/ ABOUT US AND OUR PRIVACY COMMITMENT
The iCOVER Group (“iCOVER” or “We”) is specialized in international verification services with operations on a global scale. iCOVER is a global corporation operating through a number of legal entities which provide background screening, due diligence, and compliance services in accordance with the relevant laws of the jurisdictions in which they operate.
In the course of the performance of our services, we may process personal information for service and business-related purposes including background screening, compliance verifications, and due diligence services on behalf of our clients (“Services”).
We are firmly committed to respect your right to privacy and take seriously our responsibilities in relation to the processing of personal information. We do not collect or process personal information unnecessarily and we do not solicit or receive information from children.
/ WHAT INFORMATION DO WE COLLECT?
The Policy is primarily related to personal information collected and processed in order to operate our business.
We may collect personal information from you in the course of our business, including through your use of our Site, when you contact or request information from us when you engage our team to provide Services.
We collect information as name and contact details in order to communicate and facilitate the provision of our services with our clients, potential clients, or suppliers. Initial information about you can be provided by the company you are working for. You may provide us information by using our services or by corresponding with us by phone, e-mail, or otherwise. Other occasions during which you provide us information is when searching for a product, place an order, report a problem, or engage with any other form of communication with us. We may collect information to respond to inquiries regarding our products and services or to provide you with information, reports, or updates.
In the course of providing our Services to our clients, they engage us on a wide range of matters to help them mitigate risks such as conducting due diligence on a potential partner, supplier, or acquisition target. The personal information we process in the performance of Services for and on behalf of our clients, as a data processor, includes but is not limited to any information relating to an identified or identifiable individual, for example, the individual’s name, contact information, education information, work history, directorships, financial information, as well as, where necessary, data concerning criminal convictions and offences. We treat all such information within the strict confines of the GDPR. The lawful bases for such data processing are defined by our client and will vary depending on the nature of the information and the project, but will include (i) consent, (ii) necessary for the purpose of our or our client’s legitimate interests; (iii) necessary for the prevention or detection of an unlawful act; and (iv) the information has been made public by the individual.
/ WHAT WE DO WITH YOUR INFORMATION?
We will only process personal information when the law allows us to.
We may use your information for the following purposes: Fulfilment of Services, Client Services, Business administration, and legal compliance or Recruitment:
Where we process your personal information to register you as a customer/user, accept your orders, deliver Services to you, collect our fees; we do so on the basis that it is necessary to perform our obligations under a contract with you or a company you work for. It may also be necessary to comply with certain legal obligations.
Where we process your personal information to send you newsletters, respond to your questions, improve the contents of our website and marketing efforts, conduct research and analysis, and display content based on your interests; we do so on the basis that it is necessary for our legitimate business interests. These interests include the interests of ensuring our clients receive premium service, growing our business to best satisfy changing market needs, and ensuring continual improvements to our Services.
Where we process your personal information for business administration and legal compliance, we comply with our legal obligations (including Know Your Client and Anti-Money Laundering or similar obligations), to enforce our legal rights, in connection with a business transaction; we do so on the basis that we have a legal obligation to do so.
Where we process your personal information for recruitment purposes to assess your suitability for any position for which you may apply at iCOVER whether such application has been received by us online, via email or by hard copy or an in-person application; we do so in connection with us taking steps at your request to enter a contract we may have with you or it is in our legitimate interest to use personal information in such a way to ensure that we can make the best recruitment decisions for iCOVER. We will not process any special category data except where we are able to do so under applicable legislation.
We will only use your personal information for the purposes for which we collected it unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your personal information without your knowledge or consent, in compliance with this Policy, where this is required or permitted by law.
/ DISCLOSURE OF YOUR INFORMATION
We only share your personal information with your consent or in accordance with this Policy. We will not otherwise share, sell or distribute any of the information you provide to us except as described in this notice.
We may disclose information to any department or authorized person within our company or any affiliated company within iCOVER and selected third parties only in the circumstances where it is necessary and the supplier has agreed to the same standards and terms of privacy as set out in the Policy.
iCOVER is a global corporation and any information that we collect or that you provide to us may be shared and processed by any iCOVER entity and affiliated. You can find out more about the iCOVER entities and locations HERE.
We may also share personal information with a variety of the following categories of third parties as necessary:
- Professional advisers such as lawyers and accountants.
- Government or regulatory authorities.
- Professional indemnity or other relevant insurers.
- Regulators/tax authorities/corporate registries.
- Third parties to whom we outsource certain services such as, without limitation, translation services, confidential waste disposal.
- Third parties engaged in the course of the services we provide to clients such as information furnishers.
- Third-party service providers to assist us with client insight analytics, such as Google Analytics.
- Please note this list is non-exhaustive and there may be other examples where we need to share with other parties in order to provide the Services as effectively as we can.
/ INTERNATIONAL TRANSFERS
In order to provide the Services, we may need to transfer your personal information to locations outside the jurisdiction in which you provide it.
If you are based within the European Economic Area (EEA), please note that where necessary to deliver the Services we will transfer personal information to countries outside the EEA (including to the United States, Mexico, Tunisia, India, United Kingdom).
All iCOVER entities have signed a data-sharing agreement which is based on the EU standard contractual clauses to ensure we will comply with our legal and regulatory obligations in relation to personal information, including having a lawful basis for transferring personal information and putting appropriate safeguards in place to ensure an adequate level of protection for the personal information.
We will only retain your personal information for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. The period of time for which we store your personal information may depend on the type of information we hold.
To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorised use or disclosure of your personal information, the purposes for which we process your personal information, and whether we can achieve those purposes through other means, and the applicable legal requirements. For example, we may hold personal data as needed for our accounting or tax compliance purposes or where needed for our compliance with anti-money laundering regulations in accordance with the respective statutory periods.
/ SECURITY MEASURES
We use accepted standards of physical and technical measures and require our hosting partners to use the same standard of care in order to protect personal information. Unfortunately, the transmission of information via the internet is not completely secure.
Despite our best effort to protect personal information, the transmission of information via the internet is not completely secure. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.
/ YOUR RIGHTS
You have the following rights in relation to the personal information we hold about you:
- Your right of access: If you ask us, we’ll confirm whether we’re processing your personal information and, if necessary, provide you with a copy of that personal information (along with certain other details). If you require additional copies, we may need to charge a reasonable fee.
- Your right to rectification: If the personal information we hold about you is inaccurate or incomplete, you are entitled to request to have it rectified. If you are entitled to rectification and if we’ve shared your personal information with others, we’ll let them know about the rectification where possible. If you ask us, where possible and lawful to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to erasure: You can ask us to delete or remove your personal information in some circumstances such as where we no longer need it or if you withdraw your consent (where applicable). If you are entitled to erasure and if we’ve shared your personal information with others, we’ll let them know about the erasure where possible. If you ask us, where it is possible and lawful for us to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to restrict processing: You can ask us to ‘block’ or suppress the processing of your personal information in certain circumstances, such as where you contest the accuracy of that personal information or you object to us. If you are entitled to restriction and if we’ve shared your personal information with others, we’ll let them know about the restriction where it is possible for us to do so. If you ask us, where it is possible and lawful for us to do so, we’ll also tell you who we’ve shared your personal information with so that you can contact them directly.
- Your right to data portability: You have the right, in certain circumstances, to obtain personal information you’ve provided us with (in a structured, commonly used, and machine-readable format) and to reuse it elsewhere or to ask us to transfer this to a third party of your choice.
- Your right to object: You can ask us to stop processing your personal information, and we will do so if we are:
- relying on our own or someone else’s legitimate interests to process your personal information, except if we can demonstrate compelling legal grounds for the processing; or
- processing your personal information for direct marketing purposes.
- Your right to withdraw consent: If we rely on your consent (or explicit consent) as our legal basis for processing your personal information, you have the right to withdraw that consent at any time.
- Your right to lodge a complaint with the supervisory authority: If you have a concern about any aspect of our privacy practices, including the way we’ve handled your personal information, you can report it to the relevant Supervisory Authority.
Please note that some of these rights may be limited where we have an overriding interest or legal obligation to continue to process the data.
/ THIRD PARTY MATERIAL
The website and/or Services may contain links to other sites whose information practices may be different than ours. Visitors should consult the other sites’ privacy notices as iCOVER has no control over information that is submitted to, or collected by, these third parties.
/ CHANGES TO THIS POLICY
Any changes made to this Policy from time to time will be published at the Platform. Any material or other change to the data processing operations described in this Policy which is relevant to or impacts on you or your personal data will be notified to you. In this way, you will have an opportunity to consider the nature and impact of the change and exercise your rights under the GDPR in relation to that change (e.g., to withdraw consent or to object to the processing) as you see fit.
Effective Date of this Policy: 25th of May 2018, Last updated on March 4, 2021