|
Privacy Notice concerning our
SailPoint IdentityNow (IDN)
Data Processing Activity
(Boeing Data Processing Activity ID Number: 7793)
The Boeing Company and its group of companies seek to maintain the privacy, accuracy, and
confidentiality of personal data that we collect and use.
We have established privacy and security measures
both internally and (where applicable) in our relations with third parties to safeguard
personal information in our data processing activities.
We hope that
the following questions and answers addressing privacy issues
related to our "SailPoint IdentityNow (IDN)"
data processing activity are as concise, transparent, and
intelligible as possible. We welcome
your suggestions for improvement of any of the content presented
below.
|
Question |
Answer |
| What
corporate entity determines the purposes and means of processing of the personal data in this activity?
(This
is the "Controller" under the EU General Data Protection Regulation and other applicable
laws.) |
The
Boeing Company |
| Who
represents this entity with regard to privacy issues? |
The Boeing Global Privacy Office is responsible
for privacy issues related to this activity.
Contact information for the Boeing Global Privacy Office
appears below this table.
(The Boeing Global
Privacy Office will route issues to the appropriate Data
Protection Officer where applicable.)
|
| What
other entity may process this personal
data on behalf of
The
Boeing Company (including its fully integrated
subsidiaries around the globe)?
(This
is the "Processor" under the EU General Data Protection Regulation and other applicable
laws.) |
SailPoint Technologies Inc. |
| Whose
personal data is intended to be processed by this
activity? |
This
activity is intended to process the personal information
of:
-
Employees
- Contract Labor
- Subsidiary Employees
- Customers
- Retirees
- Former Employees
- Non-Boeing Individuals with BEMS IDs (consultants,
purchased services, suppliers, etc.)
It is not intended to process the personal
information of individuals in other categories. |
| What
categories of personal data are processed by this
activity? |
Personal Information: First name, middle name, last name, BEMSID, work location, organization, job title, company, Supervisor’s Name, Jobcode (without level), Job title, Accounting code, Department Name, HR code, Mailcode, Work telephone or mobile phone numbers, Work location, ODA Unit role, employment start date |
| What
are
the purposes of
processing personal data in this activity? |
Personal information is used to enable the provisioning, deprovisioning, and access certifications for computing accounts, application access. |
| What is
the legal basis for processing personal data in this
activity? |
Processing
is necessary for purposes of legitimate interests
pursued by
The Boeing Company:
|
| Who are
the recipients of the personal data in this activity? |
The recipients of the personal data in this activity may include Boeing Identity and Access Management employees, contractors, and consultants.
Names and BEMIDs will be available in access certification reports accessible to access focals and certification managers. |
| In what
countries will the personal data be processed? |
The personal information may be used by business processes based in every country in which Boeing has HR operations.
The personal information will only be stored in the United States.
|
| How long
will the personal data be retained by this activity? |
The retention period for personal information within this activity will be at least 5 years defined by the Records & Information Management Program (as required by PRO-251). |
|
What specific privacy rights may the individuals whose
personal data is processed by this activity have, and
how can they be exercised? |
Anyone may have the right to
lodge a complaint with a
supervisory authority (https://boeing.com/privacy/authorities.html).
Depending upon the jurisdiction(s)
in which you live or work, you may have the
following additional rights:
- to request access to and
rectification or erasure of personal data or
restriction of processing
- to object to processing
- to data portability
- to not be subject to a
decision based solely on automated processing
which produces legal effects concerning you or similarly affects
you
If not offered as a
self-service capability within the "SailPoint IdentityNow (IDN)"
data processing activity or otherwise addressed in
another answer above, any applicable privacy rights
may be exercised using
https://boeing.com/privacy/rightsexerciseportal. |
If you have questions or
concerns about privacy issues associated with our "SailPoint IdentityNow (IDN)"
data processing activity, you may contact the
Boeing Global Privacy Office by:
You
may use
https://boeing.com/privacy/rightsexerciseportal to exercise any
applicable privacy rights for which a self-service capability has
not been offered within the "SailPoint IdentityNow (IDN)"
data processing activity
or for which other specific instructions do not appear above.
For customers and visitors to our web sites: This notice supplements
the
Boeing Privacy and Cookie Statement.
For employees, contract labor, retirees, and subsidiary employees: This notice
supplements the
Boeing Employee Privacy Notice.
Boeing will periodically review and update
the content of this notice at its discretion.
It was last updated
2025-07-16 23:11:15
(UTC).
|
