July 2013
MSI Authorization for transfers of personal data outside of the EEA
On May 2, 2013, the UK Information Commissioner’s Office approved Motorola Solutions’ binding
corporate rules. Binding corporate rules (commonly referred to as “BCRs”) are a set of binding
privacy commitments formally adopted by the group members of a company-group. BCRs allow
worldwide transfers of personal data within members of a company group in full compliance with
European data protection laws.
The BCRs were authorized under the mutual recognition procedure with the UK Information
Commissioner acting as lead regulator and the Spanish Data Protection Agency (“AEPD”) and
the French data protection authority (“CNIL”) acting as co-lead regulators.
By adopting and seeking EU-level authorization of its BCRs, Motorola Solutions has decided to
use BCRs as its preferred mechanism for achieving compliance with European rules on
international transfers of personal data. Motorola Solutions also relies on alternate means for data
protection compliance, including model EU clauses and adhesion to the US Safe Harbor regime,
particularly when carrying out transfers of personal data to entities that are not part of the
Motorola Solutions group.
The Information Commissioner’s Binding Corporate Rules Authorization is available at the ICO
UK Website.
MSI Privacy Compliance Committee