The 2016/679 Regulation (EU) of 27 April 2016, the General Data Protection Regulation (GDPR), defines personal data such as: all information relating to an identified or identifiable individual; an identifiable individual is a person who can be identified directly or indirectly, including by reference to an identifier such as a name, identification number, online identifier or one or more factors specific to that individual`s physical, physiological, genetic, intellectual, economic, cultural or social identity. CenturyLink has customers in more than 60 countries, including multinational organizations that use our services around the world. For us, the RGPD is not a purely European affair, but an important data protection standard for our customers who operate in the EU and beyond their borders. Although centuryLink is located in the United States, it recognizes the need to meet regional requirements and offer global solutions to our customers. The RGPD requires interdependence and cooperation between customers and service providers, and we believe these requirements will strengthen our relationships with our clients. CenturyLink is committed to complying with the rules of the RGPD and data protection in general. To ensure that our services and customer support match our customers` own compliance efforts, we have an RGPD compliance program that uses our robust security, privacy and compliance infrastructure. Whether or how much centuryLink personal data can be returned or destroyed depends on the functionality of the product`s data processing. For example, we do not have access to the content of messages or other information that travels, records, saves, memorizes or processes on our network, so we cannot return copies of that data. Learn how consumers around the world perceive privacy and data protection rules. CenturyLink will provide infringement notifications to all of our potential breaches customers, in accordance with the legal provisions and violations agreed with our customers.

In case of suspected injury, CenturyLink takes the following steps: For more information, see: privacy.cisco.com/ CenturyLink`s access to injury-affected information, including specific data and the individuals involved, varies from product to product. As a result, the amount of information contained in injury notifications varies accordingly. CenturyLink conducted an audit of our products to assess their potential for processing personal data. In addition, we are committed to regularly reviewing our products for this purpose. In most cases, CenturyLink does not have access to personal data, including data that is transferred, stored, hosted or processed by a customer`s use of our product features. Whenever necessary and consistent with the nature of our services, we help our clients meet their obligations under the RGPD. CenturyLink has launched a comprehensive RGPD compliance initiative, led by a multi-functional team with members of our legal and information security services. The team worked with external experts and representatives from all of our divisions to evaluate and process CenturyLink`s commitments in accordance with the RGPD. CenturyLink management has fully supported these efforts and is committed to our compliance with the RGPD. Cisco processes, uses and protects personal data in accordance with all applicable data protection laws, including the European Union`s General Data Protection Regulations (GDPR). CenturyLink`s corporate services rarely, if ever, require direct contact between CenturyLink and people affected by the RGPD.