How Crezvatic protects your personal data
Crezvatic protects your personal data through its “Binding Corporate Rules” or “BCR.” These consist of:
- Data Privacy Procedures– such as how we should handle access requests or complaints and
Together, these ensure that appropriate data privacy safeguards are in place across our organization. Our BCR reflect the standards contained in European data privacy laws and have been approved by data privacy regulators in India
Having BCR means that all our group entities that sign up to our BCR have to comply with the same internal rules. It also means that your rights stay the same no matter where your data are processed by Crezvatic (see Your Rights below).
What personal data do we collect?
We collect personal data of our workers, candidates, suppliers, business contacts, shareholders and website users. We will always try to give individuals appropriate notice of what data will be collected and how it will be used. Whatever happens, we will only process that data if we consider it fair and lawful to do so.
Will we share your personal data with outside parties?
We may transfer personal data to our contracted service providers and advisors who may be located in other countries. Before we do so, we take steps to ensure that your personal data will be given adequate protection as required by relevant data protection laws and Crezvatic’s internal policies.
However, there will be other times when we need to share or disclose personal data you provide for a specific purpose, for example:
- In the case we are running a joint event and have informed you that the data will be shared with our partners. But again, we will notify you as to why we are asking for specific information and it is completely up to you whether you want to provide it;
- We may need to disclose your personal data to third parties in the event that we sell or liquidate any part of our business or assets;
What about sensitive personal data?
What about data security?
We take appropriate steps to maintain the security of personal data collected. Regarding your use of our websites you should understand that the open nature of the Internet is such that information and personal data may flow over networks connecting you to our systems without security measures and may be accessed and used by people other than those for whom the data is intended.
Our site may, from time to time, contain links to and from the sites of our partner networks, advertisers and affiliates. If you follow a link to any of these sites, please note that these sites have their own privacy policies and that we do not accept any responsibility or liability for these policies or sites. Please check these policies before you submit any personal data to these sites.
Where will your personal data be processed?
As a global organization with global IT systems, personal data we collect may be routed, stored, or transferred internationally throughout Crezvatic’s worldwide organization in accordance with our Binding Corporate Rules and to our vendors in accordance with data privacy laws.
For a list of our affiliates by country of incorporation, please click here.
Retention of your data
We will retain your personal data only for as long as is necessary. If you have an account with us, we will only keep the data while your account is active or for as long as needed to provide services to you and, as further needed for us to comply with our global legal and contractual obligations.
You are entitled to know whether we hold personal data about you and, if we do, to have access to that personal data and require it to be corrected if it is inaccurate. We generally do not make decisions by purely automatic means, but if we do, you have the right to object.