Last Update: July seventeenth twenty twenty six
This Privacy Notice explains how Bank of America (under legal entity Bank of America, N A) collects, uses, shares and protects personal information for distribution of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
This Privacy Notice is in addition to other privacy notices related to products and services that the bank provides to clients and individuals.
Personal Information is information that identifies or relates to an identifiable individual. Please refer to Appendix A to see the Personal Information we may collect in relation to the distribution of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
You provide Personal Information to us in order to receive market research, financial materials, press releases, and S E C filings. We also receive Personal Information from third party service providers or obtain it through public sources where you have made it available for us to interact with members of the media. Please refer to Appendix A for additional information.
To the extent permitted by applicable law and as appropriate to achieve the purposes described in this Notice, Personal Information may be disclosed by the Company as follows:
The Company maintains appropriate technical and organizational measures designed to protect against unauthorized or unlawful processing of Personal Information and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage to Personal Information.
We will retain Personal Information for as long as it is needed or permitted in light of the purposes for which it was obtained. The criteria used to determine our retention periods include: item one the length of time we have an ongoing relationship with you, item two whether there is a legal claim or complaint to which we are subject; and item three whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations, or a preservation order, subpoena or search warrant).
The appropriate retention period is determined on a case-by-case basis and will depend upon the length of time we need to keep your Personal Information for the purpose(s) for which it was collected. For instance, we may need to retain your Personal Information to provide our client(s) with services, to comply with a legal obligation to which we are subject or in situations where retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations). The retention period may vary between jurisdictions.
We keep information collected using Cookies in accordance with the Cookie Policy (PDF).
We do not solicit individuals under the age of eighteen (18) and we do not knowingly collect Personal Information from individuals under 18.
If you are sharing information on behalf of another individual, please provide them with a copy of this Notice. When you provide us with Personal Information about members of their family, dependents or friends (for example, individuals provided by a customer as a guarantor), it is your responsibility to inform such individuals and obtain agreement that their information can be shared with us. Should the individual have any questions, please refer them to the Contact Us section in this Notice. By disclosing Personal Information about others to us in connection with our Services, you represent that you have the authority to do so and permit us to use the information in accordance with this Notice.
To the extent permitted by applicable laws and regulations or otherwise allowed by regulators, Personal Information may be stored and processed in any country/territory where we have facilities or in which we engage service providers, including the United States. In certain circumstances, subject to applicable laws, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries/territories may be entitled to access Personal Information.
Where local data protection law requires it we have put in place adequate measures, such as data transfer agreements. Where permitted by applicable laws and regulations or otherwise allowed by regulators, transfers may also be made pursuant to contracts in your interest or at your request.
Given the global nature of the Company’s activities, the Company may transfer your Personal Information to countries located outside of the European Economic Area (“E E A”), the United Kingdom or Switzerland. With regards to transfers from the E E A, United Kingdom or Switzerland to other countries, we have put in place adequate measures, such as standard contractual clauses adopted by the European Commission to protect your information. Where necessary we added the United Kingdom S C C addendum (for transfers from United Kingdom) and/or additional clauses for Switzerland (for transfers from Switzerland). Media and investor contacts in the E E A, United Kingdom or Switzerland may obtain a copy of these measures by going to https://commission.europa.eu/law/law-topic/data-protection_en
Where countries are considered adequate by the European Union, United Kingdom and Switzerland respectively, we rely on this adequacy decision as a safeguard. Countries that are subject to an adequacy decision can be found on the links below.
Individuals may also file a complaint with a supervisory authority competent for their relevant country or region. A list of data protection authorities in the E E A is available at: http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080. The data protection authority in the United Kingdom is the Information Commissioners Office (the I C O) and in Switzerland it’s the Federal Data Protection and Information Commissioner (F D P I C).
We may change this Privacy Notice from time to time. The “LAST UPDATED” legend at the top of the Privacy Notice indicates when it was last revised. Any changes will become effective when we post the revised Privacy Notice and will apply to the use of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
Keeping your Personal Information accurate and up to date is very important. If your Personal Information is incomplete, inaccurate, or not current, you may be able to make changes to your information directly in the platforms. You can also notify us of the need for changes in accordance with the “Contacting Us” section below. Depending on the jurisdiction, you may have legal rights under applicable laws which may be subject to limitations and/or restrictions. For further details of which rights you may have, please see the “individual rights” section in your local privacy notice available at Global Privacy Notices (B of A dot com). These rights may include:
To make a request or inquire about such rights, please send an email to the appropriate address from the “Contacting Us” section below and include “Attn: Privacy” in the subject line. In your request or complaint, please make clear what information you are inquiring about, as well as the nature of your request (such as whether you would like to access or correct the data) or details of your complaint. For your protection, we may implement requests with respect to only the information associated with the email address you use to send us your request or other agreed-upon identifier, and we may need to verify your identity before implementing your request.
Please note that we may need to retain certain Personal Information for recordkeeping purposes or where required by applicable law. There may also be residual information that will remain within our databases, backups, and other records that cannot be removed.
Should you have any questions, concerns or complaints about this Notice, please contact the Data Protection Officer using the contact details below.
Individuals may also file a complaint with a supervisory authority for their relevant country or region.
The table below contains the purpose for which we may process your personal information, the types of processing activities that may take place and the category of personal information that would be used for such processing as well as the legal basis for the processing.
| Purpose | Examples of Processing Activities | Personal Information Categories | Legal Basis |
|---|---|---|---|
| Media and investor relations |
|
Personal Details: Name Professional Details: company name Contact Information: Postal address, Email address, Phone number |
Consent - To obtain consent to use data for media and investor relations activities. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal. |
| Categories of third parties | Personal Data | Purpose of processing your Personal Information | Destination Countries |
|---|---|---|---|
| Media and investor relations vendors | Personal Details: Name Professional Details: Company name Contact Information: Postal address, Email address, Phone number |
For use in providing market research, financial materials, press releases, and S E C filings, or engaging with media and investor contacts | Globally where we have a presence |
Last Update: July seventeenth twenty twenty six
This Privacy Notice explains how Bank of America (under legal entity Bank of America, N A) collects, uses, shares and protects personal information for distribution of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
This Privacy Notice is in addition to other privacy notices related to products and services that the bank provides to clients and individuals.
Personal Information is information that identifies or relates to an identifiable individual. Please refer to Appendix A to see the Personal Information we may collect in relation to the distribution of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
You provide Personal Information to us in order to receive market research, financial materials, press releases, and S E C filings. We also receive Personal Information from third party service providers or obtain it through public sources where you have made it available for us to interact with members of the media. Please refer to Appendix A for additional information.
To the extent permitted by applicable law and as appropriate to achieve the purposes described in this Notice, Personal Information may be disclosed by the Company as follows:
The Company maintains appropriate technical and organizational measures designed to protect against unauthorized or unlawful processing of Personal Information and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage to Personal Information.
We will retain Personal Information for as long as it is needed or permitted in light of the purposes for which it was obtained. The criteria used to determine our retention periods include: item one the length of time we have an ongoing relationship with you, item two whether there is a legal claim or complaint to which we are subject; and item three whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations, or a preservation order, subpoena or search warrant).
The appropriate retention period is determined on a case-by-case basis and will depend upon the length of time we need to keep your Personal Information for the purpose(s) for which it was collected. For instance, we may need to retain your Personal Information to provide our client(s) with services, to comply with a legal obligation to which we are subject or in situations where retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations). The retention period may vary between jurisdictions.
We keep information collected using Cookies in accordance with the Cookie Policy (PDF).
We do not solicit individuals under the age of eighteen (18) and we do not knowingly collect Personal Information from individuals under 18.
If you are sharing information on behalf of another individual, please provide them with a copy of this Notice. When you provide us with Personal Information about members of their family, dependents or friends (for example, individuals provided by a customer as a guarantor), it is your responsibility to inform such individuals and obtain agreement that their information can be shared with us. Should the individual have any questions, please refer them to the Contact Us section in this Notice. By disclosing Personal Information about others to us in connection with our Services, you represent that you have the authority to do so and permit us to use the information in accordance with this Notice.
To the extent permitted by applicable laws and regulations or otherwise allowed by regulators, Personal Information may be stored and processed in any country/territory where we have facilities or in which we engage service providers, including the United States. In certain circumstances, subject to applicable laws, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries/territories may be entitled to access Personal Information.
Where local data protection law requires it we have put in place adequate measures, such as data transfer agreements. Where permitted by applicable laws and regulations or otherwise allowed by regulators, transfers may also be made pursuant to contracts in your interest or at your request.
Given the global nature of the Company’s activities, the Company may transfer your Personal Information to countries located outside of the European Economic Area (“E E A”), the United Kingdom or Switzerland. With regards to transfers from the E E A, United Kingdom or Switzerland to other countries, we have put in place adequate measures, such as standard contractual clauses adopted by the European Commission to protect your information. Where necessary we added the United Kingdom S C C addendum (for transfers from United Kingdom) and/or additional clauses for Switzerland (for transfers from Switzerland). Media and investor contacts in the E E A, United Kingdom or Switzerland may obtain a copy of these measures by going to https://commission.europa.eu/law/law-topic/data-protection_en
Where countries are considered adequate by the European Union, United Kingdom and Switzerland respectively, we rely on this adequacy decision as a safeguard. Countries that are subject to an adequacy decision can be found on the links below.
Individuals may also file a complaint with a supervisory authority competent for their relevant country or region. A list of data protection authorities in the E E A is available at: http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080. The data protection authority in the United Kingdom is the Information Commissioners Office (the I C O) and in Switzerland it’s the Federal Data Protection and Information Commissioner (F D P I C).
We may change this Privacy Notice from time to time. The “LAST UPDATED” legend at the top of the Privacy Notice indicates when it was last revised. Any changes will become effective when we post the revised Privacy Notice and will apply to the use of market research, financial materials, press releases, and S E C filings, as well as general interaction with the media and investors.
Keeping your Personal Information accurate and up to date is very important. If your Personal Information is incomplete, inaccurate, or not current, you may be able to make changes to your information directly in the platforms. You can also notify us of the need for changes in accordance with the “Contacting Us” section below. Depending on the jurisdiction, you may have legal rights under applicable laws which may be subject to limitations and/or restrictions. For further details of which rights you may have, please see the “individual rights” section in your local privacy notice available at Global Privacy Notices (B of A dot com). These rights may include:
To make a request or inquire about such rights, please send an email to the appropriate address from the “Contacting Us” section below and include “Attn: Privacy” in the subject line. In your request or complaint, please make clear what information you are inquiring about, as well as the nature of your request (such as whether you would like to access or correct the data) or details of your complaint. For your protection, we may implement requests with respect to only the information associated with the email address you use to send us your request or other agreed-upon identifier, and we may need to verify your identity before implementing your request.
Please note that we may need to retain certain Personal Information for recordkeeping purposes or where required by applicable law. There may also be residual information that will remain within our databases, backups, and other records that cannot be removed.
Should you have any questions, concerns or complaints about this Notice, please contact the Data Protection Officer using the contact details below.
Individuals may also file a complaint with a supervisory authority for their relevant country or region.
The table below contains the purpose for which we may process your personal information, the types of processing activities that may take place and the category of personal information that would be used for such processing as well as the legal basis for the processing.
| Purpose | Examples of Processing Activities | Personal Information Categories | Legal Basis |
|---|---|---|---|
| Media and investor relations |
|
Personal Details: Name Professional Details: company name Contact Information: Postal address, Email address, Phone number |
Consent - To obtain consent to use data for media and investor relations activities. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal. |
| Categories of third parties | Personal Data | Purpose of processing your Personal Information | Destination Countries |
|---|---|---|---|
| Media and investor relations vendors | Personal Details: Name Professional Details: Company name Contact Information: Postal address, Email address, Phone number |
For use in providing market research, financial materials, press releases, and S E C filings, or engaging with media and investor contacts | Globally where we have a presence |