Any disclosure of your private data must be approved by you prior to Charter sharing the data. Privacy policies or other specific instructions or requirements for handling private data are communicated to third parties to whom private data is disclosed.
Private data is disclosed to third parties only for the purposes for which it was collected or created and only when implicit or explicit consent has been obtained from the data subject unless a law or regulation specifically requires otherwise.
Private data is disclosed only to third parties who have agreements with the entity to protect private data in a manner consistent with the relevant aspects of the entity’s privacy notice or other specific instructions or requirements. The entity has procedures in place to evaluate that the third parties have effective controls to meet the terms of the agreement, instructions, or requirements.
Private data is disclosed to third parties for new purposes or uses only with the prior implicit or explicit consent of data subjects.
Charter creates and maintains a record of disclosures of private data that is complete, accurate, and timely and includes the types of private data and sensitive private data and the related processes, systems, and third parties involved in the handling of such information are identified.
Charter has procedures in place to evaluate that the third parties have effective controls to meet the terms of the agreement, instructions, or requirements and takes remedial action in response to misuse of private data by a third party to whom the entity has transferred such information.
Charter Incident Response Policy provides the processes for providing notice of breaches and incidents to affected data subjects, regulators, and others to meet the entity’s objectives related to privacy.
