International Business Privacy Policy

Target Corporation’s global legal entities value our relationships with Business Contacts. These entities outside of the United States include, but are limited to, Target Corporation India Private Limited (“TII”), Target Global Sourcing Limited (“TGSL”), and all TGSL subsidiaries, branch offices, representative offices and liaison offices (TII and TGSL are collectively referred to as “Target”). This International Business Privacy Policy (“Policy”) tells you how Target collects, stores, uses, transfers, shares, deletes, and protects (collectively “process”) your personal information through our standard business relationship. We are committed to processing your personal information responsibly and in accordance with applicable laws and internal policies.

Definitions

  • “Personal Information” means any information related to an identified or identifiable individual 
  • “Sensitive Personal Information” includes but is not limited to:
    • financial information (e.g., bank account or credit card details);
    • health information;
    • diversity data (e.g., race, ethnicity, religious beliefs, sexual orientation);
    • location tracking; and
    • biometric information (e.g. fingerprints, retina scans).
  • “Business Contact” means individuals whose information we process as a result of standard business operations (e.g., representatives of suppliers, factories, vendors, government authorities, etc.).

Purposes for Collecting and Using Business Contact Personal Information

Target processes Business Contact Personal Information for a variety of purposes related to managing the business relationship, including:

  • establish, manage, terminate or otherwise administer the business relationship;
  • establish a business point of contact;
  • compile directories and telephone lists;
  • comply with legal statutes;
  • ensure compliance with Target’s requirements, policies and procedures;
  • ensure the security of company-held information;
  • conduct investigations;
  • assist law enforcement and respond to legal/regulatory inquiries; and
  • fulfill such other business purposes as reasonably determined by Target.

Business Contact Personal Information Collected

Some of the information that may be collected for the above purposes includes:

  • identification information (e.g., name, photographs, videos);
  • contact information (e.g., work address, work or personal telephone, work email address, work location);
  • device or technical information if access Target systems (e.g., device ID, IP address, system usage log);
  • information required for security or fraud prevention purposes; and
  • other information required or authorized by law.

Target may collect the Business Contact Personal Information from individuals via electronic or physical means such as business forms, email, mobile applications, websites, and internal systems.  Target may also collect Business Contact Personal Information from third parties assisting Target in management of the business Contact relationships.

Sensitive Personal Information (as defined by applicable jurisdictions) may need to be collected and used for the business-related purposes described above. The Sensitive Personal Information will be processed in a manner that protects the information and also protects your rights and interests.

If you provide Information to Target relating to other people, then you are responsible for the ensuring the accuracy of such information and making the individuals aware of the information provided and the ways it will be processed by Target.

Processing and Retention of Business Contact Personal Information

Target will retain your personal information for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy or for the period legally permitted or required. Target’s retention criteria take into consideration legal obligations, business needs, potential risks of harm, and information type. At the end of the retention period, personal information will be deleted, destroyed, or deidentified.

Target will have a lawful basis for any processing of Business Contact Personal Information, including management of the business relationship, fulfilment of contractual obligations, fulfilment of legal obligations, and/or your consent. If a business Contact fails or refuses to provide personal information to Target, it may adversely affect relevant aspects of the business relationship, such as eligibility to provide new services or continuation of existing services.

Target may process the Personal Information via manual processing, automated digital processing or other means, including without limitation, the use of database formats and cloud-based arrangements.

Target does not sell Business Contact Information or make solely automated decisions concerning the business relationship.

Sharing, International Transfer and Safeguards

Target shares Business Contact Personal Information with team members and with subsidiaries and affiliates when there is a business need. Target also shares with service providers who help manage the business relationship (for example, professional advisors, technology providers). Target may also share with other third parties as required or permitted by law (for example, authorized government agencies, parties involved with legal proceedings, or certain business transactions).

Target operates in multiple countries and may disclose or transfer your Business Contact Personal Information to team members, service providers, or third parties located outside of your country. When disclosing or transferring Business Contact Personal Information across borders, Target will comply with legal requirements and will do so only for purposes described in this policy.  If applicable, recipients will be required to protect the confidentiality and security of Business Contact Personal Information, use it only to provide services, and comply with Target’s privacy standards and applicable laws.

Target uses physical, technological and organizational measures to safeguard your Business Contact Personal Information against loss, theft, unauthorized access, use, copying, modification or disclosure. Such measures will be consistent with applicable privacy and data security laws and regulations.

Personal Information Rights

To the extent provided by applicable law, you may have certain rights that include:

  • access and correction—right to access your Personal Information and ask that incorrect information be corrected
  • deletion—subject to certain exceptions, right to ask for your Personal Information to be deleted
  • withdrawal of consent—if handling of your Personal information is based on your consent, then you can withdraw your consent
  • restriction or objection to processing—in certain cases, right to restrict or object to Target’s processing of your Personal Information
  • data portability—in certain cases, right to receive your Personal Information in a way that you can reuse it or easily share with others
  • complaints—right to make a complaint to Target or to your data protection regulator

You can exercise your rights by making a written request to Privacy-rai@target.com. Depending on your request, Target may need to get proof of your identity or request further information from you. Target will respond to requests within a reasonable time or the time required by law.

You also have certain responsibilities that include:

  • protect your own Personal Information;
  • provide complete and accurate Personal Information; and
  • comply with personal data protection laws.

Contact Information

Business Contacts can address questions, comments, or complaints about this Policy to Privacy-rai@target.com.

Scope; Exceptions and Qualifications; Revisions

This Policy is meant to address data privacy laws in international locations where Target operates, however, it does not create any additional obligations.

Although not listed in this Policy, Target will rely on any exceptions or qualifications that are either set out in applicable privacy legislation or used by Target in good faith as permitted by law.

This Policy may be changed or added to at any time, so we encourage you to review it periodically. A copy can be obtained by emailing to Privacy-rai@target.com. Revisions may reflect changes in our privacy practices as well as changes in our legal or regulatory obligations. To help you keep track, we include the date of our most recent updates.

Last Updated: January 2026

Việt Nam: Vui lòng liên hệ Privacy-rai@target.com nếu bạn muốn nhận thông báo này bằng ngôn ngữ khác.

中国:如果您希望以其它语言收到此通知,请联系 Privacy-rai@target.com。