California Privacy Law: Frontier Privacy Policy

This Privacy Policy supplements the information contained in the Frontier Communications Privacy Policy and describes how Frontier Communications Parent, Inc., and its subsidiaries that provide or support the provision of services in California (collectively, “Frontier,” “we,” or “us”) collect, use, and disclose personal information about California residents (“you”). Personal information means any information that directly or indirectly identifies you or is reasonably capable of being associated with you or your household. This Privacy Policy applies to personal information we collect online and offline, such as when you use our website and mobile app; we provide, manage, and improve the services we offer; we bill and collect for our services; we deliver relevant advertising; we respond to customer questions and concerns; you use our products and services; we conduct interviews and surveys; we manage, repair, and protect our network; and we conduct business-to-business operations with service providers, contractors or other parties (collectively, our “Services”).

We also describe in this Privacy Policy our handling of “sensitive” personal information, which is subject to additional protections under the California Privacy Rights Act (“CPRA”).

We may provide different or additional notices of our privacy practices with respect to other personal information collection practices not within the scope of this Privacy Policy, in which case this Privacy Policy will not apply.

We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the bottom of this Privacy Policy. We may also provide you with an additional notice (such as by adding a statement to the Services or sending you a notification), in connection with making material changes to this Privacy Policy. We encourage you to review this Privacy Policy regularly to stay informed about our information practices and the choices available to you.

I. NOTICE AT COLLECTION
- A. Collection of Personal Information
- B. Purpose and Use of Personal Information
- C. Disclosure of Personal Information
- D. Retention of Personal Information
II. YOUR CALIFORNIA RIGHTS
- A. Summary of Categories of Personal Information Collected and Disclosed
- B. Selling or Sharing of Personal Information
- C. Opt-Out Preference Signals
- D. Sensitive Personal Information
- E. Your Rights
- F. Instructions on How to Exercise Your Privacy Rights
- G. Authorized Agents
- H. Additional Disclosure for California Residents
III. CONTACT US

I. NOTICE AT COLLECTION

This Notice at Collection describes how we collect, use and disclose personal information. The CPRA categories of personal information we collect at or before the point of collection and in the prior 12 months is also detailed in Summary of Categories of Personal Information Collected and Disclosed in Section II.A below. Our prior 12-month personal information handling practices are consistent with our going-forward practices.

A. Collection of Personal Information

1. Personal Information You Provide to Us

We collect personal information you provide directly to us. For example, we collect personal information directly from you when you use our Services. The types of personal information that we may collect directly from you include the following:

Contact Information: We collect certain identifiers and contact information from you, such as name, phone number, email address, postal address, and other similar identifiers.
Financial and Transactional Information: We collect payment and other financial information, and information regarding the services you purchased and your purchasing histories.
Sensitive Personal Information: We may collect certain personal information that is considered sensitive personal information. This includes the following: social security number, driver’s license number, and financial account and payment card information.

2. Personal Information We Collect Automatically

We automatically collect certain personal information about your interactions with us or our Services, including:

Activity Information: We may collect information about your activity on our Services, such as network usage, browsing history, search history, and information regarding your interaction with a website, application, or advertisements.
Call Information: When you contact us or we contact you, we may monitor or record the communication, and keep records of and about the communication, so that we can provide better service. We will inform you during such a call that the call may be monitored or recorded.
Device and Usage Information: We may collect information about how you access our Services, including data about the device and network you use, such as your hardware model, operating system version, mobile network, IP address, unique device identifiers, browser type, bandwidth usage, speed test results, modem/gateway/set top box IDs, configuration files, and performance data. We also may collect your TV and other video viewership, including movie rental, digital video recorder activity, and purchase data.
Information Collected by Cookies and Similar Tracking Technologies: We and others that control collection of personal information use tracking technologies, such as cookies and web beacons, to collect information about you. Cookies are small data files stored on your hard drive or in device memory that help us improve our Services and your experience, see which areas and features of our Services are popular, and count visits. Web beacons (also known as “pixel tags” or “clear GIFs”) are electronic images that we use on our Services and in our emails to help deliver cookies, count visits, and understand usage and campaign effectiveness. We also may receive demographic information about you, or information regarding your interests. Our use of certain types of cookies and tracking technology may constitute a “sale” or “sharing” of personal information under the CPRA. To opt-out of the sale or sharing of your personal information, see Your California Rights in Section II below.

3. Personal Information We Collect from Other Sources

We obtain information from other sources. For example, we may collect information from credit reporting agencies, advertising networks, data analytics providers, operating systems and platforms, mailing list providers, social networks, and other advertising partners. This information may include your contact information and usage data collected through cookies and other trackers. In addition, we may obtain information from other providers we partner with to provide you services, such as Wi-Fi router systems, email platforms, computer protection systems and video services.

4. Personal Information We Derive

We may derive information or draw inferences about you based on the information we collect. For example, we may make inferences about your approximate location based on your IP address or infer that you are looking to purchase certain products based on your browsing behavior and past purchases.

B. Purpose and Use of Personal Information

We may use the categories of personal information identified in Collection of Personal Information in Section I.A above for the following purposes:

Provide, maintain, and improve our Services;
Process transactions and send you related information, including confirmations, service terms, service bills, customer experience surveys, and other notices;
Personalize and improve your experience on our Services;
Send you technical notices, service and security alerts, and support and administrative messages;
Respond to your comments and questions and provide customer service;
Communicate with you about products, services, and events offered by Frontier and others and provide news and information that we think will interest you;
Monitor and analyze trends, usage, and activities in connection with our Services;
Personalize the advertisements you see on third-party platforms and websites;
Personalize the advertisements you see when you use our Services based on information provided by our advertising partners;
Detect, investigate, and prevent security incidents and other malicious, deceptive, fraudulent, or illegal activity and protect the rights and property of Frontier and others;
Debug to identify and repair changes, interruptions, and errors in our Services;
Comply with our legal, regulatory and financial obligations; and
Carry out any other purpose described to you at the time the information was collected.

C. Disclosure of Personal Information

We may disclose each of the categories of personal information identified in Collection of Personal Information in Section I.A above to the following other parties in the following circumstances or as otherwise described in this Privacy Policy:

Our Vendors which may be considered Service Providers and Contractors under the CPRA: We may disclose personal information to service providers and contractors who provide us services, such as IT, system, security and network administration, marketing and professional advisory and support services. In addition, we may disclose at your direction and request information to other providers we partner with to provide you services, such as Wi-Fi router systems, email platforms, computer protection systems and video services.
Sold or Shared: We may sell or share personal information, as described in Selling or Sharing of Personal Information in Section II.B below, on a going-forward basis, which is consistent with our prior 12-month personal information handling practices.
Legal Disclosures: We may disclose personal information if we believe that disclosure is in accordance with, or required by, any applicable law, regulatory or legal process, including lawful requests by public authorities to meet national security, regulatory or law enforcement requirements. We may also disclose personal information if we believe that your actions are inconsistent with our user terms, agreements or policies, if we believe that you have violated the law, or if we believe it is necessary to protect the rights, property, and safety of Frontier, our users, the public, or others.
Disclosed to Advisors: We may disclose personal information with our professional advisors where necessary to obtain advice or otherwise protect and manage our business interests.
Disclosed During Change of Ownership: We may disclose personal information in connection with, or during negotiations concerning, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
Among Our Family of Companies: Personal information may be disclosed between and among Frontier and our current and future parents, affiliates, and subsidiaries and other companies under common control and ownership.
With Your Consent: We may disclose personal information with your consent or at your direction.
Disclosure of Non-Personal Information: We may also disclose aggregated or de-identified information that cannot reasonably be used to identify you.

D. Retention of Personal Information

We store personal information for as long as necessary to carry out the purposes for which we originally collected it and for other legitimate business purposes, including to meet our legal, regulatory, or other compliance obligations.

II. YOUR CALIFORNIA RIGHTS

The CPRA (Cal. Civ. Code § 1798.100 et seq.) and the Shine the Light law (Cal. Civ. Code § 1798.83) afford consumers residing in California certain rights with respect to their personal information. If you are a California resident, these rights and disclosures apply to you.

A. Summary of Categories of Personal Information Collected and Disclosed

In the preceding 12 months, we have collected the categories of personal information set forth in the table below. For details about the precise data points we collect and the categories of sources of such collection, please see Collection of Information in Section I.A above. We collect personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above. In the preceding 12 months, we have disclosed the following categories of personal information for business purposes to the following categories of recipients, which we also describe in greater detail in Disclosure of Personal Information in Section I.C above:

Category of Personal Information	Business Purpose for Disclosure	Category of Recipients
Identifiers, such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver’s license number, or other similar identifiers.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Any personal information described in the California Customer Records Act (Cal. Civ. Code § 1798.80(e)), such as name, signature, social security number, driver’s license number, address, telephone number, and financial information. We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above. We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Commercial information, such as records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Internet or other electronic network activity information, such as network usage, browsing history, search history, and information regarding a consumer’s interaction with a website, application, or advertisement.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Geolocation data, such as address and location.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Audio, electronic, or similar information, such as call records	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).
Inferences drawn from any of the information identified herein, such as preferences derived from marketing interactions.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., lawyers, bankers, auditors and insurers).
Professional or employment-related information, such as information from our business-to-business contacts and representatives.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.
Sensitive personal information, such as social security number, driver’s license number, and financial account and payment card information.	We may have disclosed such personal information for the business and commercial purposes described in Purpose and Use of Personal Information in Section I.B above.	We may have disclosed this category of personal information for business purposes with service providers and contractors who provide us services, such as IT and system administration, marketing, facilities repair, and professional advisory services (e.g., consultants, bankers, auditors and insurers).

B. Sharing or Selling of Personal Information

Below, we describe the categories of personal information we may sell or share for cross-context behavioral advertising currently and in the preceding 12 months. We also describe the third parties who received the personal information and the business or commercial purpose for the sale or sharing. We do not knowingly sell or share the personal information of children under the age of 16, and have not done so in the prior 12 months.

Category of Personal Information	Shared or Sold	Category of Third Party	Business or Commercial Purpose for Sale or Sharing
Identifiers, such as unique personal identifier, online identifier, Internet Protocol address, or other similar identifiers.	This category of personal information may be shared or sold for cross-context behavioral advertising.	We may have shared or sold such personal information with third party advertising, marketing, and cookie providers.	We may have disclosed this category of personal information to provide advertising and marketing services.
Internet or other electronic network activity information, such as network usage, browsing history, search history, and information regarding a consumer’s interaction with a website, application, or advertisement.	This category of personal information may be shared or sold for cross-context behavioral advertising.	We may have shared or sold such personal information with third party advertising, marketing, and cookie providers.	We may have disclosed this category of personal information to provide advertising and marketing services.
Geolocation data, such as location.	This category of personal information may be shared or sold for cross-context behavioral advertising.	We may have shared or sold such personal information with third party advertising, marketing, and cookie providers.	We may have disclosed this category of personal information to provide advertising and marketing services.
Inferences drawn from any of the information identified herein, such as preferences derived from marketing interactions.	This category of personal information may be shared or sold for cross-context behavioral advertising.	We may have shared or sold such personal information with third party advertising, marketing, and cookie providers.	We may have disclosed this category of personal information to provide advertising and marketing services.

C. We Honor Opt-Out Preference Signals

An opt-out preference signal is a signal that is sent by a platform, technology or mechanism on your behalf that communicates your choice to opt-out of the sharing for cross-context behavioral advertising or sale of your personal information. You can learn more about implementing opt-out preference signals here or by exploring other developing technologies and services that offer this tool.

We treat opt-out preference signals as valid requests to opt-out of the sale or sharing of your personal information under the CPRA. Ordinarily, your opt-out preference signal is sufficient for us to honor your request, but in some instances we may request additional information to help facilitate your request for offline sales or sharing. We will not use, disclose or retain this additional information for any purpose other than to facilitate the request.

Please also note that some browsers have incorporated “Do Not Track” mechanisms. Most of these mechanisms, when turned on, send a signal to the website or online service indicating that the user does not wish to be tracked online. However, because the providers of “Do Not Track” and similar signals do not yet operate according to common, industry-accepted standards, we currently do not respond to those signals. For more information about Do Not Track mechanisms, see https://allaboutdnt.com. That said, as noted above, we do honor opt-out preference signals, such as Global Privacy Control.

Please note that you can also opt-out of the sale or sharing of your personal information through our other methods described in the Instructions on How to Exercise Your Privacy Rights in Section II.F below.

D. Sensitive Personal Information

Under the CPRA, certain types of personal information are considered “sensitive” personal information and require additional data privacy rights and obligations. Frontier may collect social security number, driver’s license number, and financial account and payment card information, which may be considered sensitive personal information under the CPRA. We only collect this sensitive personal information to provide the goods or services you requested; to prevent, detect, and investigate security incidents; to resist malicious, deceptive, fraudulent or illegal actions; to ensure the physical safety of natural persons; and to verify or maintain the quality or safety of our products or services (“Permitted Uses”). Because Frontier uses this sensitive personal information for Permitted Uses, there is no need for it to provide a Limit Use and Disclosure of Sensitive Personal Information right under the CPRA.

E. Your Rights

The CPRA affords consumers residing in California the following rights with respect to their personal information, subject to certain exceptions:

(1) Right to Delete. You have the right to request us to delete the personal information we have collected about you.
(2) Right to Correct. You have the right to request us to correct inaccurate personal information we maintain about you.
(3) Right to Know and Access. You have the right to know and access the personal information we have collected about you, including the categories of personal information, the categories of sources from which the personal information is collected, the business or commercial purpose for collecting, selling, or sharing personal information, the categories of third parties to whom we disclose personal information, and the specific pieces of personal information we have collected about you.
(4) Right to Data Portability. You have the right to receive the information under right (3) in a format, to the extent technically feasible, that is portable, usable, and allows you to transmit the personal information to a person without impediment.
(5) Rights Related to Sharing for Cross-Context Behavioral Advertising or Sale. You have the right to opt out of the sharing of your personal information for cross-context behavioral advertising or the sale of your personal information.
(6) Rights Related to Sensitive Personal Information. The CPRA provides additional protection for sensitive personal information. Please see Sensitive Personal Information in Section II.D above for more information.
(7) Right to No Discrimination. You have the right not to be discriminated against for exercising any of your privacy rights. This includes us not: (a) denying you goods or services; (b) charging you different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties; (c) providing you a different level or quality of goods or services; (d) suggesting to you that you will receive a different price or rate for goods or services or a different level or quality of goods or services; and (e) retaliating against you for exercising your privacy rights.

F. Instructions on How to Exercise Your Privacy Rights

You may exercise your privacy rights by completing our web form here or calling our toll-free phone number at 1-800-921-8101. In some instances, we will need to verify your identity using commercially reasonable efforts before honoring your privacy right request. We will verify your identity by asking you to provide personal information related to your recent interactions with us. We will honor your privacy rights request within 45 calendar days of receipt, unless we request an extension under the CPRA. However, we will honor opt-out of sale and sharing requests within 15 business days. If you would like to make a request to opt-out of the processing of your personal data for targeted advertising or the sale of your personal data, click on the Do Not Sell or Share My Personal Information link here.

G. Authorized Agents

You may exercise your privacy rights through an authorized agent. If we receive your request from an authorized agent, we may ask for evidence that you have provided such agent with a power of attorney or that the agent otherwise has valid written authority to submit requests to exercise rights on your behalf. If you are an authorized agent seeking to make a request, please Contact Us in Section III below.

H. Additional Disclosure for California Residents

California law permits residents of California to request certain details about how their information is shared with third parties for direct marketing purposes. If you are a California resident and would like to make such a request, please email us at [email protected].

III. CONTACT US

If you have any questions about this Privacy Policy, please contact us at [email protected] or Frontier, P.O. Box 9608, New Haven, CT 06535.

Last Updated and Effective Date: June 1, 2023

California Privacy Law: Frontier Communications Privacy Policy

TABLE OF CONTENTS