy Officer.
SECTION XIV - BROOKFIELD PRIVACY OFFICE CONTACT INFORMATION
To contact our Global Data Protection Office or to exercise any of your data privacy rights, please email PrivacyOfficer@Brookfield.com.
ANNEX A – CALIFORNIA PRIVACY RIGHTS
If you are a California resident, this section of the Notice is intended to provide you with information concerning our collection and use of your Personal Data in accordance with the California Consumer Privacy Act (“CCPA”) regarding Personal Data (referred to as “Personal Information” under the CCPA and throughout this Annex A). This Notice is available in alternative formats upon request. Please contact PrivacyOfficer@Brookfield.com or 1-833-681-0340 to request this Notice in an alternative format.
Our Collection, Use, Retention and Disclosure of Personal Information.
Sales and Sharing of Personal Information. In the preceding twelve (12) months, we have not, sold any categories of Personal Information subject to this Notice to third parties or shared any categories of Personal Information subject to this Notice for the purpose of cross-context behavioral advertising. We do not knowingly sell or share any categories of Personal Information from individuals under the age of sixteen (16).
Collection of Personal Information. In the preceding twelve (12) months, we have collected and used the following categories of Personal Information::
a) Identifiers, including Identity and Contact Data, such as name, contact information;
b) Demographic information, such as gender;
c) Recordkeeping information, such as Social Security number or driver’s license number;
d) Professional and Employment Data, including your job position and previous compensation;
e) Health Data;
f) Internet or Other Electronic Network Activity Data; and
g) Other information about you that is linked to the Personal information above, such as Political Donation Data, as described in Section III of the Notice, “The Types of Personal Data We Collect.”
Some of the information we collect may be considered “sensitive” Personal Information under the CCPA, such as social security numbers, driver’s license numbers or passport numbers, and Health Data. To the extent we collect Sensitive Personal Information, we do not use or disclose such information for purposes other than those specified in the CCPA.
Sources of Personal Information. In the preceding twelve (12) months, we collected the Personal Information described above from the categories of sources described in Section IV of the Notice, “How We Collect Your Personal Data.”
Use of Personal Information. In the preceding twelve (12) months, we used the Personal Information described above for our business purposes as described in Section V of the Notice, “How We Use Your Personal Data,” and Section VII of the Notice, “Disclosure of Your Personal Data to Third Parties.”
Sharing of Personal Information. In the preceding 12 months, we shared the categories of Personal Information described above for the business purposes described above to the following categories of third parties, as further described in Section VII of the Notice, “Disclosure of Your Personal Data to Third Parties”:
a) Brookfield’s affiliates and business units;
b) Service providers, contractors, advisors and others who provide services to us or on our behalf;
c) Professional services organizations, such as auditors, tax advisors and law firms;
d) Prospective lenders to or creditors of an entity in which we have or are considering investing; and
e) Government entities, including regulatory agencies and law enforcement.
Your California Privacy Rights.
Your CCPA Privacy Rights. You have certain rights over your Personal Information, as described below.
a) Know. You have the right to request that we provide (1) certain information about: (w) the categories of Personal Information we have collected about you; (x) the categories of sources from which the Personal Information is collected; (y) the business or commercial purpose for collecting your Personal Information; and (z) the categories of third parties to whom we have disclosed your Personal Information; and/or (2) the specific pieces of Personal Information we have collected, used, and disclosed about you during the past 12 months.
b) Deletion. You have the right to request that we delete certain Personal Information we have collected from you and to tell our service providers to do the same, subject to certain exceptions.
c) Correction. You have the right to request that we correct or amend certain Personal Information we maintain about you if it is inaccurate.
d) Non-Discrimination. You have the right to not experience discriminatory treatment and we will not discriminate against you because you have exercised any California privacy rights. We do not use the fact that you have exercised or requested to exercise any CCPA rights for any purpose other than facilitating a response to your request.
The third parties to whom we may disclose Personal Data, including Sensitive Personal Data, are set forth in Section 6 and the sources from which we receive Personal Data, including Sensitive Personal Data, are set forth in Section 3. Our business or commercial purposes for collecting and using Personal Data, including Sensitive Personal Data, are set forth in Section 4.
How to Submit a Request. You may submit a request by using one of the following methods.
Call: 1-833-681-0340
Email us: PrivacyOfficer@Brookfield.com
Website: Click here
Verifying Your Requests. To help protect your privacy and maintain security, we will take steps to verify your identity before granting you access to your Personal Information or complying with your request. If we are successful in validating your identity, we will respond to your request within the time and in the manner required by the CCPA. If we are unable to verify your identity, we will need to deny your request. We reserve the right to deny requests in certain circumstances, such as where we have a reasonable belief that the request is fraudulent.
a) Individual Verification. If you request to know, access, delete, and/or correct your Personal Information, we may require you to provide any of the following information: address, date of birth, state or country of residence, telephone number, email address, or details of a transaction. In addition, if you ask us to provide you with specific pieces of Personal Information, we may require you to sign a declaration under penalty of perjury that you are the consumer whose Personal Information is the subject of the request. We will use the information you submit and the Personal Information we have in our systems to try to verify your identity and to match the Personal Information we have collected about you, if any, to your identity.
b) Authorized Agent. If you designate an authorized agent to make an access or deletion request on your behalf, we may require you to ( 1 ) provide the authorized agent written permission (e.g., via a notarized letter) to do so, and ( 2 ) verify your own identity directly with us (as described above), and confirm with us that you provided the authorized agent permission to submit the request.
