Expedia Group holds the APEC- CBPR certification.

The APEC CBPR system provides a framework for organizations to ensure protection of personal information transferred among participating APEC economies.

The APEC Cross-Border Privacy Rules (CBPR) System was developed by APEC economies with input and assistance from industry and civil society to build consumer, business and regulator trust in cross border flows of personal information. The APEC CBPR System requires participating businesses to implement data privacy policies consistent with the APEC Privacy Framework. These policies and practices must be assessed as compliant with the program requirements of the APEC CBPR System by an Accountability Agent (an independent APEC CBPR system recognised public or private sector entity) and be enforceable by law.

About CBPRS

The APEC Cross-Border Privacy Rules (CBPR) System, endorsed by APEC Leaders in 2011, is a voluntary, accountability-based system that facilitates privacy-respecting data flows among APEC economies.

There are currently nine participating APEC CBPR system economies: USA, Mexico, Japan, Canada, Singapore, the Republic of Korea, Australia, Chinese Taipei and the Philippines with more expected to join soon.