Due to the global nature of Marriott operations, Marriott may share Personal Data with personnel and departments throughout Marriott to fulfill the purposes described at the end of this Statement. This may include transferring Personal Data to other countries or regions (including countries or regions other than where you are based that have a different data protection regime than is found in the country where you are based). A list of the Marriott Group affiliated companies that may process and use Personal Data is available here.
Access to Personal Data within Marriott will be limited to personnel with a business need to know the data, as per our policies, for the purposes described at the end of this Statement, and may include your managers and their designees, personnel in Human Resources, Information Technology, Compliance, Legal, Finance and Accounting and Internal Audit.
All personnel within Marriott will generally have access to your business contact data such as name, position, business telephone numbers, business postal address and business email address.
From time to time, Marriott may need to make Personal Data available to owners of Marriott Group branded properties that we manage or other unaffiliated third parties.
In some countries, owners may be employers of record. Owners therefore need access to limited Personal Data for compliance with their own legal obligations and for accounting and recordkeeping purposes. Owners are independently responsible for the processing of the Personal Data.
For a list of the categories of unaffiliated third parties, please see the end of this Statement. Some of the owners and unaffiliated third parties will be located outside of your home jurisdiction, including in the United States. Third party service providers and owners are expected to protect the confidentiality and security of Personal Data, and only use Personal Data for the provision of services to Marriott, or in accordance with agreements with our owners, and in compliance with applicable law.