Privacy statement

This privacy statement was last updated on March 15, 2019 


PwC is strongly committed to protecting personal data. This privacy statement describes why and how we collect and use personal data and provides information about individuals’ rights in relation to personal data. It applies to personal data provided to us, both by individuals themselves or by others. We may use personal data provided to us for any of the purposes described in this privacy statement or as otherwise stated at the point of collection.

As used in this privacy statement, “PwC”, “us”, and “we” refer to the PwC Member Firms operating in Taiwan. 

Please see for a list of all PwC Member Firms operating in Taiwan. 

Member Firm means an entity or partnership within the worldwide network of PricewaterhouseCoopers firms and entities, each of which is a separate and independent legal entity. For further details, please see  For a list of countries and regions where PwC firms are located, please see

In this privacy statement, we refer to information about you or information that identifies you as “personal data” or “personal information”. We also sometimes collectively refer to handling, collecting, protecting or storing your personal information as “processing” such personal information.

PwC processes personal data for numerous purposes. Our policy is to be transparent about why and how we process personal data. 

To find out more about our specific processing activities, go to Our processing activities.

Many of Our processing activities require some personal data to be collected. If you choose not to provide us with the necessary data, PwC may not be able to provide the processing activities for you.  

  • By providing personal information to us, you acknowledge that you have read this privacy statement, and subject to your explicit consent which we may separately seek from you as may be required under certain circumstances, you consent to the terms of this privacy statement (including international transfers as set out in this privacy statement to countries outside where you are located).
  • If you do not agree with the terms in this privacy statement and have concerns about the categories of personal data we require from you, please do not provide any personal information to us without contacting us.
  • If you are an individual based in the European Economic Area (“EEA”) and the European Union General Data Protection Regulation (“GDPR”) is applicable to PwC in providing the processing activities in question, we may rely on legal basis other than consent to process your personal information as set out in Appendix 1.

Transfers of personal data

Cross-border transfers

If we process your personal information, your personal information may be transferred to and stored outside the country where you are located. Your personal data maybe disclosed/transferred to, processed and stored by the following categories of recipients for the purposes as described in this privacy statement. 

Other PwC Member Firms

For details of PwC Member Firm locations, please see

We may share personal data with other PwC member firms where necessary in connection with the purposes described in this privacy statement. For example, when providing professional services to a client we may share personal information with PwC Member Firms in different territories that are involved in providing advice to that client.

Third Party Providers

We may transfer or disclose the personal data we collect to third party contractors, subcontractors, and/or their subsidiaries and affiliates. Third parties support the PwC Network in providing its services and help provide, run and manage IT systems. Examples of third party contractors we use are providers of identity management, website hosting and management, data analysis, data backup, security and cloud storage services. The servers powering and facilitating our IT infrastructure are located in secure data centres around the world, and personal data may be stored in any one of them.

The third party providers may use their own third party subcontractors that have access to personal data (sub-processors). It is our policy to use only third party providers that are bound to maintain appropriate levels of security and confidentiality, to process personal information only as instructed by PwC, and to flow those same obligations down to their sub-processors.

Other disclosures

We may also disclose personal information under the following circumstances:

  • with professional advisers, for example, law firms, as necessary to establish, exercise or defend our legal rights and obtain advice in connection with the running of our business. Personal data may be shared with these advisers as necessary in connection with the services they have been engaged to provide;
  • when explicitly requested by you;
  • when required to deliver publications or reference materials requested by you;
  • when required to facilitate conferences or events hosted by a third party;
  • To law enforcement, regulatory and other government agencies and to professional bodies, as required by and/or in accordance with applicable law or regulation. PwC may also review and use your personal information to determine whether disclosure is required or permitted.

Where we collect personal information from within the EEA, in circumstances where the GDPR is applicable to PwC in the processing activities in question, please refer to Appendix 1.


We have implemented generally accepted standards of technology and operational security in order to protect personal information from loss, misuse, alteration or destruction. Only authorised persons are provided access to personal information; such individuals have agreed to maintain the confidentiality of this information.

Although we use appropriate security measures once we have received your personal data, the transmission of data over the internet (including by e-mail) is never completely secure. We endeavor to protect personal data, but we cannot guarantee the security of data transmitted to or by us.

Your legal rights in relation to personal data

In relation to the personal information we hold about you,  you have rights to:

  • make enquires or request to review your personal information
  • request a copy of your personal information
  • request to supplement or correct your personal information provided that you shall make an appropriate explanation
  • request to suspend collection, processing or use of your personal information
  • request to delete your personal information 

In you are in individual based in the EEA and GDPR is applicable to PwC in processing the processing activities in questions, you may be entitled to additional rights (Please see Appendix 1).


Changes to this privacy statement

This privacy statement was last updated on March 15,  2019 

We may update this privacy statement at any time by publishing an updated version here. So you know when we make changes to this privacy statement, we will amend the revision date at the top of this page. The new modified or amended privacy statement will apply from that revision date. Therefore, we encourage you to review this privacy statement periodically to be informed about how we are protecting your information.

Contact us

If you have questions or complaints about this privacy statement or the way your personal information is processed, or would like to exercise a legal right in relation to your personal data, please submit a request via link below.

Privacy Request