This Privacy Policy is issued by Allsec Technologies Limited, a global company providing business process solutions across different industry verticals.
Allsec Technologies Limited (the “Company”) is committed to maintaining robust data privacy protections for its users. Our Privacy Policy (“Privacy Policy”) is designed to help you understand how we collect, use and protect the personal data that we process and control pertaining to data subjects.
ALLSECTECH MANILA, INC is a subsidiary of Allsec Technologies Limited.
For purposes of this notice, “Site” refers to the corporate website and its subsidiaries, which can be accessed at www.allsectech.com (corporate website) and www.astigonline.com (subsidiary website - Allsectech Manila, INC). The term “we,” “us,” and “our” refer to the Company and its Subsidiaries. “You” refers to you, as a user of our Site or our Service. By accessing our Site, your IP address will be captured automatically for Information security purpose and to enhance user experience. Privacy Policy outlines our data collection, storage, use and disclosure of your Personal Information as described below.
I. INFORMATION WE COLLECT
We collect “Non-Personal Information” and “Personal Information.” Non-Personal Information includes information that cannot be used to personally identify you, such as anonymous usage data, general demographic information we may collect, referring/exit pages and URLs, platform types, preferences you submit and preferences that are generated based on the data you submit and number of clicks.
On Personal Information front, we capture IP address only for EU / UK citizen, or resident of EU / UK region in our corporate website. However, in our subsidiary website besides IP address we also capture the Name, Contact details, Email ID, etc., required as part of the interest expressed to apply for a suitable career opportunity with us. For all other visitors, we capture IP address and additionally Name, email id and description only if you post the same in “Write To Us” section under Contact page in this website.
1. Information collected via Technology
In an effort to improve the quality of the Service, we may track information using cookies or small text files provided to us by your browser when you view our Site, such as the website you came from (known as the “referring URL”), the type of browser you use, the device from which you connected to the Service, the time and date of access, clickstream to, through, and from our site, and other information that does not personally identify you besides the origin of request (IP Address).
The Company may use both persistent and session cookies to track user’s preferences when utilizing our services. Persistent cookies shall remain on your computer after you close your session and until you delete them manually. Session cookies expires or destroys the moment browser is closed.
2. Collection of personal data
We capture only IP address for EU / UK citizen, or resident of EU / UK region in our corporate website.
We collect personal data other than IP address for one or more of the following purposes:
· To provide you with information that you have requested or that we think may be relevant to a subject in which you have demonstrated an interest.
· To ensure the security and safe operation of our websites and underlying business infrastructure.
· To manage any communication between you and us.
3. Lawful basis for the processing of personal data
The table below describes the various forms of personal data that we collect and the lawful basis for processing this data. We have processes in place to make sure that only those authorized people who need to access your data can do so.
Purpose
of collection |
Information
category |
Data
collected |
Purpose
for collection |
Lawful
basis for processing |
Data
shared with? |
Retention
period |
1.
Security |
Security
information |
Technical
information, as described above (I – 1). |
To
protect our websites and infrastructure from cyber-attack or other threats
and to report and deal with any illegal acts. |
Legitimate
interest |
Internally,
forensic and other organizations with which we might contract for this
purpose. |
As
long as needed in order to comply with local laws and meet other legal
obligations. |
2. Career
& Communications (applicable only
for our subsidiary website – Careers section) |
Subject
matter information and Contact information |
Names,
contact details, identification details etc. |
To
communicate with you about the request you have expressed with us or which
follows from an interaction between us. |
Legitimate
interest |
Internally
and, as necessary, with professional advisers. |
As
long as needed in order to comply with local laws and meet other legal
obligations. |
Personally
Identifiable Information |
Candidates
who have applied for the suitable post but have not got selected |
Legitimate
Interest |
Internally
and, as necessary, with professional advisers |
Minimum
of 6 months and maximum of 7 months from the date of successful submission |
||
|
Resumes
/ CVs for suitable career opportunity |
Candidate
who got selected and offered suitable job |
Legal
obligation |
Internally
and, as necessary, with professional advisers and other government
organizations |
Maximum
of 5 years post their tenure with the organization in order to comply with local
laws and meet other legal obligations. |
4. Children’s Privacy
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we shall take steps to remove that information from our servers.
II. HOW WE USE AND SHARE INFORMATION
Personal Information: Except as otherwise stated in this Privacy Policy, we do not sell, trade, rent or share your Personal Information with third parties without your consent. We do share your IP address information with few of our vendors who provide specific professional services for the Company to enhance user experience and support in business development. Those vendors use your Personal Information i.e. IP address as per our control and in accordance with our Privacy Policy.
We may share your Personal Information with outside parties if it is reasonably necessary to meet any applicable legal process or enforceable governmental request; to enforce applicable Terms of Service, including investigation of potential violations; address fraud, security or technical concerns; or to protect against harm to the rights, property, or safety of our users or the public as required or permitted by law.
Non-Personal Information: In general, we use Non-Personal Information to help us improve the Service and customize the user experience. We also aggregate Non-Personal Information in order to track trends and analyze use patterns on the Site. This Privacy Policy does not limit in any way our use or disclosure of Non-Personal Information and we reserve the right to use and disclose such Non-Personal Information to our partners, service providers and other third parties at our discretion.
If our information practices change at any time in the future, we will post the policy changes to the Site so that you may opt out of the new information practices. We suggest that you check the Site periodically if you are concerned about how your information is used.
III. HOW WE PROTECT INFORMATION
We implement reasonable security measures designed to protect your information from unauthorized access. We further protect your information from potential security breaches by implementing certain technological security measures including Pseudonymization, Firewalls and Secure Transmission channel. However, these measures do not guarantee that your information will not be accessed, disclosed, altered or destroyed by breach of such firewalls and secure server software. Decision to share any of your personal data to us is your choice. However, please note that if you do not provide certain information, we may not be able to provide the expected services and you may not be able to use our Site. By using our Site, you acknowledge that you understand and agree to assume these risks.
IV. YOUR RIGHTS REGARDING THE USE OF YOUR PERSONAL INFORMATION
As a data subject, (i) citizen or (ii) residing and located in the European Union, whose personal information we hold, you have certain rights. These rights are not applicable in case of IP address as this is captured for security reasons. However, these rights are applicable for the personal information that we collect in subsequent correspondence if at all such correspondence takes place.
If you wish to exercise any of these rights in such scenario, please email dpo@allsectech.com or use the information supplied in the Contact us section below. To process your request, we will ask you to provide details of identification for verification purposes. Your rights are as follows:
- The right to be informed
As
a data controller, we are obliged to provide clear and transparent information
about our data processing activities. This is provided by this privacy policy
and any related communications we may send you.
- The right of access
You
may request a copy of the personal data we hold about you for a fee. Once we
have verified your identity and, if relevant, the authority of any third-party
requestor, we will provide access to the personal data we hold about you as
well as the following information:
a.
The
purposes of the processing
b.
The
categories of personal data concerned
c.
The
recipients to whom the personal data has been disclosed
d.
The
retention period or envisioned retention period for that personal data
e.
The
source of the personal data if collected from other sources
If
there are exceptional circumstances that mean we can refuse to provide the
information, we will explain them. If requests are frivolous or vexatious, we
reserve the right to refuse them. If addressing the requests are likely to take
time or incur expenses (which you may have to meet), we will inform you.
- The right to rectification
When
you believe we hold inaccurate or incomplete personal information about you,
you may exercise your right to correct or complete this data. This may be used
with the right to restrict processing to make sure that incorrect/incomplete
information is not processed until it is corrected.
- The right to erasure (the ‘right
to be forgotten’)
Where
no overriding legal basis or legitimate reason continues to exist for
processing personal data, you may request that we delete the personal data. We
will take all reasonable steps to ensure erasure.
- The right to restrict processing
You
may ask us to stop processing your personal data. We will still hold the data,
but will not process it any further. This right is an alternative to the right
to erasure. If one of the following conditions applies you may exercise the
right to restrict processing:
a.
The
accuracy of the personal data is contested.
b.
Processing
of the personal data is unlawful.
c.
We
no longer need the personal data for processing but the personal data is
required for part of a legal process.
d.
The
right to object has been exercised and processing is restricted pending a
decision on the status of the processing.
- The right to data portability
You
may request your set of personal data be transferred to another controller or
processor, provided in a commonly used and machine-readable format. This right
is only available if the original processing was on the basis of consent, the
processing is by automated means and if the processing is based on the fulfillment
of a contractual obligation.
- The right to object
You have the right to object to our processing of your data where - Processing is based on legitimate
interest;
- Processing is for the purpose of
direct marketing;
- Processing is for the purposes of
scientific or historic research; or
- Processing involves automated
decision-making and profiling.
V. INTEGRATION WITH EXTERNAL COMPONENTS AND LINKS TO OTHER WEBSITES
As part of our Site functionality, we have integrated third-party plug-ins or components in our websites, provided links from our websites or sources to external websites. However, we are not responsible for the privacy practices employed, including their intent or behavior by those external sources or websites. This Privacy Policy applies solely to information collected by us through our Site. Therefore, this Privacy Policy does not apply to your use of a third party plug-ins or components or website accessed by selecting a link on our Site or via our Site. To the extent that you access or use the Service through or on another website or application, then the privacy policy of that other website or application will apply to your access or use of that site or application. We encourage our users to read the privacy statements of other websites before proceeding to use them.
Google Analytics - https://termsfeed.com/blog/privacy-policy-google-analytics/
WordPress - https://wordpress.org/about/privacy/
SharpSpring - https://sharpspring.com/legal/privacy/
VI. CHANGES TO OUR PRIVACY POLICY
The Company reserves the right to change this policy and our Terms of Service at any time. We will notify you of significant changes to our Privacy Policy by placing a prominent notice on our site. Significant changes will go into effect 30 days following such notification. Non-material changes or clarifications will take effect immediately. You should periodically check the Site and this privacy page for updates.
VII. CONTACT US
If you have any questions regarding this Privacy Policy, please contact us by sending an email to dpo@allsectech.com
Alternatively, you can contact us at our corporate office using the following postal address
The Data Protection Officer,
Allsec Technologies Limited,
46-B, Velachery Main Road, Velachery,
Chennai – 600042, Tamil Nadu,
India.
Last modified: This Privacy Policy was last updated on 16-NOV-18