Binding Corporate Rules

Following the approval by the European data protection authorities, Sodexo is proud to present its’ Binding Corporate Rules (BCR).

This major milestone reinforces Sodexo's dedication to top-tier data protection and privacy standards, ensuring rigorous compliance for clients’, consumers’, and employees’ data across our operations in 45 countries.

The BCR are data protection policies, procedures and processes adhered to by multinational companies for processing and transfers of personal data from within the EU to their entities located outside the EU.

This approval for both Controller and Processor BCR (meaning for transfers of data collected for Sodexo’s own purposes and for the purposes of providing our services) demonstrates Sodexo’s dedication to upholding strict data privacy practices and ensures compliance with the General Data Protection Regulation (GDPR).