Deloitte Commercial Database Analysis Privacy Statement

We process data on business professionals that may include the following:

• Company and business professional contact information, including name, job title, address, phone number, fax number, e-mail address, domain names, and trade associations;
  
• Background information regarding company management, such as beneficial ownership/persons of significant control, the educational and career histories of company principals;
• Business compliance information from public source government and professional records, media and business publications; and
• Newspaper and media reports of criminal convictions.

We are required by law to set out in this Privacy Statement the legal grounds upon which we rely in order to process your personal information.

We may use your personal information for the purposes outlined above because we have a legitimate interest in processing your personal information, which is to streamline the vetting of suppliers and/or customers for our end clients. 

In connection with one or more of the purposes outlined in the “How do we use information about you?” section above, we may disclose your personal information to:

• service providers handling your information on our behalf; in each case, such service providers will be contractually bound by confidentiality and privacy obligations consistent with the obligations in this Privacy Statement
• clients and other third parties to whom we disclose information in the course of providing services to our client.
  

Please note that some of the recipients of your personal information referred to above may be based in countries or regions without data protection rules similar to those in effect in your area of residence. In such cases, adequate safeguards will be in place to protect your personal information. Such adequate safeguards might include a data transfer agreement with the recipient based on standard contractual clauses approved by the European Commission for transfers of personal information to those countries.

For further details about the transfers described above and the adequate safeguards used by Deloitte with respect to such transfers, please contact us using the details below.

You have various rights in relation to your personal information. In particular, you have a right to:

• obtain confirmation that we are processing your personal information and request a copy of the personal information we hold about you;
•  ask that we update the personal information we hold about you, or correct such information that you think is inaccurate or incomplete;
  
• ask that we delete personal information that we hold about you, or restrict the way in which we use your personal information;
  
• withdraw consent to our processing of your personal information (to the extent our processing is based on your consent);
  
• ask us to stop or start sending you marketing messages at any time; and
  
• object to our processing of your personal information.
  

Any request for access to or a copy of your personal information must be in writing and we will endeavour to respond within a reasonable period and in any event within the period required by applicable data protection legislation.  We will comply with our legal obligations as regards your rights as a data subject.

If you wish to exercise any of the rights relating to your information set out above, or if you have any questions or comments about privacy issues, or you wish to raise a complaint about how we are using your information you can contact us in the following ways:

• write to the Data Protection Officer, Deloitte LLP at 1 New Street Square, London EC4A 3HQ; or
• send an email to DPO@deloitte.co.uk.

If you have any concerns about our use of your information, you also have the right to make a complaint to the Information Commissioner's Office, which regulates and supervises the use of personal data in the UK, via their helpline on 0303 123 1113.