KPF Privacy Notice
Notice last updated: 8 October 2020
This Privacy Notice ("Notice") is adopted by KPF and associated companies which directly or indirectly are controlled by KPF. You can contact us using the information in the contact us section.
KPF intends to comply with all privacy regulations that apply in the territories in which the company operates.
This Notice provides you with information about:
- Who we collect information from and the information we collect
- How we use the information we collect
- Who we disclose your information to
- International transfers
- How we protect and store your information
- Retention of your personal data
- How this notice applies to links and third-party websites
- Your rights relating to your personal data
European Union Privacy Protection (General Data Protection Regulation EU 2016/679)
KPF abides by the requirements of the European General Data Protection Regulation EU 2016/679 regarding the protection of the rights and freedoms of data subjects and their personal identifiable information.
WHO WE COLLECT INFORMATION FROM AND THE INFORMATION WE COLLECT
We process personal data relating to:
- Visitors to our web site;
- Representatives of prospective and existing customers.
- Representatives of suppliers / business partners.
- Employment applicants
The information that we process is listed below:
Visitors to our web site
We collect personal data such as your name, address, telephone number, or email address when you voluntarily submit it through a site form or an email sent to one of our contact email addresses. Other information that may also constitute personal data (such as your browser type, operating system, IP address, domain name, number of times you visited the Site, dates you visited the Site, and the amount of time you spent viewing the Site) may be collected via cookies and other tracking technologies (such as transparent GIF files). Aggregate information (such as how many times visitors log onto this Site) may also be collected.
Representatives of prospective and existing clients
We process personal data of clients of KPF to develop and maintain our business relationships. This includes; Name, Company Address, Contact Telephone Numbers, Email Address and Title.
Personal data will also be processed by us when you enter into a contract with us or contact us to make enquiries or complaints via telephone, email or by post. We will also collect your business contact details if you attend meetings or events or sign up to our newsletters.
Representatives of suppliers and business partners
We may collect, store and process personal data of suppliers / business partners of KPF in order to manage our business relationship with you. This includes; Name, Company Address, Contact Telephone Numbers, Email Address and Title.
Personal data will also be processed when you enter into a contract with us, in the event that you work with us on a client project, if you attend meetings or events with us or sign up to our newsletters.
We will process personal data of employment applicants when you apply for a position with KPF. This includes; Name, Home Address, Contact Telephone Numbers, Email Address, Education and Employment History.
Personal data will also be processed when you attend an interview and as part of the selection process. In addition, your details will be held on file with your consent if you wish to be considered for similar positions that arise in the next year in the event that you are unsuccessful with in your initial application.
HOW WE USE THE INFORMATION WE COLLECT
Legal basis for collecting and using your personal data
Where relevant under applicable laws, the use of your personal data will be justified by at least one condition for processing. In the majority of cases this condition will be that:
- You have provided your consent to us using the personal data in that way, for example where you provide us with consent to send you marketing communication about our products and services;
- Our use of your personal data is in our legitimate business interest as a commercial organisation, provided it is conducted at all times in a way that is proportionate, and that respects your privacy rights;
- Our use of your personal data is necessary to perform a contract or take steps to enter into a contract with you (e.g. to manage your account); and/or
- Our use of your personal data is necessary to comply with a relevant legal or regulatory obligation that we have.
The purposes for which we use your personal data
Your personal data will not be used for any other purpose than provided by this notice. We will use the information you supply:
- To answer your specific enquiry or respond to your complaints.
- For our general business purposes, such as the administration of your account, to invite you to events, deal with your queries or for marketing or sales purposes;
- In connection with a proposed or actual sale, merger or transfer of all or a portion of the business;
To satisfy legal or regulatory requirements;
- As otherwise described in this notice; and
- To send you relevant information on the services that we provide.
TO WHOM WE DISCLOSE YOUR INFORMATION
We work with third parties to help manage our business and deliver services. We and our service providers (as defined below) disclose and share your personal data:
- Among KPF and our Affiliates;
- To third party service providers (“Service Providers”) that perform services for us or on our behalf (including those which may process job applicant information, host investor relations content, provide courier services, help manage our IT and back office systems, or distribute marketing materials ). Such service providers are required under their contract with us, to handle your personal data in accordance with applicable laws and principles related to privacy and data protection;
- To a third party in connection with a proposed or actual sale, merger, or transfer of all or a portion of a business or division; and
- To other persons where we are under a legal obligation to disclose your personal data, and only as permitted or required by applicable law or regulation. Such disclosure could be made to courts, to respond to lawful requests by public authorities, regulators and law enforcement agencies in the European Union and around the world or to protect and defend our rights or property.
Any access to such information will be limited to the purpose for which such information was provided to us or our service providers, as explained in the "How we use the information we collect" section above.
KPF offices and service providers are located throughout the world. Accordingly, your personal data may be sent to countries which have different levels of data protection laws than your country of residence. For instance, if you inquire about services we provide in outside the UK, we will forward your enquiry to our office in such countries. We may also make other disclosures of your personal data overseas, for example if we receive a legal or regulatory request from a foreign law enforcement body. KPF complies with all applicable laws before transferring personal data to a recipient in a country with data protection laws that do not have a data protection standard equivalent to the laws where you live.
We will always take steps to ensure that any international transfer of information is carefully managed to protect your rights and interests:
- We will only transfer your personal data to countries which are recognised as providing an adequate level of legal protection or where we can be satisfied that alternative arrangements are in place to protect your privacy rights,
- Transfers between KPF, its subsidiaries and its Affiliates will be covered by intra-group data transfer agreements (based on EU Commission approved standard contractual clauses) which gives specific contractual protections designed to ensure that your personal data receives an adequate and consistent level of protection wherever it is transferred within KPF.
- Transfers to service providers and other third parties will always be protected by contractual commitments and where appropriate further assurances.
- Any requests for information we receive from law enforcement or regulators will be carefully checked before personal data is disclosed.
We will, upon request, provide you with further details regarding the categories of recipient of your personal data and the countries to which it may be transferred. You have the right to ask us for more information about the safeguards we have put in place as mentioned above. Contact us as set out in “Contact Us” Section if you would like further information.
HOW WE PROTECT AND STORE YOUR INFORMATION
We take the security of the information we collect seriously. We have implemented and we maintain technical and organisational security measures, policies and procedures intended to reduce the risk of accidental destruction or loss, or the unauthorized disclosure or access to such information appropriate to the nature of the data concerned. Some of the steps we take are: placing confidentiality requirements on our staff members and service providers; destroying or permanently anonymising personal data if it is no longer needed for the purposes for which it was collected.
RETENTION OF YOUR PERSONAL DATA
We will retain your personal data for as long as is reasonably necessary for the purposes for which it was collected, as explained in this notice. In some circumstances it may be retained for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax or accounting requirements.
In specific circumstances we may retain your personal data for longer periods of time so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your personal data or dealings.
Where we have obtained your personal data in order to provide you with marketing information for our services, it will be stored by us only as long as you do not change your mind to receive such materials from KPF. In order to avoid future contact with you for marketing purposes, we maintain a marketing suppression list which we apply to records in our care. Where your personal data is no longer required we will ensure that it is securely deleted.
LINKS AND THIRD-PARTY WEB SITES
YOUR RIGHTS AND HOW TO OPT OUT OR REQUEST CHANGES
Subject to certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to your personal data as follows.
- To access a copy of your personal data
- To rectify / erase personal data
- To restrict the processing of your personal data
- To withdraw consent for processing personal data
- To transfer your personal data
- To object to the processing of personal data
- To object to how we use your personal data for direct marketing purposes
- To obtain a copy of safeguards used for transfers outside your jurisdiction
- To lodge a complaint with your local supervisory authority
We may ask you for additional information to confirm your identity and for security purposes, before disclosing the personal data requested to you. We reserve the right to charge a fee where permitted by law, for instance if your request is manifestly unfounded or excessive.
You can exercise your rights by contacting us. We will make every reasonable effort to honour your request promptly or inform you if we require further information in order to fulfil your request.
We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally entitled to deal with the request in a different way.
We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.
NOTIFICATION OF CHANGES
We recommend that you check this notice every time you visit our site or provide us with your personal data offline as we may update this notice from time to time. Any changes will be effective when posted and your continued use of the site or not objecting to the use of your personal Data will indicate your acknowledgement of any changes.
Questions regarding this Notice
If you have questions concerning this notice, please contact our privacy team at firstname.lastname@example.org. Our senior privacy representative is the Firmwide IT Principal.