Latest update: September 29th , 2020
Definition of our Services
We collect personally identifiable information (PII) and various other non PII information (like inputs for assessments called assessment data) from the users for offering our services. Personal information collected may include name, email address, postal address, telephone number, age and other such data. We require these details and other assessment data collected to provide the services we offer. We also reach out to our users for their feedback on their usage of our services and with offers and promotions etc.
Who all get to see the Information ?
PII and non PII data collected for delivering our services will be exposed to employees, suppliers (e.g. technology providers) and our affiliates ( with your explicit consent when shared by us or subscribe to their services directly).
At an aggregate level the data collated would also be used for the purpose of research and owing to the same we reserve the right to collect and share with third parties demographic, psychometric and other anonymous information (e.g. aggregate statistical information) that does not personally identify you.
Secure Storage, Duration and Limited Liability
Your PII and other data is stored by us securely on Amazon Web Services Servers located at US, India and other locations globally. Although we provide appropriate security protections, we cannot warrant the security of any Personal Information transmitted as these systems are not hack proof. Data pilferage due to unauthorized hacking, virus attacks, technical issues is possible, and we take no liabilities or responsibilities for it. We will retain the Personal Information for as long as it is required to be retained for the purpose of provision of the Services and to comply with our legal obligations.
Data Privacy Rights & GDPR Compliance
We provide our services worldwide. By accessing or using our Services or otherwise providing information to us, you consent to the processing, transfer, and storage of information in and to India, US and other countries, which may have rights and protections that are different from those in your home country.
In particular for European Economic Area (“EEA”) and UK residents governed by the GDPR our services offered directly or in association with affiliates & suppliers using our Services may require your data to be transfer to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for us or for one of our affiliates or suppliers. By submitting your personal data, you agree to this transfer, storing or processing.
For offering our Services directly to users we act as a Data Processor and as a Data Controller as per GDPR. For such cases all the candidate information we receive or collect will be handled securely with adequate data protection by us and we will be solely responsible for it. The users can also request for retrival and deletion of their PII information. We will also ensure that we have an incident response plan to address an unforeseen incident that can put customers’ candidates’ personal information at risk, in accordance with the GDPR regulation.
For the Beacon services as described earlier, we process PII and non PII data on behalf of our affiliates and according to GDPR, we are considered a Data Processor and our affiliates are regarded as Data Controllers. We have signed appropriate data security arrangement with our affiliates to help safeguard user privacy rights and ensure GDPR compliance. In the capacity of a Data Processor, all the candidate information we receive or collect will be handled securely with adequate data protection. However in all such cases the main responsibility of compliance and coordinating data cleanup requests will be with our affliates. We do track all such requests made and our platform provides features to our affliates to delete PII data for users who have requested for the same.
Your Options and Choices
A user of our Services can get their Personal Identifiable Information retrieved or deleted by contacting us at email@example.com or by submitting a data deletion request form. Please note, however, that there might be latency in retrieving and deleting Personal Information from our servers (up to 30 days). Also note that once the Personal Information is deleted it cannot be retrieved. For newsletters and mailers you can always unsubscribe by following instructions mentioned in the email or writing to firstname.lastname@example.org
We reserve the right to make changes in this policy and we indicate all such change in this section of the website and we encourage you to check this regularly. For significant changes we may also write to our users on email or indicate the same to our affiliates on their panels as Pending Tasks.
Feedback or Clarifications
We are committed to maintain the highest standards of integrity and discretion in our operations and in case you have any feedback / comments please don’t hesitate to write to us at email@example.com.