Effective Date: JANUARY 1, 2020
Last Updated: JANUARY 1, 2023
bp America Inc. ("bp", “we” or “us” or “our”) takes your privacy seriously and is committed to protecting your personal information. This Privacy Statement informs you how bp processes and protects your personal information.
This Privacy Statement applies to all personal information collected during any written, electronic, and oral communications or collected online (collectively, the “Services”), which include: the website located https://www.bp.com/us and all corresponding webpages and websites that link to this Privacy Statement ("Site"); bp mobile, web, console, desktop and other applications, including BPme Rewards (e.g., Apple iOS Apps, etc.) (collectively and individually, "BP App"); and any other content, applications, features, functionality, information and services offered by us though the Site and/or the bp Apps.
Use of our Services is subject to our Conditions of Use, which you can view here: https://www.bp.com/en_us/united-states/home/legal-notice.html (“Conditions of Use”) and this Privacy Statement. Please read the Conditions of Use and this Privacy Statement carefully before you use our Services. By using our Services, you accept the Conditions of Use and accept our privacy practices described in this Privacy Statement. If you cannot accept the Conditions of Use and the practices outlined in this Privacy Statement, you must not use or access our Services.
We may modify this Privacy Statement at any time, without prior notice, and changes may apply to any personal information we already hold about you, as well as any new personal information collected after the Privacy Statement is modified. If we make changes, we will notify you by revising the date at the top of this Privacy Statement. We will provide you with advanced notice if we make any material changes to how we collect, use or disclose your personal information that impact your rights under this Privacy Statement. If you continue to access or use our Services after receiving the notice of changes, you acknowledge your acceptance of the updated Privacy Statement.
In addition, we may provide you with real time disclosures or additional information about the personal information handling practices of specific parts of our Services. Such notices may supplement this Privacy Statement or provide you with additional choices about how we process your personal information.
We collect personal information when you use our Services, create an account with us or submit personal information to us. personal information is any information that relates to you, identifies you personally or could be used to identify you, such as your user ID, name, email address, phone number, address, and payment account number. The types of personal information that we may collect about you include, but are not limited to:
a. Information You Voluntarily Provide to Us on Our Services
If you decide to contact us or make use of personalized services (e.g., by filling in a form on our Site), then you will be asked to submit limited personal information which is necessary for us to provide applicable Services to you. Providing personal information this way is voluntary. If any form which collects your personal information allows you to voluntarily provide additional information, we seek this information because we think it will help us to give you a better-quality service. You do not have to provide such information if you do not wish to do so.
b. Information You Provide to Us Through the BPme Rewards Program
When you first register for BPme Rewards, BP must collect personal information so that you can participate in our loyalty program. We require your name, email address and a mobile phone number to operate the program. This information will be used to establish an account for you and to email you a unique password so that you can access your BPme Rewards account. Once you have received your password and access to your account, you have the choice to provide your mailing address to help us deliver more relevant and personalized offers and marketing communications. You will also be asked whether you would like to receive email or text message marketing communications from BP. When you use BPme Rewards we will collect information relating to the purchases and transactions you undertake at BP locations to operate the loyalty program.
c. Information You Provide to Our Affiliates and Subsidiaries
We may get your personal information from a company controlled by or under common control with BP.
d. Site Traffic Information and Cookies
When you use the Services online or through our mobile app, we automatically collect information about the Services you use and how you use them by using cookies, tags, and similar technologies to automatically collect information in connection with our Services. To learn more about our usage of the cookies and other tracking technologies, please see section 2 below.
e. Third-party registration and login
For your convenience, you have the option to register or log in to your BPme Rewards account through third-party services. Using your social media, email, or mobile device account to register or log in to your BPme Rewards account is optional. If you choose this option, we will have access to your third-party account information from that service (specifically, your e-mail address and password), as authorized by that service. We will use this information solely for the purpose of verifying that your information submitted is accurate for using your social media, email, or mobile device account to log in to gain access to your BPme Rewards account to receive the Services. We will not provide any of your BPme Rewards account information to your third-party account. You have the ability to disable the connection between your BPme Rewards account and your third-party account at any time without losing access to your BPme Rewards account.
To the extent we process deidentified information, we will maintain and use the information in deidentified form and will not attempt to reidentify the information unless otherwise done for the purposes identified in this Statement or permitted by applicable law.
The cookies are small web files that a site or its provider transfers to your device’s hard drive through your web browser that enables the Site’s or provider’s system to recognize your browser and remember certain information.
Generally, we use first-party and third-party cookies for the following purposes: to make our Services function properly; to provide a secure browsing experience during your use of our Services; to collect passive information about your use of our Services; to measure how you interact with our marketing campaigns; to help us improve our Services; and to remember your preferences for your convenience.
We use the following types of cookies on our Services:
b. Other Tracking Technologies
To see how successfully our marketing campaigns or other Site goals are performing we sometimes use conversion pixels, which fire a short line of code to tell us when you have clicked on a particular button or reached a particular page (e.g. a thank you page once you have completed the procedure for subscribing to one of our services or have completed one of our forms). We also use web pixels to analyze usage patterns on our Site. The use of a pixel allows BP to record that a particular device, browser, or application has visited a particular webpage. As described above, we may share your personal information by allowing these third-party ad and analytics services to collect personal information via automated technologies on our Services for cross-context behavioral advertising purposes. The sharing also may be considered processing of personal information for targeted advertising under applicable law. Please see the “Your Choices” section below for additional information on the rights to opt-out of this disclosure of your information. We do not sell your personal information in exchange for monetary compensation.
c. Your Choices
Depending on whether you would like to manage a first-party or third-party cookie, you will need to take the following steps:
If you are a Virginia consumer, you may have the right to (1) request access to, correction of, or deletion of your personal information; and (2) opt-out of the processing of your personal information for purposes of targeted advertising or certain profiling. To exercise these rights, please contact us by phone at 1(800) 333-3991 or by email at firstname.lastname@example.org. You also may opt out of the processing of your personal information for purposes of targeted advertising by clicking here. You may appeal our decision with respect to a request you have submitted by emailing us at email@example.com.
We will only use your personal information as described in this Privacy Statement or as disclosed to you prior to such processing taking place.
a. To Provide You Our Services
We will use your personal information to provide information or perform Services that you request. If the applicable information is to be provided or Service is to be performed by a third party, then we will disclose the applicable information to the third party providing the information or performing applicable Services. All third parties that we work with are contractually obligated to protect your information as disclosed in this Privacy Statement.
b. For Internal Use
We use your personal information for the purposes of furthering our business, including improving our Site's content and functionality by analyzing where, on which types of devices and how our Site is used, how many visitors we receive, and where they click through to the Site from. We also use it to remember you in case you re-visit our Site, so we will know if you have already been served with surveys, or (where Site content is undergoing testing) which version of the content you were served.
c. To Provide You with Service-Related Communications
We will send you administrative or account-related information to keep you updated about your account and the Services. Such communications may include information about Privacy Statement updates, confirmations of your account actions or transactions, security updates or tips or other relevant transaction-related information. We process your contact information to send you such communications. Service-related communications are not promotional in nature. You are not able to unsubscribe from such communications, otherwise you may miss important developments relating to your account or the Services.
d. To Provide Customer Support or Respond to You
We collect any information that you provide to us when you contact us. Without your personal information, we cannot respond to you or ensure your continued use and enjoyment of the Services.
e. To Ensure the Security of the Services
We care about keeping you secure and safe while using our Services. Keeping you safe requires us to process your personal information, such as your device information, activity information and other relevant information. We use such information to combat spam, malware, malicious activities, or security risks; improve and enforce our security measures; and to monitor and verify your identity so that unauthorized users do not gain access to your information. We cannot ensure the security of our Services if we do not process your personal information for security purposes.
f. To Enforce Compliance with Our Terms and Agreements or Policies
When you access or use our Services, you are bound to our Conditions of Use and this Privacy Statement. To ensure you comply with them, we process your personal information by actively monitoring, investigating, preventing, and mitigating any alleged or actual prohibited, illicit or illegal activities on our Services. We also process your personal information to investigate, prevent or mitigate violations of our internal terms, agreements or policies and enforce our agreements with third parties and business partners.
g. To Maintain Legal and Regulatory Compliance
Our Services are subject to certain laws and regulations which may require us to process your personal information. For example, we process your personal information to pay our taxes, to fulfill our business obligations, ensure compliance with employment and recruitment laws or as necessary to manage risk as required under applicable law. Without processing your personal information for such purposes, we cannot perform the Services in accordance with our legal and regulatory requirements.
h. To Operate the BPme Rewards Loyalty Program
We use your information to operate the BPme Rewards loyalty program, for example to track your progress toward meeting the monthly fuel spend threshold, provide other services related to the program and ensure that the applicable Conditions of Use are observed. We also use your personal information related to the BPme Rewards loyalty program for the following purposes:
i. To Send You Relevant Direct Marketing Communications – As part of the registration process, you will be asked to indicate your preferences for receiving bp marketing communications containing information and offers about bp products, promotions and services and those of our partners in the program such as bp branded credit cards. These communications may, depending on your selected preferences, be sent from bp by email, text, push notification, and mail. You can opt out of receiving these direct marketing communications at any time by following the instructions set out in each marketing communication or by changing your preferences within your account settings on the app, on the BPme Rewards website or by contacting firstname.lastname@example.org.
ii. To Provide You Personalized Offers – bp will use your information to analyze and understand your shopping behavior based on your purchases at bp or Amoco locations so that we can provide you with personalized bp offers and marketing communications which we think will be of interest to you. To help us better understand you as a customer, we will also analyze how you use the loyalty program and how you interact with our app and other marketing channels, including assessing the effectiveness of our offers and marketing communications. As part of this, we can show or send you tailored bp offers and advertisements when you are browsing the internet using cookies. Please visit section 2 of this Privacy Statement to find out more about our cookie usage.
iii. To Conduct Customer Research and Surveys – We will use your BPme Rewards data to send you invitations by email to participate in voluntary surveys so that we can improve the BPme Rewards program, our offers and customer communications.
We will also analyze and use your data (on an anonymized, aggregate level which does not identify any specific information, to carry out research into how customers are interacting with bp and the loyalty program so that we can improve our products, services, and customer communications.
We may disclose your personal information as described below.
a. Within Our Corporate Organization
bp is a part of a corporate organization that has many legal entities, business processes, management structures and technical systems. bp may share your personal information within this organization to provide you with the Services and take actions based on your request. Where this is the case, we do this under a comprehensive, flexible, and global compliance framework which implements appropriate measures and safeguards to ensure that your personal information is protected in accordance with applicable data protection laws.
b. Service Providers
We may share your personal information with service providers acting on our behalf to help us operate our Services. These service providers can only use your data in accordance with our written instructions and must comply with the information security protections we have put in place.
c. Marketing Partners
We may share your personal information with other entities that offer affiliated services such as bp branded credit cards that enable you to redeem the benefit of the Services.
d. To Maintain Legal and Regulatory Compliance
We have the right to disclose your personal information as required by law, or when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, request from a regulator or any other legal process served on bp. If there is a takeover, sale, or purchase of our business, we may disclose your personal information to the new (or prospective) owner of the business.
We take precautions to protect data and information under our control from misuse, loss, or alteration. Our security measures include industry-standard physical, technical, and administrative measures to prevent unauthorized access to or disclosure of your information, to maintain data accuracy, to ensure the appropriate use of information, and otherwise safeguard your personal information.
Please recognize that protecting your personal information is also your responsibility. We ask you to be responsible for safeguarding your password, secret questions and answers and other authentication information you use to access our Services.
We will retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected as noted in section 3 and 11(b). We may retain some of your personal information for a longer period insofar as it may be necessary to defend or prosecute any legal claim(s).
Generally, we retain the information you provide when you register, together with information we collect about you and your use of the program, for the duration of your membership of the program. If you request account deletion, we will delete, aggregate or deidentify your associated account data so that it no longer identifies you. We may also continue to use the aggregated or deidentified form of the data for statistical and analytical purposes.
This section applies only to California residents and does not apply to personal information collected about BPPNA personnel, job applicants or business partners. This section uses certain terms that have the meanings given to them in the California Consumer Privacy Act of 2018 (as amended by the California Privacy Rights Act of 2020) and its implementing regulations (collectively, the “CCPA”). For more information about the personal information we collect and how we collect it, please refer to sections 1 and 2 above.
a. Personal information categories we collect.
We may collect (and may have collected during the 12-month period prior to the Last Updated date of this section 11) the following categories of personal information when you use our Services:
b. Purposes for Processing personal information.
We may use (and may have used during the 12-month period prior to the Last Updated date of this section 11) your personal information for the purposes described in section 3 and for the following business purposes:
c. Retention of Personal Information.
We will retain your personal information in accordance with section 7 above, but in no case longer than the time period reasonably necessary to achieve the purposes described in section 3 and section 11(b), or any other notice provided at the time of collection, taking into account applicable statutes of limitation and records retention requirements under applicable law.
d. Sources of Personal Information.
We may obtain your personal information from the following sources:
e. Sale or Sharing of Personal Information.
We do not sell your personal information in exchange for monetary compensation. We may share your personal information by allowing certain third parties who may also be our service providers (such as online advertising services and social networks) to collect personal information via automated technologies on our Services for social networking and cross-context behavioral advertising purposes. This kind of sharing, to third parties who are not our service providers, may be considered a “sale” under California law when the personal information is exchanged for non-monetary consideration. You have the right to opt out of these types of disclosures of your information.
We may sell or share for cross-context behavioral advertising purposes (and may have sold or shared during the 12-month period prior to the Last Updated date of this section 11), the following categories of personal information about you to online advertising services and social networks:
To the extent we “sell” or “share” your personal information, you have the right to opt-out of this disclosure of your information, as detailed below. We do not have actual knowledge that we sell or share the personal information of minors under 16 years of age.
f. Disclosure of personal information.
During the 12-month period prior to the Last Updated date of this section 11, we may have disclosed the following categories of personal information about you for a business purpose to the following categories of third parties:
|Categories of Personal Information||Categories of Third Parties|
You have certain choices regarding your personal information, as described below
h. How to submit a request.
To submit an access, correction or deletion request, please contact us as email@example.com or by phone at 1-800-333-3991. To opt out of the sale or sharing of your Personal Information, click here. To submit a request as an authorized agent on behalf of a consumer, please e-mail firstname.lastname@example.org with the subject line Authorized Agent Request”. To submit a Shine the Light request, please contact us at email@example.com. In your request, please specify that you want a “California Privacy Rights Notice.
i. Verifying Requests.
To help protect your privacy and maintain security, we will take steps to verify your identity before granting you access to your personal information or complying with your deletion or correction request. If you have an online account with us, we may verify your identity by requiring you to sign into your account. If you do not have an online account with us and you request access to, correction of or deletion of your personal information, we may require you to authenticate your email address on record with us or to provide information about your transactions or prior interactions with us. In addition, if you ask us to provide you with specific pieces of personal information, we may require you to sign a declaration under penalty of perjury that you are the consumer whose personal information is the subject of the request.
j. Additional Information.
If you choose to exercise any of your rights under the CCPA, you have the right to not receive discriminatory treatment by us. To the extent permitted by applicable law, we may charge a reasonable fee to comply with your request.
k. Notice of Financial Incentive.
The BPme Rewards Program (the “Program”) offer members of the Program certain benefits in connection with their disclosure of personal information to bp. Such benefits may include offers such as BPme Rewards, Price Match, ScoreCard Rewards, credit card offers, or grocery rewards.
To participate in the Program, we require your first and last name, email address and phone number. When you register through the App, you also may provide a credit card number, debit card number or other financial information. We also collect the categories of personal information mentioned in Sections 1 and 11(a) above in connection with your participation in the Services.
Subject to certain restrictions, the Program offers members 5 cents off per gallon on every fuel purchased at participating bp and Amoco fuel stations. Additionally, members can participate in the subscription-based Price Match offer and receive the lowest price fuel of nearby gas stations up to a maximum discount of 5 cents per gallon. Members may also link their ScoreCard Rewards card and receive additional savings. Members may also receive credit card offers from bp’s co-branded credit card partner. Occasionally, BPme members receive additional savings, discounts, exclusive pricing and promotional offers provided as part of the Program. In addition, we may send members marketing and promotional communications by email, phone or through our App. For more information on the terms of the Program, please see the BPme Rewards Terms and Conditions, available here.
During registration, you must first consent to the BPme Rewards Terms and Conditions and create an account on our Site or App. You may withdraw from the Program at any time by accessing the deletion option in the App.
The Program offers certain financial incentives (including additional savings, discounts, exclusive pricing, and promotional offers) in exchange for the collection, retention, and the potential sale and sharing of the personal information we require for your participation in the Program. The savings, discounts, exclusive pricing, and promotional offers for members offered in connection with the Program, are reasonably related to our good faith estimate of the value provided to bp by your personal information. We estimate that the value to bp of the personal information you provided to facilitate participation in the Program is reasonably related to the financial incentives less the expenses related to offering these financial incentives.