Privacy Policy

At IBM we recognize the importance of protecting your personal information and are committed to processing it responsibly and in compliance with applicable data protection laws in all countries in which IBM operates.
With regard to the GRIT App:


We collect and use the following personal information to provide, improve, and protect the GRIT App.
Account information. We collect, and associate with your account, the information you provide to us when you do things such as sign up for your account and create your profile.
Employment information. We collect, and associate with your account, the information you provide to us when you do things related to employment like your resume data and MOS information.
Contacts. You may choose to give us access to your contacts to invite members to your squad. If you do, we’ll store those contacts on our servers.
Survey Data. You may choose to answer assessment questions, mood questions or link your Twitter account. If you do, we’ll store this information anonymously on our servers.


The GRIT App tries to limit the collection, use and disclosure of personal information to information that is necessary for the following purposes:
We will retain personal information for as long as necessary for the purpose for which it has been collected, or as long as we are required and/or permitted to retain such information by law.


We may share information as discussed below, but we won’t sell it to advertisers or other third parties.


We also collect information from and about the devices you use to access the GRIT App. This includes things like:
IBM may use the Device information collected through this App in the following ways:

With regard to IBM’s general privacy policy:

This Privacy Statement is supplemented by the IBM Online Privacy Statement, which provides more information in the online context, including recruitment. We may provide additional or more specific information on the collection or use of personal information on websites or related to a specific product or service.
Where we reference that we use your personal information in relation to marketing, improvement or development of our products or services, for reasons of safety and security, or regulatory requirements other than in connection with your agreement or request, we do this on the basis of our or a third party’s legitimate interests, or with your consent. When we collect and use your personal information subject to the EU Privacy Legislation this may have consequences for your rights.
Sharing of Personal Information
As a global organization offering a wide range of products and services, with business processes, management structures and technical systems that cross borders, IBM has implemented global policies, along with standards and procedures, for consistent protection of personal information. As a global company, we may share information about you with our subsidiaries world-wide and transfer it to countries in the world where we do business in accordance with this Privacy Statement.
Between IBM controlled subsidiaries we only grant access to personal information on a need-to-know basis, necessary for the purposes for which such access is granted. In some cases, IBM uses suppliers located in various countries to collect, use, analyze and otherwise process personal information on its behalf.
Where appropriate, IBM may also share your personal information with selected partners to help us provide you, or the company you work for, products or services, or to fulfill your requests, or with your consent. When selecting our suppliers and partners, we take into account their data handling processes.
If IBM decides to sell, buy, merge or otherwise reorganize businesses in some countries, such a transaction may involve the disclosure of personal information to prospective or actual purchasers, or the receipt of such information from sellers. It is IBM's practice to require appropriate protection for personal information in these types of transactions.
Please be aware that in certain circumstances, personal information may be subject to disclosure to government agencies pursuant to judicial proceeding, court order, or legal process. We may also share your personal information to protect the rights or property of IBM, our business partners, suppliers or clients, and others when we have reasonable grounds to believe that such rights or property have been or could be affected.
International Transfers
The international footprint of IBM involves a large number of transfers of personal information between different subsidiaries, as well as to third parties located in the countries where we do business. Some countries have implemented transfer restrictions for personal information, in connection with which IBM takes various measures, including:
While the EU-U.S. and Swiss-U.S. Privacy Shield Framework may no longer be used or relied upon for transfer of personal information, IBM continues to comply with all EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework obligations. More information can be found here: IBM Privacy Shield Privacy Policy and US Department of Commerce.
Information Security and Accuracy
We intend to protect your personal information and to maintain its accuracy. IBM implements reasonable physical, administrative and technical safeguards to help us protect your personal information from unauthorized access, use and disclosure. For example, we encrypt certain sensitive personal information such as credit card information when we transmit such information over the Internet. We also require that our suppliers protect such information from unauthorized access, use and disclosure.
Retention Period
We will not retain personal information longer than necessary to fulfill the purposes for which it is processed, including the security of our processing complying with legal and regulatory obligations (e.g. audit, accounting and statutory retention terms), handling disputes, and for the establishment, exercise or defense of legal claims in the countries where we do business.
Because the circumstances may vary depending on the context and the services, the information provided in Online Privacy Statement or provided in a specific notice may provide more detailed information on applicable retention terms.
How to contact us
If you have a question related to this Privacy Statement, please contact us by using this form. Your message will be forwarded to the appropriate member of IBM's Data Privacy Team, such as Data Protection Officers or members of their teams.
Where this is relevant, the controller of your personal information is International Business Machines Corporation (IBM Corp.), 1 North Castle Drive Armonk, New York, United States, unless indicated otherwise. Where IBM Corp. or a subsidiary it controls is required under data protection law to appoint a legal representative in the EEA or the UK, the representative for the EEA will be IBM International Group B.V., Johan Huizingalaan 765, 1066 VH Amsterdam, The Netherlands; and the representative for the UK will be IBM United Kingdom Limited, PO Box 41, North Harbour, Portsmouth, Hampshire, PO6 3AU, United Kingdom.
IBM Corp. is not the controller in situations such as:

Your Rights

You can request to access, update, or correct, and in certain circumstances, to delete your personal information. You also have the right to object to direct marketing. You can access the request process here.
You may have additional rights pursuant to your local law applicable to the processing. More information can be found here.
Right to Lodge a Complaint
In the event you consider our processing of your personal information not to be compliant with the applicable data protection laws, you can lodge a complaint:
Changes to our Privacy Statements
We may update this Privacy Statement from time to time to reflect changes to our data governance practices. The revised Privacy Statement will be posted here with an updated revision date. We encourage you to check back periodically for any changes or updates. If we make a material change to our Privacy Statement, we will post a notice at the top of this page for 30 days. By continuing to use our websites after such revision takes effect we consider that you have read and understand the changes.

The Squad feature of GRIT is supporting the VA Network of Support pilot program. As your privacy is very important to us, if you are a NOS pilot participant and will opt in to use your Squad to support this initiative, please see the NOS Pilot Privacy Statement

NoS Pilot Privacy Policy

Other privacy statements & policies

Last modified: 2021-11-12