We are committed to keep Your data secure, your private information private and being transparent about Our practices. We adhere to the best practices to secure information collected from You.
ECS Computech Pvt Ltd, having its registered oAice at 3B Melange Tower, Patrika Nagar, Madhapur, Hyderabad, Telangana, India (“Company” or “We” or “Us” or “Our”), is the owner of the website domain at https://techecs.com/and any service availed by User (hereinafter referred to as (“You”, “Your”, “Yourself”, “User” or “Merchant”) through the Platform is conditioned upon your acceptance.
This Privacy Policy has been drafted and is published in compliance with the Information Technology Act, 2000, and applicable amendments, rules, regulations and guidelines enacted thereunder from time to time (“IT Act”) with specific mention of regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive personal information) Rules, 2011 (“SPDI Rules”) and the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2023, Digital Personal Data Protection Act, 2023 (“DPDP”) and any other national and state laws which relate the processing of data. This Privacy Policy is an electronic record in terms of the IT Act and this electronic record is generated by a computer system and does not require any physical or digital signatures. Any new features and/or services that are added to Our current services at any point in the future shall also be subject to the terms set out in this Privacy Policy along with any other future relevant legislations to be incorporated as per the laws of the land.
How do we collect personal data?
➤ Directly: We collect personal data directly from individuals through various means, including the submission of business cards, completion of online forms, subscription to our newsletters and preference centers, participation in meetings or events we organize, visits to our oAices, and applications for job openings. Additionally, we may gather personal data directly when establishing a business relationship, fulfilling professional services under a contract, or through the use of our hosted software applications.
➤ Indirectly: We obtain personal data indirectly from various sources, including recruitment services and our clients. This data may be integrated into our customer relationship management records to enhance our understanding and service of business clients, subscribers, and individuals. The collection and use of this data may be conducted to comply with legal obligations or to pursue legitimate interests.
- Public sources: – We may acquire personal data from public registers (such as Companies House), news articles, sanctions lists, and online searches
- Social and professional networking sites: – When you use social media platforms (e.g., Facebook, LinkedIn, Instagram, X) to register or log in to our websites, we collect information or content necessary for registration or login that you have authorized your social media provider to share with us. This information may include your name and email address, and, depending on your privacy settings, additional details about you. Please review and adjust the privacy controls on your social media accounts to manage the amount of information shared with us.
- Business clients: – Our business clients may provide personal data that they control as part of professional services engagements. For instance,
we may review payroll data during an audit or utilize personal data in the provision of global mobility and pension services. - Recruitment services: – We may obtain personal data about candidates from employment agencies, former employers, and credit reference
agencies.
What Personal Data will ECS collect?
The personal data we collect may also include ‘sensitive’ or ‘special categories’ of personal data, such as details about:
➤ Name, gender, age and date of birth.
➤ Contact information, such as address, email, and mobile phone number.
➤ Country of residence.
➤ Lifestyle and social circumstances (for example, your hobbies)
➤ Family circumstances (for example, your marital status and dependents)
➤ Employment and education details (for example, the organisation you work for, your job title and your education details)
➤ Financial and tax-related information (for example your income, investments and tax residency)
➤ Postings or messages on any blogs, forums, platforms, wikis or social media applications and services that we provide (including with third parties)
➤ IP address, browser type and language, your access times
➤ Information in any complaints you make
➤ CCTV footage and other information we collect when you access our premises;
and
➤ Details of how you like to interact with us, and other similar information relevant to our relationship.
➤ Dietary requirements (for example, when ECS would like to provide you with meals and refreshments during meetings, visits);
➤ Health (for example, so that we can make it easy for you to access our buildings, products and services);
➤ Sexual orientation (for example, if you provide us with details of your spouse or partner); and
➤ Biometric details for entry into restricted facilities.
We may also process personal data relating to ethnic or racial origin (for example, any multicultural networks you belong to), or about your political opinions (inferred from information you give us about political associations you belong to or have donated to).
We will typically seek separate permission from you in writing to process these special categories of personal data.
If you choose not to provide, or object to us processing, the information we collect, we may not be able to process your instructions or continue to provide some or all our services to you or our clients.
What lawful reasons do we have for processing personal data?
We may rely on the following lawful bases for collecting and using personal data to operate our business and deliver our products and services:
➤ Contractual Necessity: – We may process personal data as required to fulfil our contractual obligations.
➤ Consent: – We may process personal data based on your explicit consent provided at the time of data collection.
➤ Legitimate interests: – We may process personal data based on our legitimate interests, provided that such processing is fair, reasonable, and balanced. This includes:
- Service Delivery: – Processing personal data to provide the professional services for which our clients have engaged us.
- Direct marketing: – Processing personal data to oAer timely market insights and specialized knowledge that we believe will be valued by our
business clients, subscribers, and individuals who have interacted with.
➤ Legal obligations and public interests: – We may process personal data to comply with legal and regulatory obligations or to fulfil public interest
requirements.
What will ECS do with your personal data?
➤ ECS will use the personal data:
➤ To provide services to our clients.
➤ To meet legal or regulatory requirements.
➤ Conduct due diligence checks relating to the services.
➤ For other activities that form part of the operation of our business.
➤ To manage and respond to any request you submit through our website.
➤ Promoting our professional services and capabilities to existing and prospective business clients.
➤ Sending invitations and providing access to guests attending our events and
webinars or our sponsored events.
➤ Personalising online landing pages and communications we think would be of interest based on interactions with us and group companies.
➤ Administering, maintaining and ensuring the security of our information systems,
applications and websites.
➤ Authenticating registered users to certain areas of our sites.
➤ Detect, prevent, mitigate, and investigate fraudulent or illegal activities.
We are not selling the data that we collect on the website. It is only being used to respond to your query and for other marketing activities.
Whom do we share your personal data with?
In relation to the purposes outlined in the “What will ECS do with your personal data“
section, we may disclose your information to the following parties:
➤ ECS Group Companies and Service Providers: Other members of the ECS group and third parties that provide services on our behalf.
➤ Regulatory Authorities: Competent authorities, including courts and regulatory bodies, as well as our advisers or your advisers.
➤ Rights and Obligations Transfer: Any party to whom we may transfer our rights and/or obligations under the Terms.
➤ Business Transactions: Any person or organization involved in a restructure, sale, or acquisition of any ECS group member, provided they use your information for the same purposes for which it was collected.
➤ Credit and Fraud Prevention Agencies: Credit reference agencies or other organizations that assist in credit decision-making and fraud prevention.
➤ Other Third Parties: Any other third parties that reasonably require access to your personal data.
Additionally, our website features various blogs, forums, wikis, and other social media applications or services (collectively referred to as “Social Media Applications”) that allow users to share content. Personal data shared through these Social Media Applications can be accessed and used by other users of these applications. As we have limited control over these users, any information you contribute may not be managed in accordance with this privacy statement.
Where do we transfer your personal data?
The information we hold about you may be transferred to countries:
➤ Where we conduct business.
➤ Associated with your engagement with us.
➤ From which you frequently receive or transmit information.
➤ Where our third parties operate.
These countries may have less stringent privacy laws compared to those applicable in our jurisdiction. Consequently, any information transferred to these countries may be subject to their local laws and disclosure requirements, including potential disclosure to government bodies, regulatory agencies, and private entities. Additionally, some countries have agreements that facilitate the exchange of information with other countries for purposes such as law enforcement, tax compliance, and other regulatory needs.
We may transfer your personal data when:
We may transfer your personal data to other countries in the following circumstances:
➤ With Your Consent: If you have given your consent for the transfer.
➤ Contractual Necessity: If the transfer is necessary for the performance of a contract with you or for pre-contractual measures taken at your request.
➤ Legal Claims: If the transfer is necessary for the establishment, exercise, or defence of legal claims.
➤ Legitimate Interests: If the transfer is necessary for our legitimate interests, provided these interests are not overridden by your rights or fundamental freedoms.
➤ Vital Interests: If the transfer is necessary to protect your vital interests or those of another person.
When transferring personal data outside the originating country or your country of residence, either by us or our authorized third parties, we will impose contractual obligations on the recipients to ensure that your data is protected according to the applicable data protection laws. We will ensure that any nternational transfer of ersonal data complies with relevant data protection egulations. In cases where we are legally required to transfer data outside the originating country, we will ensure that adequate protection measures are in place.
Additionally, we may share non-personal, anonymized, and aggregated information with third parties for purposes such as data analytics, research, submissions, thought leadership, and promotional activities.
How ECS protects your personal data?
We implement a variety of measures to ensure the security, accuracy, and currency of your personal data. These measures include, but are not limited to:
➤ StaN Training: Educating and training relevant personnel to ensure they understand our privacy obligations when handling personal data.
➤ Access Controls: Implementing administrative and technical controls to restrict access to personal data on a ‘need to know’ basis.
➤ Technological Safeguards: Utilizing security technologies such as firewalls, encryption, and anti-virus software.
➤ Data Protection Techniques: Applying pseudonymisation, de-identification, and anonymisation techniques to enhance the protection of personal data.
➤ Physical Security: Employing physical security measures, such as security passes, to control access to our premises.
While we use appropriate measures to safeguard personal data, please be aware that the transmission of data over the internet (including via email) cannot be guaranteed to be completely secure. Thus, we cannot guarantee the absolute security of data transmitted to or from us.
What are your data protection rights?
Your data protection rights are highlighted here.
➤ Access: – You can ask us to verify whether we are processing personal data about you, and if so, to provide more specific information.
➤ Correction: – You can ask us to correct our records if you believe they contain
incorrect or incomplete information about you.
➤ Erasure: – You can ask us to erase (delete) your personal data after you withdraw your consent to processing or when we no longer need it for the purpose it was originally collected.
➤ Processing restrictions: – You can ask us to temporarily restrict our processing of your personal data if you contest the accuracy of your personal data, prefer to restrict its use rather than having us erase it, or need us to preserve it for you to establish, exercise, or defend a legal claim. A temporary restriction may apply while verifying whether we have overriding legitimate grounds to process it. You can ask us to inform you before we lift that temporary processing restriction.
➤ Data portability: – In some circumstances, where you have provided personal data to us, you can ask us to transmit that personal data (in a structured, commonly used, and machine-readable format) directly to another company if is technically feasible.
➤ Automated Individual Decision-making: – You can ask us to review any decisions made about you which we made solely based on automated processing, including profiling, that produced legal eAects concerning you or similarly significantly aAected you.
➤ Right to Object to Direct Marketing including Profiling: – You can object to our use of your personal data for direct marketing purposes, including profiling. We may need to keep some minimal information to comply with your request to cease marketing to you.
➤ Right to Withdraw Consent: – You can withdraw your consent that you have previously given to one or more specified purposes to process your personal data. This will not aAect the lawfulness of any processing carried out before you withdraw your consent. It may mean we are not able to provide certain products or services to you and we will advise you if this is the case.
➤ Right of no Retaliation (non-discrimination): – ECS does not discriminate against you or take adverse action against you for exercising any of your (Data Subject) rights under the CCPA, CPRA, or any other data privacy law.
➤ Transmissibility of Rights of the Data Subject: – In accordance with the Philippines – Data Privacy Act, ECS shall assist the lawful heirs and assigns of the data subject to invoke the rights of the data subject at any time after the death of the data subject or when the latter is incapacitated or incapable of exercising his or her rights.
To confirm your identity and verify your right to access information or exercise other rights, we may request specific information from you. This process helps us ensure that personal data is only disclosed to individuals who are authorized to receive it. There is no fee to make a request, unless it is deemed clearly unfounded or excessive. Additionally, we may not be able to fulfil your request if there are other lawful grounds for not doing so.
Do we use Cookies?
Our websites may use cookies. Where cookies are used, a statement will be sent to your browser explaining the use of cookies. To learn more, please refer to our cookie policy.
How long will ECS retain your personal data?
We strive to retain your personal data only for the longest of the following periods:
➤ Necessary Duration: The time required for the relevant activities or services.
➤ Legal Requirements: Any retention period mandated by law.
➤ Litigation or Investigation: The duration for which litigation or investigations related to the services might arise.