Online Privacy Notice
UPDATED: September 12, 2019
We at the HESS GROUP INTERNATIONAL LTD (“HESS GROUP INTERNATIONAL“), respect your concerns about privacy. This Online Privacy Notice describes the types of Personal Data we collect on hessgroupinternational.com that are accessible through hessgroupinternational.com, and other websites or applications that may link to this Privacy Notice (collectively, the “Sites“), how we use the information, with whom we may share it and the choices available to you regarding our use of the information. We also describe the measures we take to protect the security of the information and how you can contact us about our privacy practices. “Personal Data” has the meaning given in the European General Data Protection Regulation and includes any information relating to an identifiable individual (such as name, address, date of birth or economic information).
Information We Obtain
The types of information we collect on the Sites includes:
- business and personal contact information (such as name, postal and email addresses, and telephone number); and
- other information you submit to us (such as information provided by registering for email alerts or filling in forms).
In connection with a job inquiry or application on our careers pages, you may provide: login credentials; information regarding your work authorization status, education history, employment history and professional designations; and other information about your background and qualifications. You may also provide information regarding your political contributions for the last two years for legal and compliance purposes, but this does not apply if you are based in the European Union (“EU“). In addition, where legally permissible, you may provide information regarding your gender, race/ethnicity, and your veteran and disability status. HESS GROUP INTERNATIONAL LTD will not consider either this information or your choice to decline to provide it in evaluating your qualifications for employment with us. This information will be used only for Equal Employment Opportunity reporting and other legal and compliance purposes.
How We Use the Information We Obtain
We may use the information described above for the following purposes to:
- operate, evaluate and improve our business (including developing new products and services; enhancing, improving and analysing our products and services; managing our communications; and performing accounting, auditing and other internal functions);
- create and manage your account;
- manage your investments;
- comply with and enforce applicable legal requirements, relevant industry standards and our policies, including our Terms and Conditions of Use;
- protect against, identify and prevent fraud and other unlawful activity;
- in some cases, in order to operate, administer and improve the user’s experience of the Sites;
- provide our products and services to you, such as market commentary and email alerts;
- send you promotional materials, newsletters and other communications;
- communicate with you about, and administer your participation in, special events, programs, promotions, offers, surveys and market research;
- respond to your inquiries;
- manage your employment application, assess your qualifications and manage your employment with us – please see our Career Page Privacy Notice for full information about how and why we use your Personal Data in this context;
- verify your information; and
- perform data analyses (including market and consumer research, demographic analyses and anonymization and aggregation of information).
We also may use the information in other ways for which we provide specific notice at the time of collection.
We will only process your Personal Data as necessary so that we can pursue the purposes described above. Where we process your Personal Data for our legitimate interests as a business, we do so only where we have concluded that our processing does not prejudice you or your privacy in a way that would override our legitimate interest in pursuing those purposes.
When we collect Personal Data from you, unless indicated otherwise, you should assume that, if we ask you for information, we need it for our business or compliance purposes. In limited circumstances, we are required to collect Personal Data to comply with a legal obligation and/or might ask you to provide information which is purely voluntary; in either case, this will be indicated to you.
If you are a former employee, worker, contractor or member of HESS GROUP INTERNATIONAL LTD, we will continue to process your Personal Data for a reasonable period following the end of your employment or engagement for our legitimate business and / or our legal compliance purposes and / or for the establishment or defence of a legal claim. Further, in some instances, we may process your data to perform our obligations under the contract between us (e.g. to pay you your final salary payment after your termination date). We only carry out such processing where we have concluded that our processing does not prejudice you or your privacy in a way that would override our legitimate interests in pursuing those purposes. Your data will be retained and deleted in accordance with our retention policies and procedures.
Information We Disclose to Others
We do not disclose Personal Data we obtain about you through the Sites, except as described in this Online Privacy Notice. We may share your Personal Data with our affiliates and subsidiaries. We may also share Personal Data with service providers who perform services on our behalf based on our instructions. We do not authorize these service providers to use or disclose the information except as necessary to perform services on our behalf or comply with legal requirements.
We also may disclose information about you (i) if we are required to do so by law or legal process, (ii) to law enforcement authorities, regulators and/or other government entities and/or other competent authorities based on a lawful disclosure request, or (iii) when we believe disclosure is necessary or appropriate to prevent harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity. We reserve the right to transfer Personal Data we have about you in the event we sell or transfer all or a portion of our business or assets (including in the event of a reorganization, spin-off, dissolution or liquidation).
In addition, we may share anonymous / aggregated information with third parties, such as service providers, in order to facilitate our business operations.
Information collected through third-party plug-ins and widgets on the Sites (such as information relating to your use of a social media sharing tool) is collected directly by the providers of the plug-ins and widgets. This information is subject to the privacy policies of the providers of the plug-ins and widgets, and HESS GROUP INTERNATIONAL LTD is not responsible for those providers’ information practices.
Retention and Deletion of your Information
We intend to keep your Personal Data accurate and up-to-date. We will delete the information that we hold about you when we no longer need it.
We will retain your information in line with our retention policies and, in any event, for no longer than is necessary given the purpose for which it was collected, after which it will be deleted or anonymized.
Note that we may retain some limited information about you (even when we know that you have left the organisation that you represent) so that we can maintain a continuous relationship with you if and when we are in contact with you again.
Your Rights and Choices
We offer you certain choices in connection with the Personal Data we collect from you. To update your preferences or submit a request, please contact us as indicated in the “How to Contact Us” section of this Online Privacy Notice. To the extent provided by the law of your jurisdiction, you may request access to the Personal Data we maintain about you or request that we correct, amend, delete or block the information by contacting us as indicated below. Where provided by law, you may withdraw any consent you previously provided to us or object at any time on legitimate grounds to the processing of your Personal Data, and we will apply your preferences going forward. You can also lodge a complaint about our processing of your Personal Data with the body regulating data protection in your country.
Your specific rights where you are a user in the Cyprus or the EU are as follows:
Rights of access, correction and deletion. You have a right of access to the Personal Data that we hold about you under European data protection legislation, and to some related information, including the purpose for processing the Personal Data, the recipients of that Personal Data to the extent it has been transferred internationally, and, where the Personal Data has not been collated directly from you, the source. You can also require any inaccurate Personal Data to be corrected or deleted.
Right to object. You can object to our use of your Personal Data for direct marketing purposes at any time and you may have the right to object to our processing of some or all of your Personal Data (and require them to be deleted) in some other circumstances.
If you wish to exercise any of these rights, please Contact us as set out below.
Complaints. You can also lodge a complaint about our processing of your Personal Data with the body regulating data protection in your country.
How We Protect Personal Data
We maintain administrative, technical and physical safeguards designed to protect Personal Data we obtain through the Sites against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use.
Links To Other Websites
Our Sites may provide links to other websites for your convenience and information. These websites may operate independently from us. Linked websites may have their own privacy notices or policies, which we strongly suggest you review. To the extent any linked websites are not owned or controlled by us, we are not responsible for their content, any use of the websites, or the privacy practices of the websites.
Updates To Our Online Privacy Notice
This Online Privacy Notice may be updated periodically and without prior notice to you to reflect changes in our Personal Data practices. We will post the updated version on the Sites and indicate at the top of the Notice when it was most recently updated.
How To Contact Us
If you have any questions or comments about this Online Privacy Notice, or if you would like us to update information we have about you or your preferences, please email us at firstname.lastname@example.org. You also may write to:
HESS GROUP INTERNATIONAL LTD
J/F Kennedy street 6,
Iris House 2nd Floor,
3106 Limassol, Cyprus
General Data Protection Regulation
HESS GROUP INTERNATIONAL understands that your privacy is important to you and that you care about how your information is used and shared online. We respect and value the privacy of everyone who visits Our Site and will only collect and use information in ways that are useful to you and in a manner consistent with your rights and Our obligations under the law.
As of 25 May 2018, the EU General Data Protection Regulation 2016/679 (GDPR) will have taken effect for the protection of natural persons against the processing of personal data and the free circulation of such data. The New General Regulation shall replace the Directive 95/46/EU which was applied via law 138(I)/2001. As of 25 May, 2018 the said law shall be considered as abolished.
More information may be obtained from the European Commission’s relevant website here and from the official Cyprus Government portal at www.dataprotection.gov.cy.
Our role as service providers include the obligation to secure that, personal data of yours and of any third parties such as employees, contractors, clients, principals and other individuals and contracting parties related to you, which has come or may come into our possession and which may also contain sensitive data, is processed in accordance with relevant Regulation and/or other laws in force.
Such processing may relate to agreements entered between us as service providers and yourselves, to the provision of services by us as service providers and intermediate service providers, to the adherence with laws, regulations and directives, KYC (know-your-client) procedures, the manner of operation and management of our business, including business development, account management, internal financial reporting, marketing processing, legal due diligence or disclosure of information clients, to banks, legal or other associates of ours who may offer services to you, to international organizations whether in the Republic of Cyprus or any other European Union or other third countries.
Unless otherwise instructed by you we consider that we may process, collect, store, disclose, copy and transfer personal data, relating to you and/or your employees, contractors, clients, principals and other individuals and contracting parties of relevance to you in the same manner without the need for a separate consent on each occasion and at each time, such consent considered as duly given. Collection of such data may be made from you, any authorised by you person, any agencies who carry out investigations on our behalf, other public domain information sources such as the internet etc. Please be informed that we may not follow any instructions by you prohibiting the processing, collection, storage, disclosure, copying and transferring of personal data, relating to you and/or your employees, contractors, clients and other individuals of relevance to you, in the event that any other law/regulations in force imposes upon us any contrary obligation. For all intents and purposes the provisions of any laws/regulations in force which may provide otherwise, shall override any of your instructions.
When you provide personal data to us about third parties such as employees, contractors, clients, principals and other individuals and contracting parties etc, you shall be considered as having provided the data, with due and received authority to have done so as their agent and as having obtained any required consents.
All correspondence files and records (other than statutory corporate records) and all information and data held by us on our computers/servers are the sole property of ours and you shall have no right of access thereto or control there over, however you shall be free to request by written instructions, details of your personal information data held by us, you may demand the correction of any wrong or inaccurate information in our data records and ask for any copies of data maintained by us which you or any authorized representative of yours have furnished us with.
The maintenance, use storage, use etc. of personal data shall be kept by us to the extent and as long as the relevant law/s or any regulation/s provide. Should any law require the keeping and maintenance of certain date for a longer period of time we undertake to arbitrarily or on your request remove from our data system upon the lapse of the period provided by the GDPR, data relating to you which may be irrelevant or unnecessary for keeping for the purposes of compliance with any such law/s or regulation/s.
We are providing you herein below with the following information in addition to the above information which include the purposes of processing of personal data the legal basis for doing so, the recipients of personal data, our legitimate interests and transfer of such data. As a data subject you may address any concern of yours on a matter relating to your data protection rights to the company’s Data Protection Officer below.
Data Protection Officer (DPO): Mr. Marian Todorov
Contact details of DPO: email@example.com
Any complaints you may have with regards to any violation of your rights under the GDPR may be lodged with the relevant supervisory authority whose details are as follows:
Officer of the Commissioner on Personal Data Protection
1, Iasonos Str., 1082 Nicosia
P.O.Box 23378, 1682 Nicosia
Tel: +357 22818456, Fax: +357 22304565
If you should wish to have your name and address removed from our specific purposes mailing list, you should provide us with clear Instructions in this respect or click on the unsubscribe link in any of such mailings. However, in such a case we shall not be held liable and you hereby relieve us of any liability with respect to any information of essence which may not reach you
We remain at your disposal for any clarification on the above, whilst we assure you that our firm is aiming to be duly compliant with the GDPR and other laws/regulations/directives in force.