Legal
This policy describes how Verizon Business collects, uses, shares, and protects information when you visit our websites, sign in to My Verizon Business, and use our telecommunications services. It applies to individuals in every US state and to visitors from outside the United States.
Effective date: April 17, 2026 · Last updated: April 17, 2026
Privacy Policy Summary
Verizon Business collects only what is necessary to deliver enterprise telecommunications services, honor contracts, and operate the business lawfully. We do not sell personal information. California residents have CCPA rights and visitors from the European Union have GDPR rights, each enforceable by email to privacy@verizonbusiness.github.io. Account data is retained under purpose-bound schedules ranging from session-only to seven years for regulated billing records. Cookies are limited to strictly necessary and anonymous analytics categories.
Verizon Business collects information in three categories. Information you provide directly includes company name, billing contact, shipping address, telephone numbers, payment details, and the credentials used to access My Verizon Business. Information we receive automatically includes service telemetry such as uptime, throughput, signaling metadata, IP addresses associated with your circuits, and device identifiers for provisioned hardware. Information from third parties includes credit-bureau data used for order qualification, channel partner referrals, and — where permitted — publicly available business registry data used to verify corporate identity.
We do not intentionally collect sensitive categories of personal data for marketing purposes. Verizon Business does not use precise geolocation, biometric identifiers, or health data in advertising. Where the delivery of a specific service requires a sensitive category (for example, a licensed healthcare vertical requires HIPAA-aligned handling), the data is processed under a contract-specific Business Associate Agreement rather than this general policy.
Information is used to provision and operate services, bill customers accurately, provide technical support, detect and mitigate fraud, secure our networks, and comply with applicable law. We use account data to personalize the My Verizon Business experience — for example, showing relevant dashboards to a user with a manager role — and we use aggregated telemetry to plan capacity and improve service quality.
We do not sell personal information, we do not rent contact lists, and we do not share customer data with unaffiliated advertisers. Marketing communications go only to contacts who have opted in, and every email includes a one-click unsubscribe link that is honored within 10 business days of request.
We share information with service providers that process data on our behalf under written contracts that require confidentiality and purpose-limitation. Typical categories include payment processors, tax calculation vendors, shipping carriers for hardware delivery, and cloud infrastructure providers that host portal components. Every such provider is bound by a data processing addendum that mirrors the protections in this policy.
We share information with law enforcement only pursuant to valid legal process such as a subpoena, court order, or search warrant. Our transparency report discloses the number and type of government requests we receive each year. We share information with affiliates for internal administrative purposes and with successor entities in the event of a corporate restructuring, where the same privacy protections continue to apply.
Our website uses two categories of cookies. Strictly necessary cookies keep your session authenticated after you complete sign-in, maintain language preference, and enable security features such as cross-site request forgery protection. These cookies are set regardless of consent because the site cannot function without them. Anonymous analytics cookies count page views, referrers, and device types in aggregate to help us improve the site; they do not identify individual visitors.
We do not set cross-site advertising trackers, we do not participate in data broker networks, and we do not honor paid placement that would compromise this page's objectivity. Most modern browsers support Do Not Track and Global Privacy Control signals; Verizon Business honors both as a request to disable analytics cookies.
California residents (CCPA). You have the right to know what personal information we collect, to request deletion, to request correction, to opt out of the sale or sharing of personal information (we do not sell or share), and to non-discrimination for exercising any of these rights. Submit requests to privacy@verizonbusiness.github.io or through the Contact Us page. We respond within 45 days and can extend once by another 45 days when necessary. Authorized agents may submit requests with a signed, notarized authorization.
European Union / European Economic Area (GDPR). You have the right of access, rectification, erasure, restriction of processing, data portability, objection, and the right to withdraw consent. Where processing is based on legitimate interests, you may object; where it is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal. Requests go to the same privacy address and we respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.
Other US state residents. Colorado, Virginia, Connecticut, Utah, Texas, Oregon, Delaware, Iowa, Indiana, Montana, New Hampshire, and Tennessee residents have rights similar to those of California residents. We honor the broadest applicable right when a request arrives without geographic specificity.
Verizon Business maintains a defense-in-depth security program aligned with SOC 2 Type II, ISO 27001, and FedRAMP Ready controls. Technical safeguards include encryption in transit (TLS 1.2 or higher), encryption at rest (AES-256 for databases and object storage), least-privilege access controls, continuous vulnerability scanning, and 24/7 monitoring by our Security Operations Center. Administrative safeguards include background checks, annual security training, role-based access reviews, and a written incident response plan tested at least annually.
In the unlikely event of a breach involving personal information, we notify affected customers and regulators within the timeframes required by applicable law. See our Security and Compliance page for the full control catalog and audit attestations.
Retention periods are purpose-bound. We retain data only as long as needed to deliver the service, meet legal obligations, resolve disputes, and enforce agreements. The table below lists the principal data categories and their retention windows.
| Data Type | Retention Period | Legal Basis |
|---|---|---|
| Account and contract records | Duration of contract + 7 years | Contract performance; tax & audit obligations |
| Billing and payment history | 7 years from the end of the tax year | IRS recordkeeping under 26 USC §6001 |
| Customer Proprietary Network Information (CPNI) | Minimum 2 years | FCC Rule 47 CFR §42.6 |
| Service telemetry and usage logs | 24 months rolling | Legitimate interest — capacity planning |
| Support ticket history | 36 months from ticket close | Contract performance & quality assurance |
| Website analytics (aggregate) | 26 months | Legitimate interest — service improvement |
| Marketing contact history | 36 months or until opt-out | Consent; ePrivacy compliance |
| Security event logs | 13 months | Legitimate interest — incident response |
| Account recovery artifacts (post-closure) | 90 days post-closure | Dispute resolution window |
Where a legal hold applies, retention is extended until the matter is resolved. Deletion requests under CCPA or GDPR are honored except where retention is compelled by law.
Verizon Business is an enterprise service intended for use by organizations and the employees those organizations authorize. It is not directed to children under the age of 13 and we do not knowingly collect personal information from children. If we learn that we have collected information from a child under 13 without verified parental consent, we delete that information as quickly as practical. Parents and guardians may contact us at privacy@verizonbusiness.github.io to request review or deletion.
We may update this policy to reflect new services, legal developments, or operational changes. Material changes are announced at least 30 days before they take effect, through a banner on our website and — where customers are on file — through email notice to the primary billing contact. The version date at the top of this page is the authoritative indicator of the current policy. Archived copies of prior versions are available on request.
Questions, requests, and complaints about this privacy policy go to:
Verizon Business Privacy Office
One Verizon Way
Basking Ridge, NJ 07920
United States
Email: privacy@verizonbusiness.github.io
Phone: 1-800-837-4966
For general support inquiries, see our Contact Us page. For account-specific data requests, sign in to My Verizon Business and open the Privacy Center under Account Settings — verified account holders receive expedited response times.
FAQ
For federal privacy guidance applicable to telecommunications customers, see the FCC Protecting Your Privacy guide.
Keep Exploring
SOC 2, ISO 27001, FedRAMP Ready control catalog.
All phone, email, and chat channels with response times.
Instructions for accessing My Verizon Business securely.
Login reference with troubleshooting and role matrix.
Guides, how-tos, and searchable self-service articles.
Fiber and 5G Fixed Wireless with uptime SLAs.
24/7 SOC, zero-trust, and incident response.
Managed and hybrid cloud infrastructure.
Our company, mission, and leadership.