In accordance with our commitment to protect personal privacy, Atrium & Associates adheres to the principles of the EU General Data Protection Regulation.
Throughout this policy, we use the term “personal information” to describe information that can be associated with a specific person and can be used to identify that person. We do not consider personal information to include information that has been aggregated and/or anonymized so that it does not identify a specific user.
In this policy, we set out how Atrium collects personal data, how it uses and shares it, and the rights and choices you have in relation to the personal data held and processed by Atrium. It should be noted that we do not transfer personal information you provide to any third parties for their own direct marketing use.
Where applicable, we comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and on the free movement of such data.
We may collect Information from you when you correspond with us or engage our services. We may also collect information as a result of your relationship with one or more of our team, or otherwise in the general course of our business. In each case your data will be controlled by ATRIUM.
If you have any questions or feedback, feel free to contact us.
What is GDPR?
GDPR or General Data Protection Regulation is the name of the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons regarding the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
The aim of the GDPR is to protect privacy of individuals in the European Union and to harmonise the national legislation of the European countries.
As of 25 May 2018, the GDPR is directly applicable and fully binding for data processing and protection throughout the European Union, thus replacing the Personal Data Protection Law in effect until now
GDPR was developed with the aim to harmonise the differences in requirements to the processing of personal data between Member States, allowing EU citizens to have better control of their own personal data, including easier access, awareness in case of identity theft, establishment of clearer rights to erasure of personal data (the “right to be forgotten”), the right to object etc.
The types of personal information we collect
We collect different personal information for different reasons – it is not our intention to collect excessive amounts of personal information, but the types of information collected may include:
If you apply for a position with Atrium we may also collect personal information relating to your past employment, professional qualifications and education, your nationality, health, criminal records and immigration/residential status. We may also gather information from third parties in the form of references and any other information that may be obtained during the recruitment process.
How we collect your personal data?
Personal data is collected at different times and from different sources including but not limited to:
How will we use your personal data?
Atrium understands that personal data is sensitive and is committed to protecting and respecting your privacy. We provide fiduciary, corporate and other professional services to our clients and we use your personal data for these purposes. Normally the purposes for which we use your personal data will be clear when we collect data. Atrium will only use your personal information to:
How we may share the information we collect?
We do not share personal information with unaffiliated third parties, except as necessary for our legitimate professional and business needs, to carry out your request and /or as required or permitted by law or professional standards. This would include:
Retention of personal information and security
Your personal information will be retained for as long as required:
Atrium has reasonable security policies and procedures in place to protect personal information from unauthorised loss, misuse, alteration or destruction. Despite our best efforts, however, security cannot be absolutely guaranteed against all threats. To the best of our ability, access to your personal information is limited to those who have a need to know. Those individuals who have access to the data are required to maintain the confidentiality of such information. We may keep your personal data in our electronic systems and in paper files.
Access to your personal data
If you have submitted information to Atrium, you have the following rights:
We cannot be responsible for any loss that may arise due to us having any inaccurate, incomplete, inauthentic or otherwise deficient personal data that you or a third party have provided to us.
Inaccurate or amended information
Please let us know as soon as possible if any of your personal information changes (including your correspondence details). Failure to provide accurate information or to update information when it changes may have a detrimental impact upon our ability to provide services to you.