Privacy Policy Requirements

As part of the application process for BBB National Programs Data Privacy Framework Services, a draft of your organization’s privacy policy must be made available for our review and approval before we can confirm your company's participation. The privacy policy must comply both with our program requirements and with the requirements of the U.S. Department of Commerce for participants in the Data Privacy Framework Program. We will provide hands-on assistance and step-by-step instructions for aligning your policy with these requirements after you apply.

Before applying, please closely review the below steps to ensure you are fully prepared for the self-certification process.