Molson Coors – Job Applicant Privacy Notice

Effective Date: May 4, 2026

This privacy notice describes how Molson Coors Beverage Company, its subsidiaries, operating companies, and affiliates, and affiliated brands, agents, and corporate affiliates acting on our behalf (collectively, “Molson Coors”, “we”, “us”, and “our”) collect and process personal data as a controller of such data, our legal basis for processing personal data, and certain rights you may have under applicable data protection laws relating to your personal data and how you may exercise such rights. This privacy notice applies solely to job applicants. If you are offered a position with Molson Coors, please see our privacy notice for employees.

Your potential Molson Coors employer is the controller of your personal data. For further information on the entity responsible for your personal data, please reach out to [email protected].

Molson Coors uses job applicant personal data in a fair, transparent and lawful manner; this means that Molson Coors will collect and process personal data in accordance with applicable privacy laws. Protecting the privacy and personal data of applicants is of the utmost importance to Molson Coors and forms an integral part of how we create, organize and implement our recruiting activities.

• Personal Data Collected
• Purposes of Processing
• Our Use of AI in the Recruitment Process
• Disclosure of Personal Data
• Data Security and Retention
• International Data Transfers
• Your Rights
• California Residents
• Questions / Contact Us
• Notification of Changes

1. Personal Data Collected

We may collect, use, disclose and otherwise process (on required and optional bases) the following categories of personal data when you apply for a job with us:

• Main identifiers: name, alias, postal address, unique personal identifier (e.g., employee identification number – if applying as an internal candidate), age, whether you are of legal drinking age, online identifier, Internet Protocol (IP) address, email address, account name, or other similar identifiers.

• Other Identifiers: signature, telephone number.

• Characteristics of Protected Classifications under Applicable Laws: race, ethnicity, national origin, gender, disability, health data, date of birth which relatedly reveals age, citizenship status, gender identity and gender expression.

• Internet or Other Electronic Network Activity Information: browsing history, search history and information regarding your interaction with our websites.

• Geolocation: approximate geographic location by country.

• Audio, Electronic, Visual or Similar Information: photographs, recordings of virtual interviews, footage of security cameras on Molson Coors properties.

• Professional or Employment-Related Information: your resume/curriculum vitae for the position you are applying for, languages spoken, details contained within your cover letter supporting your application, information about your specific qualifications for that job, information about your current and previous employment, professional credentials, references, answers to questions, outcome of assessments performed during the recruitment process and information that you provide when you apply for a role.

• Education Information: Education history, degrees obtained, including the highest level of education you’ve achieved.

• Sensitive Personal Data: Personal data that you may share that is considered to be sensitive within your local jurisdiction. Please note that we do not use or disclose sensitive personal data for any purpose other than those permitted under applicable law.

The personal data that we collect, and process will be adequate, relevant and not excessive relative to the specified purposes for which the job applicant data is collected and processed.

Applicant data will be as accurate as possible and will be kept up to date as necessary in accordance with applicable laws.

The personal data, including the sensitive personal data, described above may be collected directly from you when you apply for employment or indirectly from other sources such as third parties for reference checks (e.g., past employers), recruitment agencies, publicly available professional profiles and other external sources such as social media and career platforms (e.g., LinkedIn).

2. Purposes of Processing

We may process the personal data, including the sensitive personal data, described above only for business purposes related to your application. Those purposes may include:

• To evaluate your qualifications and suitability for employment

• For administrative purposes (e.g., scheduling interviews), to maintain our applicant recruitment database, to provide information about open positions

• To administer pre-employment tests and training activity, including but not limited to task-based assessments

• To facilitate diversity and monitoring within our recruitment processes designed to ensure a fair process with an overall aim to reduce bias

• To enable us to make reasonable adjustments, where required by local laws, within our recruitment process

• To communicate with you throughout the recruitment process

• To provide you with any reasonable accommodations necessary during the recruitment process (e.g., conducting a virtual interview rather than an in-person interview for health reasons)

To prepare and maintain legally required records related to employment eligibility (such as I-9 forms in the U.S.)

• To provide the Molson Coors Careers web page to you

• To recommend job positions that may be right for you from Molson Coors, consistent with your contact preferences

• To personalize your experience with us based on your preferences and interactions with us. Please also see our general Privacy Policy located at: https://www.molsoncoors.com/privacy-policy

• To analyze usage of the Molson Coors Careers web page and trends to improve how we serve you and future applicants

• For legitimate business purposes such as record-keeping and reporting

• To comply with company policies and regulatory and legal requirements

• To meet tax obligations

• To detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, and prosecute those responsible for that activity

• As set forth in any other statements or notices provided to you at collection in relation to your employment application.

Our lawful bases for processing such personal data are as follows:

• Legitimate Interest. We use information for our legitimate interests. For instance, we use your personal data to contact you and respond to your requests and inquiries, for administrative purposes (e.g., to schedule interviews), to assess your suitability for the role that you applied for and for other roles that are available at Molson Coors, to identify, prevent and detect fraud or to pursue or defend ourselves against legal claims.

• Consent. We may use your information with your consent. In these instances, we will ask you to grant us consent to use your information. In countries where we are legally permitted to do so, we rely on explicit consent to process Sensitive Personal Data to carry out diversity monitoring. You are free to grant or deny permission. If you deny permission, we will not be able to process your information to conduct the activity to which the consent relates. For example, we will not be able to send you information about job openings that you may be interested in applying for. You are also free to withdraw your consent at any time. A withdrawal of consent will not affect processing that has been completed during the time in which the consent was valid. If you have granted us consent to use your information, we will use it only for the purposes specified when we request your consent.

• Fulfillment of Legal Obligations. We may use your information to comply with our legal obligations. To comply with regulations, laws or any authority requests, we may disclose your information to authorities or other officials or otherwise process your information pursuant to legal obligations we are subject to (e.g., respond to your requests to exercise your rights under applicable laws). This includes processing health-related information to comply with our employment law obligations to make reasonable adjustments or accommodations.

Molson Coors does not share your personal data with third parties for those third parties’ direct marketing purposes.

3. Our Use of AI in the Recruitment Process

We use AI tools to help make our recruitment processes more efficient. However, we do not make any recruitment decisions solely on the basis of AI assessments and we engage in meaningful human review at each stage of the application process. For certain roles we ask candidates to complete task-based assessments using a tool provided by Arctic Shores or AssessFirst. Arctic Shores and AssessFirst analyse how you complete certain tasks and generate scores that help us to evaluate your capabilities for specific roles. These scores are not used to substantially assist or replace discretionary decision making for making employment decisions. Instead, the scores are used by our Talent Acquisition team alongside all other information that we collect during the recruitment process to assess your application.

More information about how the Arctic Shores and AssessFirst tools uses your personal data can be found in their Privacy Policy which is available here: Arctic Shores Privacy Policy or AssessFirst Privacy Policy. 

4. Disclosure of Personal Data

We may disclose your personal data:

• With Our Parent Company, Subsidiaries, Affiliates or Other Related Companies. We may share your personal data with our parent company, subsidiaries, affiliates or other related companies to support the purposes in this privacy notice.

• With Third Party Service Providers Performing Services on Our Behalf. We share information, including personal data, with our service providers to perform the functions for which we engage them. These service providers may include, but are not limited to, background check agencies, human resource information system providers, data storage or hosting providers and similar service providers who support our recruitment process. In particular, we share your personal data with the following service providers:

  • Phenom and SuccessFactors are our recruitment platform providers;

  • Experian for right to work checks in the UK;

  • AssessFirst for task-based assessments in EMEA (as applicable);

  • Microsoft systems for emails and document storage;

  • Arctic Shores for task-based assessments in the UK; and,

  • Other service providers or vendors as applicable.

• For Legal Purposes. We also may share information that we collect as needed to enforce our rights, protect our property or protect the rights, property or safety of others, or as needed to support external auditing, compliance and corporate governance functions. We will disclose personal data as we deem necessary to respond to a subpoena, regulation, binding order of a data protection agency, legal process, governmental request or other legal or regulatory process. We may also share personal data as required to pursue available remedies or limit damages we may sustain.

• Corporate Changes. We may transfer information, including your personal data, in connection with a merger, sale, acquisition, reorganization, liquidation, or other change of ownership or control by or of us or any affiliated company (in each case whether in whole or in part).

5. Data Security and Retention

We have implemented appropriate physical, technical, and organizational security measures designed to secure your personal data against accidental loss and unauthorized access, use, alteration, or disclosure.

Molson Coors will only retain applicant data in relation to a particular vacancy as long as legally allowed after the recruitment and selection process. If there is a legal obligation to retain such applicant data longer, Molson Coors will do so (e.g. equal opportunity requirements in local employment laws). Molson Coors may also retain applicant data in relation to a particular vacancy if you have given your consent to keep the applicant data, e.g. keeping an applicant’s resume on file if a suitable vacancy arises.

We will retain the personal data, including sensitive personal data, described above as long as necessary to fulfill the purpose for which it was collected, or as required by applicable laws or regulations.

6. International Data Transfers

Due to the global nature of our operations, Molson Coors needs to be able to move personal data across our global organization. Accordingly, your personal data may be transferred to, or accessed, in any jurisdiction where Molson Coors has a presence, or to countries where third party service providers selected by Molson Coors operate. If we transfer your personal data outside of your home jurisdiction, we will take appropriate measures to protect your personal data in accordance with applicable data protection laws. We may transfer your personal data to a third party in a country that is different from where you live or work. Where this is the case, please note that we or the third party may be required to disclose your personal data in order to comply with local laws or regulations.

We require third parties and professional advisors to use appropriate measures to protect the confidentiality and security of the personal data. Where such international data transfer takes place from a UK/EEA country to a recipient in a country that has a different data protection regime, we will use appropriate legal safeguards, including EU Standard Contractual Clauses and UK International Data Transfer Addendum, to transfer such data so that such international data transfer will not negatively affect the level of protection of your personal data.

7. Your Rights

Under certain circumstances, depending on your jurisdiction and governing data protection law, you may have the following rights (note that you will always have these rights if you are applying for a role with a Molson Coors company located in the UK or the EEA):

• Right of Access. You have the right to obtain confirmation as to whether your personal data is being processed, as well as access to the personal data along with certain information, including the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipients to whom the personal data have been or will be disclosed.

• Right to Rectification. You have the right to rectify your inaccurate personal data and to complete any incomplete personal data, including by means of providing a supplementary statement.

• Right to Erasure or Right to be Forgotten. You have the right to erase your personal data under certain circumstances.

• Right to Restrict Processing. You have the right to restrict our processing of your personal data under certain circumstances.

• Right to Object. You have the right to object, on grounds relating to your particular situation, at any time to our processing of your personal data, which is based on public interest or our legitimate interests. In this case, we will stop processing your data, except for where we have compelling legal grounds for the processing which override your interests, rights and freedoms, or for the exercise or defense of possible legal claims. You also have a right to object to the processing of your personal data for direct marketing purposes.

• Right to Data Portability. Under certain circumstances, you have the right to receive your personal data that you provided to us in a structured, commonly used and machine-readable format, and have the right to transmit such data to another controller without hindrance from us.

• Right to Not be Subject to Automated Processing. You have the right to request not to be subject to a decision based solely on automated processing, including profiling, which produces significant effects impacting yourself. Molson Coors engages in meaningful human review at each stage of its application process and does not make decisions relating to recruitment by solely automated means.

• Right to Withdraw Consent. If you have provided us with your consent for the processing of your personal data, you may withdraw your consent at any time to stop any further processing.

• Right to Lodge a Complaint: If you are a UK resident, you have the right to make a complaint to Molson Coors, as data controller, if you are not happy about how your personal data has been processed or is being processed. You can raise your complaint with Molson Coors by emailing the Data Protection team at [email protected].

• Right to Lodge a Supervisory Authority Complaint. You have a right to lodge a complaint with the relevant supervisory authority if you believe that our processing of your personal data violates applicable data protection law.

We will not discriminate against you because of the choices and requests you make in connection with your personal data.

We may require sufficient information to allow us to confirm your identity before granting access or making corrections. This is a security measure designed to ensure that personal data is not disclosed to any person who does not have the right to receive it.

You can exercise your rights above at any time by completing the form located here: https://submit-irm.trustarc.com/services/validation/3ad0e69e-61e3-4b54-bc07-0de2e5c7306e or if you are applying within EMEA APAC, you may also contact your local HR team at [email protected].

8. California Residents

If you are a California resident, you have the following rights under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020, and its implementing regulations. Under the California Consumer Privacy Act of 2018 (“CCPA”), as amended by the California Privacy Rights Act of 2020 (“CPRA”), California residents have the following rights:

• Right to Know: You have the right to request that we disclose what personal data we collect, use, disclose, sell or share. Specifically, you may request that we disclose to you the following:

  • The categories of personal data we have collected about you.

  • The categories of sources from which the personal data is collected.

  • The business or commercial purpose for collecting, selling or sharing personal data.

  • The categories of third parties with whom we disclose personal data.

  • The specific pieces of personal data we have collected about you.

  • The categories of personal data that we have sold or shared about you and the categories of third parties to whom the personal data was sold or shared, by category or categories of personal data for each third party to whom the personal data was sold or shared.

  • The categories of personal data that we disclosed about you for a business purpose and the categories of persons to whom it was disclosed for a business purpose

• Right to Delete: You have the right to request that we delete any personal data about you which we have collected from you. If it is necessary for us to maintain your personal data for certain purposes, we are not required to comply with your deletion request. If we determine that we will not delete your personal data when you request us to do so, we will inform you and tell you why we are not deleting it.

• Right to Opt-Out of Sale or Sharing: You have the right to direct a business that sells or shares personal data about you to third parties not to sell or share your personal data. We do not sell your personal data for monetary consideration. However, we do use cookies and other tracking technologies on our publicly-facing website, as described in our general Privacy Policy located at: https://www.molsoncoors.com/privacy-policy. The collection of data through certain tracking technologies, including for our targeting advertising purposes, may be considered a “sale” and is considered “sharing” under the CCPA. This data collection is not directly related to your relationship to Molson Coors as a job applicant but may be collected from any user of our websites generally as set forth in our general Privacy Policy located at: https://www.molsoncoors.com/privacy-policy. To opt-out of having your information sold and or shared with third-party website analytics and digital advertising partners, please click on the “Do Not Sell or Share” link located at the footer of our website. We do not have actual knowledge that we sell or share personal data about minors under the age of 16.

• Right to Correct: You have the right to request a business that maintains inaccurate personal data about you to correct that inaccurate personal data, taking into account the nature of the personal data and the purposes of the processing of the personal data.

• Right to Limit Use and Disclosure of Sensitive Personal Data: You have the right to direct a business that collects sensitive personal data about you to limit its use of your sensitive personal data (1) to that use which is necessary to perform the services or provide the goods reasonably expected by an average consumer who requests those goods or services; (2) for certain business purposes; and (3) as authorized by the implementing regulations of the CCPA. We do not use or disclose any sensitive personal data for purposes other than those permitted under the CCPA.

• No Discrimination: We will not discriminate against you because you elect to exercise any of the rights related to your personal data.

You may exercise any of the rights above by calling us at 1-800-501-3584 or by completing the form here: https://submit-irm.trustarc.com/services/validation/3ad0e69e-61e3-4b54-bc07-0de2e5c7306e.

To submit a verifiable request, you will be asked to provide certain information to help us verify your identity. The information we ask you to provide to initiate a request may differ depending upon the type of request, the type, sensitivity and value of the personal data that is the subject of the request, and the risk of harm to you that may occur as a result of unauthorized access or deletion, among other factors.

You may designate an authorized agent to make a request on your behalf by providing the agent with signed written permission to do so.

If we cannot verify your identity or authority to make the request, we will not be able to comply with your request. We will inform you if we cannot verify your identity or authority. We will only use personal data provided in a verifiable request to verify the requestor’s identity or authority to make the request.

The following categories of personal data were sold or shared in the twelve (12) months prior to the effective date of this privacy notice:

• Main Identifiers: unique personal identifier, online identifier, Internet Protocol address, or other similar identifiers.

• Internet or Other Electronic Network Activity Information: browsing history, search history and information regarding your interaction with our websites. This data is collected through the Molson Coors Careers web page as noted through the cookie banner upon collection. This includes information associated with your browser behavior as it pertains to your employment application. Please see our general Privacy Policy here: https://www.molsoncoors.com/privacy-policy.

• Geolocation: approximate geographic location.

Such information is sold to or shared with our third-party website analytics and digital advertising partners.

We share or sell such information:

• To provide the Molson Coors Careers web page to you

• To recommend job positions that may be right for you from Molson Coors, consistent with your contact preferences

• To personalize your experience with us based on your preferences and interactions with us. Please also see our general Privacy Policy located at: https://www.molsoncoors.com/privacy-policy

• To analyze usage of the Molson Coors Careers web page and trends to improve how we serve you and future applicants

• For legitimate business purposes such as record-keeping and reporting

• To comply with company policies and regulatory and legal requirements

• To detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, and prosecute those responsible for that activity

• As set forth in any other statements or notices provided to you at collection.

The CCPA requires businesses to process opt-out preference signals (“OOPS”), such as global privacy control (“GPC”) signals, which are signals sent by a platform, technology or mechanism, enabled by individuals on their devices or browsers, that communicate the individual’s choice to opt-out of the sale and/or sharing of personal data. To use an OOPS/GPC, you can download an internet browser or a plugin to use on your current internet browser and follow the settings to enable the OOPS/GPC (for example, https://globalprivacycontrol.org/). We have configured the settings of our consent management platform to receive and process GPC signals on our publicly-facing website.

As noted in our general Privacy Policy located at https://www.molsoncoors.com/privacy-policy, our website does not currently take action when it receives a Do Not Track request. Do Not Track is a privacy preference that you can set in your web browser to indicate that you do not want certain information about your webpage visits collected across websites when you have not interacted with that service on the page. For details, including how to turn on Do Not Track, visit www.donottrack.us

9. Questions / Contact Us

If you have any questions regarding this privacy notice, please contact us at:

[email protected]

10. Notification of Changes

Any changes to this privacy notice will be posted to this page so users are always aware of the information we collect and how we use it. Accordingly, please refer back to this privacy notice frequently as it may change.