Privacy policy
This website is operated by Arch Global Consult Ltd, a company duly incorporated under the Laws of Mauritius. Arch Global Consult has implemented relevant policies, processes and procedures, including this privacy policy (hereinafter referred to as “Privacy Policy”) to demonstrate our commitment towards this. This Policy is expected to be updated from time to time to reflect changes towards processing of personal data or any changes as applicable with regards to the Mauritius Data Protection Act 2017
Definition
The following key definitions are interpreted in accordance with prevailing Data Protection Legislations, namely the Mauritius Data Protection Act 2017 and the General Data Protection Regulation 2016/679:
“Data Subject” means an identified or identifiable individual, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that individual;
“Consent” means any freely given specific, informed and unambiguous indication of the wishes of a data subject, either by a statement or a clear affirmative action, by which he signifies his agreement to personal data relating to him being processed;
“Personal Data” means any information relating to a data subject;
“Restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future;
“Special Categories of Personal Data” means personal data pertaining to:
(a) his racial or ethnic origin;
(b) his political opinion or adherence;
(c) his religious or philosophical beliefs;
(d) his membership of a trade union;
(e) his physical or mental health or condition;
(f) his sexual orientation, practices or preferences;
(g) his genetic data or biometric data uniquely identifying him;
(h) the commission or alleged commission of an offence by him;
(i) any proceedings for an offence committed or alleged to have been committed by him, the disposal of such proceedings or the sentence of any Court in the proceedings; or
(j) such other personal data as the Commissioner may determine to be sensitive personal data;
“Personal data breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
“Processing” means an operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
“Processor” means a person who, or public body which, processes personal data on behalf of a controller;
“Third party” means a person or public body other than a data subject, a controller, a processor or a person who, under the direct authority of a controller or processor, who or which is authorised to process personal data;
This Privacy Policy also relates to the use of our website, and will apply to the personal data that we collect and process about you while you are browsing same.
When do we collect your personal information?
The personal information we collect on you include but is not limited to the following:
- When you are enquiring or subscribing to any of our products or services;
- When we retain services of any service provider
- When you send us emails
- When you use our website
Collection and use of your personal information
The personal data collected and stored by us include, but are not limited to information relating to you/your client:
- identification details (name, contact details, national identity number);
- email address;
- phone number:
- physical address;
- professional details;
- Nationality;
- Country of residence;
- Electronic Identifying Data: IP addresses, cookies and geolocation data
- Employment Details: names of current and former employers, work address, work telephone number, work email address and work related social media profile details
- Education History: details of your education and qualifications
- Financial Details: billing address, bank account numbers, credit card numbers, cardholder or accountholder name and details, instruction records, transaction details
Purpose of processing
Kindly note that Arch Global Consult Ltd will only process your personal data for the purposes listed below, subject to applicable laws:
- AML and KYC
- Credit worthiness
- Providing Services to you
- Marketing purposes
- IT and Information Security operations
- When you contact us via email or telephone or by any other means of communications
- As part of our client on-boarding procedure;
- When managing transactions for or on behalf of customers; and
- To comply with relevant statutory and legal requirements.
Arch Global Consult Ltd takes reasonable steps designed to ensure that:
· Your personal data that we process are accurate and where necessary, kept up to date.
· The collection of your personal data is relevant and necessary for specific purposes set out in this policy.
· Your personal data, subject to any applicable law, are retained for only as long as it is necessary to fulfil the purposes set out in this policy.
Your Legal Rights
Subject to applicable law, you may have a number of rights regarding the processing of your personal data, including:
- The right to request access to, or copies of, your personal data that Arch Global Consult Ltd processes or control together with information regarding the nature, processing and disclosure of those personal data.
- The right to request correction of any inaccuracies in your personal data that Arch Global Consult Ltd processes or controls.
- The right to request, on legitimate grounds.
- Erasure of your personal data that Arch Global Consult Ltd processes or controls .
- Restriction of processing of your personal data that Arch Global Consult Ltd processes or controls.
- Where Arch Global Consult Ltd processes your personal data on the basis of your consent, the right to withdraw that consent anytime.
Information security
We have implemented appropriate security measures to prevent personal information from being accidentally lost, used or accessed in an unauthorized way. We limit access to your personal information to those who have a genuine legal requirement to know it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality and to our own security policies and procedures.
Some of these measures are as follows:
- There are restricted access to our office premises, and only our authorized employees have access;
- The premises of Arch Global Consult Ltd have been made secure against any unauthorised access, as the door is equipped with security locks and access to premises can be obtained via use of access cards whose activation is automatically recorded into the internal control system.
- If personal data is retained in hard copy, same is kept in locked filing cabinets or fireproof safe;
- All staff have followed relevant awareness sessions on protection of personal data and same is provided on a regular basis;
- We have established policies and procedures for security of data internally, to which our staff are obliged to adhere to in their daily tasks. Such policies and procedures include, among other things, clean desk policy, screen locking, encryption of data/documents where necessary, usage of IT devices/equipment among others;
- Our IT system incorporates enhanced security measures that are reviewed and updated on a regular basis. This comprises of firewalls, anti-virus and other related scanning software;
- Where we contract service providers to outsource any function necessary for our operations, we ensure that they only have access to information they require for the performance of the contract, and that we have binding contractual clauses specific to data protection in place.
Retention period for your personal data?
We retain your information as per the requirements of relevant Laws. As such, your personal data will not be stored for a period longer than is reasonably necessary for the purpose for which it was collected.
How to contact us?
If you have any comments, questions or concerns about any of the information in this policy, or any issues relating to the processing of personal data by Arch Global Consult Ltd, please contact your regular Arch Global Consult Ltd contact person or:
Email: info@archglobalconsult.com