Table of Contents
Auritas recognizes the importance of privacy and sensitivity of personal information. As handlers of data, we have a professional obligation to keep confidential all classified information we receive from data subjects.
Auritas is responsible for the personal information we handle. To ensure our accountability, we have developed this Policy and trained our employees, contractors, agents and all third parties about our policies and practices. We reserve the right to modify this Policy from time to time.
If we make any material changes, we will notify you by updating the Policy on our website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.
Data Subject is an identified or identifiable natural person(s). Data subjects are human beings from whom or about whom you collect information in connection with our business and its operations.
Personal Data means any information relating to an identified or identifiable natural person (“data subject”,”you”,”your”,”their”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of Personal Data relating to him or her. Silence, pre-ticked boxes or inactivity should not therefore constitute consent. When the processing has multiple purposes, consent should be given for all of them.
Data Processor means a natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Data Controller;
Data Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data; where the purposes and means of such processing are determined by Union or Member State law.
3. Gathering Personal Information
Auritas may collect, maintain and use your personal data that may have been provided to the various departments including but not limited to Human Resources, Talent Acquisition, Finance, Marketing, Sales and Travel.
3.1 Personal Data you provide to us
Normally, Auritas will ask for such consent in writing, but in some circumstances, we may accept oral consent. However, we will document all such oral consents. Sometimes, consent may be implied through your conduct with us. For instance, voluntary submission of resume with Auritas is an implied consent.
3.2 Personal Information we receive from third party sources
If you interact with a third-party service to visit our sites (e.g., Facebook Connect, Google Sign-In, or Twitter etc.), or if you share content from our website through a third-party social media service, the third-party service may send us information about you. The information we receive will depend on the policies and your account settings with the third-party service.
3.3 Personal Information from advertising partners
We receive information about you from some of our service providers who assist us with marketing or promotional services related to how you interact with our websites, applications, products, services, advertisements, events or communications.
3.4 Personal Information from our website
Our website contains links to other sites, which are not governed by this Policy. We may provide aggregated information to third parties, but these statistics do not include any identifiable personal information.
Whenever you visit or interact with our sites, we may collect or store information about your interaction with our sites (“Usage Information”). This Usage Information may include:
- IP address or any other unique identifier assigned to the device that you use to access our sites;
- The functionality and characteristics of your device, including type of browser, operating system and hardware, mobile network information, and in some cases location information;
- The URL that referred you to our sites, if any;
- Keywords searched which led you to our website
- Your activities on our sites, such as which web pages you visit, what terms you searched within our sites, and which links within our sites that you click on; and the time of day that you visited our sites and how long your visit lasted.
Note: If you choose not to provide your Personal Information that is mandatory to process your request, we may not be able to provide the corresponding service
4. Use of Personal Information
We use the data we have about you (e.g., data you provide, data we collect from your engagement with our services and inferences we make from the data we have about you) to provide, support, personalize and develop our services.
Auritas does not share your Personal Information with third parties for marketing purposes without seeking your prior permission. For example, we do not provide our customer mailing lists to anybody else. We use your data to authorize access to our services. Our services allow you to stay informed about press releases, news, blogs and webinars.
In addition, we use your personal Information for the following:
- to provide better usability
- to contact you and respond to your questions or requests; and
- to provide access to desirable content based on your preferences
- to process job application and alumni related requests.
4.1 Rights to Access and Control Your Personal Data
For Personal Data that we have about you:
- Delete Data: You can ask us to erase or delete all or some of your Personal Data (e.g., if it is no longer necessary to provide Services to you). Opt-out of future data collection: You have the option to opt-out of future data collection and communications. Your information will no longer be collected or stored until you should choose to opt-in unambiguously.
- Change or Correct Data: You can edit some of your Personal Data through your account. You can also ask us to change, update or fix your data in certain cases, particularly if it’s inaccurate.
- Object to, or Limit or Restrict, Use of Data: You can ask us to stop using all or some of your Personal Data (e.g., if we have no legal right to keep using it) or to limit our use of it (e.g., if your Personal Data is inaccurate or unlawfully held).
- Right to Access and/or Take Your Data: You can ask us for a copy of your Personal Data and can ask for a copy of Personal Data you provided in machine readable form
4.2 Securing Personal Information
Auritas takes all reasonable technical and organizational security controls to ensure that personal information is kept safe from loss, unauthorized access, modification or disclosure. Among the steps taken to protect personal information are:
- premises security;
- restricted file access to personal information;
- deploying technological safeguards like security software and firewalls to prevent hacking or unauthorized computer access;
- internal password and security policies.
- We care about the protection of your user information and use industry standard safeguards to do so. Of course, it’s important to keep in mind that no data transmission over the Internet is guaranteed to be 100% secure.
We employ many different security techniques to protect such data from unauthorized access by users inside and outside the company. However, “perfect security” does not exist on the Internet. If you are concerned that your privacy may have been breached, please contact us as provided below.
4.3 Transfer of Personal Information
Auritas may transfer your personal information outside the European Economic Area (EEA) and third-party service providers to process your personal data based on the business needs. Aurtias ensures data processing agreements and adequate security controls implemented on sharing personal data with third party service providers.
4.4 Retention of Personal Information
Auritas retains personal information based on the business needs and applicable legal requirements.
4.5 Exceptions to disclosure of Personal Information
Under certain circumstances, Auritas will disclose personal information:
- when required or authorized by law to do so, for example if a court issues a subpoena;
- when you have consented to the disclosure;
- when the services we are providing to you, requires us share your information to third parties, their consent will be implied, unless they tell us otherwise;
- if we engage a third party to provide administrative services to us and the third party is bound by our Policy;
- if the information is already publicly known.
- Whenever it is legal and practicable, we may offer the opportunity to deal with general inquiries without providing your name.
4.6 In the Event of Sale or Bankruptcy:
The ownership of the site may change at some point in the future. Should that occur, we want this site to be able to maintain a relationship with you. In the event of a sale, merger, public offering, bankruptcy, your information may be shared with the person or business that owns or controls. Opting out of receiving information from third parties will not affect our right to transfer your information to a new owner, but your choices will continue to be respected regarding the use of your information.
5. Credit Bureaus
To help us make credit decisions about customers, prevent fraud, check the identity of new customers and prevent money-laundering, we may on occasion, request information about them from the files of consumer reporting agencies.
The law of the countries we are operating require us to confirm the identity of all customers. It may also require us to disclose information in relation to cash transactions as part of tax returns.
A resident of the European Union is entitled to the following Data Protection rights:
- Can ask us to access, correct, update or request deletion of Personal Information/Data at any time by contacting us as provided below;
- We will not process your user information without a lawful basis to do so, as such bases are defined in Article 6 of the GDPR, Object to processing of Personal Information and ask us to restrict processing of Personal Information or request portability of Personal Information. Again, one can exercise these rights by contacting us as provided below;
- Where Auritas derives the custody or control of the Personal Information through its customers, the customer will be the Data Controller and all requests for access to Personal Information should be forwarded through such Data Controller to Auritas; such data will be processed under controlled conditions as part of project delivery. These are considered as customer property.
- One has the right to opt-out of marketing communications, Auritas sends many times. One can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send. To opt-out of other forms of marketing (such as postal marketing or telemarketing), then please contact us as provided below;
- Similarly, if Auritas has collected and processed Personal Information with consent, then the consent may be withdrawn at any time. Withdrawal of consent will not affect the lawfulness of any processing Auritas has conducted prior to withdrawal, nor will it affect processing of Personal Information conducted in reliance on lawful processing grounds other than consent;
- One has the right to complain to a Data Protection Authority about our collection and use of Personal Information. However, please notify Auritas at least 36 hours before going to the Authorities, the reason of complaint as such complaint can be avoided if Auritas able to mitigate the concern. Please contact Auritas using the contact details below. For more information, please contact European local Data Protection Authority. (Contact details for data protection authorities in the European economic area, Switzerland and certain non-European countries (including the US and Canada) are available here);
- This Policy is intended to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (the “General Data Protection Regulation” or “GDPR”) and provide appropriate protection and care with respect to the treatment of your user information in accordance with the GDPR.
Auritas responds to all requests received from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.