Legacy Of Privacy Leadership

Generations of IBMers have earned the trust of our clients and society through responsible data stewardship. IBM was one of the first companies to appoint a Chief Privacy Officer and to develop and publish a genetics privacy policy. IBM was also an early leader in developing and adopting the EU Data Protection Code of Conduct for Cloud Service Providers, and in securing certification under the EU-US Privacy Shield and was the first company (worldwide) to become certified under the APEC Cross-Border Privacy Rules. ​

As IBM Chief Privacy Officer, I direct the company’s privacy vision and compliance strategy and oversee our privacy and AI ethics programs. My mission is to help IBM maintain the trust of our clients through open, transparent and explainable privacy practices, while ushering new technologies into the world responsibly and with clear purpose.

Christina Montgomery, VP, IBM Chief Privacy Officer​

IBM Privacy Policies & Principles

Data Privacy Policy

Sets forth the general principles that apply to the processing of Personal Information by IBM, including the principle of Privacy by Design.

IBM Privacy Statement

Describes IBM's privacy practices as they apply to Personal Information we collect, use and share.

IBM Controller Binding Corporate Rules

IBM uses Binding Corporate Rules in order to protect personal data that it controls. These rules set out IBM's data privacy principles, as well as describing what Personal Information IBM may collect and what it will do with your business Personal Information.

IBM Principles for Trust and Transparency

Core principles for handling client data and insights, and building trust in AI and emerging technologies.

IBM Corporate Responsibility Reports

Demonstrates IBM’s achievements to further the foundation of trust and responsibility.

How do I?

Report a data breach

Please contact your client account team or alternatively, please contact ChiefPrivacyOffice@ca.ibm.com for further information on how to proceed.


Opt-out from receiving personalized communication




View my Data Processing Addendum exhibits for the standard offerings I have purchased

Subscribe to be notified on sub-processor changes for my Cloud Services



Subscribe to be notified on sub-processor changes for my Technical Support Services



Get help on privacy-related matters

Get help with IBM id & Password issues

IBM Privacy Offerings and Services

IBM Data Privacy Services

Services to help you govern your data gathering and management to reduce risk and meet global privacy goals.

Promontory Regulatory Advisory Services

Promontory, an IBM Company, provides expertise to help you navigate business strategy and regulatory complexity.

Security strategy, risk and compliance services

Services to help you evaluate your existing security governance against your business challenges, requirements, and objectives.

IBM Data Security Services

Transform your cybersecurity strategy with IBM Data Security Services.

Accelerate your data privacy and protection journey

Prepare for the GDPR, the CCPA and other data privacy regulations.


Learn about the 5-phase IBM GDPR framework designed to help you reduce risk and incidents.

Prepare for the California Consumer Privacy Act (CCPA)

Embrace CCPA to enhance consumer trust and drive digital transformation.