We (“AmCham”, “us”, or “our”) are strongly committed to protecting personal data. This transparency notice describes why and how we collect and use personal data and provides information about individuals’ rights. We may use personal data provided to us for any of the purposes described in this transparency notice or as otherwise stated at the point of collection. Personal data is any information relating to an identified or identifiable living person. AmCham processes personal data for numerous purposes, and the means of collection, lawful basis of processing, use, disclosure, and retention periods for each purpose may differ. When collecting and using personal data, our policy is to be transparent about why and how we process personal data.
We take the security of all the data we hold very seriously. We adhere to internationally recognized security standards and our information security management system relating to member confidential data is independently certified as complying with the requirements of ISO/IEC 27001: 2013. We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.
COLLECTION OF PERSONAL DATA
Our policy is to collect only the personal data necessary for specified purposes and we ask our members only to share personal data where it is strictly needed for those purposes. Where we need to process personal data to provide our services, we ask our members to provide the necessary information to the data subjects concerned regarding its use. We collect and use contact details for our members in order to manage and maintain our relationship with those individuals. Given the diversity of the services we provide to members, we process many categories of personal data, including:
- Contact details;
- Information about management and employees;
- Registration Certification from State Tax Service.
USE OF PERSONAL DATA
We use personal data for the following purposes:
PROVIDING PROFESSIONAL SERVICES
We provide a diverse range of professional services (click here for information on our services). Some of our services require us to process personal data in order to provide advice and deliverables.
ADMINISTERING, MANAGING AND DEVELOPING OUR ORGANIZATION AND SERVICES
We process personal data in order to run our organization, including:
Security, quality and risk management activities
We have security measures in place to protect our and our members’ information (including personal data), which involve detecting, investigating and resolving security threats.
- managing our relationship with members;
- developing our services (such as identifying member needs and improvements in service delivery);
- maintaining and using IT systems;
- hosting or facilitating the events;
- administering and managing our website and systems and applications.
We retain the personal data processed by us for as long as is considered necessary for the purpose for which it was collected (including as required by applicable law or regulation).
In the absence of specific legal, regulatory or contractual requirements, our baseline retention period for records and other documentary evidence created in the provision of services does not exceed 10 years.
Powered by Froala Editor