Control Risks Group Limited operates the website www.controlrisks.com (the “Site”) and organises its maintenance and the placing of its content. In this policy, “Control Risks” refers to the Control Risks’ group and may refer to one or more of the members of that group each of which is a separate legal entity.
Control Risks understands that privacy is important to users of this Site and is committed to respecting users’ privacy and protecting their personal information. This policy sets out Control Risks’ approach to the collection, storage, usage and transfer or disclosure of collected information in connection with this Site.
Users of this Site do not have to give Control Risks any personal information or data. Control Risks only collects personal information or data that is voluntarily supplied. By way of examples, users of the Site may wish to provide personal information for the purposes of:
- Registering to use certain portions of the Site;
- Applying for a job with Control Risks
- Subscribing to any marketing or mailing initiatives;
- Making contact with Control Risks
The security and protection of personal information supplied by a user to the Site is of the highest importance and concern to Control Risks. Control Risks has in place all generally accepted standards of technology and operational security in order to protect personal information submitted to the Site from loss, misuse, alteration or destruction and to ensure compliance with the requirements of all applicable data protection and privacy legislation.
Notwithstanding the arrangements set out above, a user of the Site submits personal information to the Site at the user’s own risk.
Use of Data
Control Risks will only use the personal information supplied by the user for the purposes for which such information was provided, including to market our services, to invite users to participate in conferences or events, to provide a service to the user, to personalise content that users view or receive on the Site, for recruitment, to fulfil a legal obligation or to compile anonymous statistical analysis.
Where required by the reason for which the personal information was initially supplied by the user, personal information may be shared with Control Risks affiliates and associated companies as well as third party service providers who perform services or functions on our behalf, under the protections required under applicable law. In particular, users supplying personal information for marketing events or services operated by Travel Security Services Limited, the joint venture travel security company owned by Control Risks Group Holdings Limited, International SOS Pte Limited and Blue Cross Travel Services B.V., should note that in doing so they are consenting to the exchange of such personal information between the companies with all legally required data protection requirements being in place.
Control Risks may also be required to disclose personal data to government and other public authorities who have a lawful right to demand the same (including to meet national security or law enforcement requirements). It will do so where required in accordance with applicable law.
If you receive marketing materials from Control Risks or our associated companies, and you no longer wish to receive these, you may withdraw your consent at any time by sending an e-mail to firstname.lastname@example.org.
Any personal information submitted by a user will be retained for the period necessary to fulfil the purpose for which it was collected or, where the information is required for longer, in accordance with our data retention policies. However, users may always ask us to permanently erase their information.
Control Risks shall ensure that user’s personal information is accurate and up to date. Therefore, please advise us of any changes to your information. Users are entitled to access their personal data and to request details of the information Control Risks holds about them and to have it rectified. Users may also direct Control Risks to use their personal data for specified purposes only.
For any information or request please contact email@example.com.
Control Risks Group Limited (registered in England under registration no/ 01810707 and with a registered address at Cottons Centre, Cottons Lane, London SE1 2QG) is the data controller of any personal data collected through the Site and will process such information in accordance with applicable data protection law including the EU General Data Protection Regulation (in force from 25 May 2018). Any enquiries relating to data protection issues should be sent to our legal team at firstname.lastname@example.org.
Control Risks does not intend that children should visit this Site. Control Risks’ understands that children merit special protection and will never knowingly process their personal information.
Disclosure of Personal Information to Third Parties
Control Risks will not share any personal information collected on the Site with third parties unless required by law, required to enable the fulfilment of the purpose for which the personal information was originally supplied or as otherwise set out in this policy. In submitting personal information to the Site the user is giving explicit consent for such usage. Control Risks may transfer all or part of its business in the circumstances of a merger or sale of part or all of its business. In such circumstances personal information supplied by a user of this website may be transferred but this will be only in circumstances where the acquiring company has agreed to the same standards and terms of privacy as are set out in this policy. Control Risks remains liable to you in respect of its obligations concerning your personal data in cases of onward transfers to third parties.
EU/US Privacy Shield
Control Risks complies with the European Union/United States Privacy Shield Framework regarding the collection, use and retention of personal information transferred from the European Union to the United States. Control Risks has certified to the U.S. Department of Commerce that it adheres to the Privacy Shield principles. To learn more about the Privacy Shield Program and to view Control Risks’ certification, please visit https://www.privacyshield.gov.
Control Risks Group LLC is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). Under certain conditions, it is possible for any individual who wishes to do so to invoke binding arbitration in respect of the treatment of their personal data by Control Risks Group LLC.
In compliance with the Privacy Shield Principles, Control Risks Group LLC commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Control Risks Group LLC at: email@example.com
Control Risks Group LLC has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning data transferred from the EU.
Summary of your rights
You do not have to share your personal data with us and do not have to opt in to any communications at all. If you do, you should be aware of the following:
- We will only use your details to contact you in relation to topics of interest based on your preferences
- We will not share your details with third parties without your express consent
- We will only retain your details for so long as you are interested in hearing from us
- We will update or erase your details upon request
- You can contact us at any time if you want to:
- review or update your preferences (including unsubscribing)
- review the details we hold on you
- receive a copy of the details that we hold on you
You can complain to the Information Commissioner at any time if you are dissatisfied with how your personal data are handled by us.