PricewaterhouseCoopers ("PwC", "we", "us", or "our") is strongly committed to protecting personal information. This privacy statement describes our reasons for collecting personal data through CPSG Events and Activities (hereafter refer as “ the Events) and provides information about individuals’ rights in relation to personal data. When collecting and using personal data our policy is to only collect what we need and to be transparent about why and how we process personal data. We may use the personal data provided in connection with the Events for any of the reasons set out in this privacy statement.
This privacy statement relates only to the Events. It does not relate to other products, services or sites of PwC or any other party.
Data Controller Information - The data controller is the entity with primary responsibility for the protection of personal information. The data controller of the personal information collected in connection with the Events is the PwC firm responsible for the Events, that is PwC & Consultants (Shenzhen) Limited
In this privacy statement, we use the following terms:
“Personal data or personal information” refers to any information or data (in a form in which access to or processing is practicable) relating directly or indirectly to a living or natural individual from which independently or in combination with other information it is practicable for the identity of the individual to be directly or indirectly ascertained or for the activity of the natural person to be directly or indirectly ascertained.
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, transferring, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“PwC, we, us and our” refer to the PwC network and/or one or more of its member firms. Each member firm in the PwC network is a separate legal entity. For a list of PwC firms see https://www.pwc.com/gx/en/about/corporate-governance/legal-entities.html. For countries and regions in which PwC firms operate see http://www.pwc.com/gx/en/about/office-locations.html.
PwC may collect, use, collect, disclose and otherwise process your personal information including the following:
You may be asked to provide personal information (where necessary) to meet purposes of collection in connection with the Events.
You may also choose to provide additional personal information on voluntary basis if you wish to do so. We do not intend to collect sensitive and/or special category of personal information for the Events. Please do not provide any sensitive and/or special category personal data.
Sensitive personal data and/or special category of personal data, covers information relating to, among other things, race, ethnicity, political opinions, religious or philosophical beliefs, biometric or genetic data when used to uniquely identify you, information about health, sexual life or sexual orientation.
By using this Site and providing personal information to us, you acknowledge that you have read this privacy statement, and consent to the collection, use and disclosure of such personal information by PwC and any third party recipients (as set out in section 6 of this privacy statement), including international transfers to countries outside where you are located.
If you do not agree with the terms in this privacy statement or have concerns about the categories of personal data we require from you, please do not provide any personal information to us without contacting us.
To the extent necessary, we may collect, disclose and otherwise process your personal information in connection with the Events for the purposes including:
We adhere to internationally recognised standards of technology and operational security in order to protect personal information from loss, misuse, alteration and destruction. Only authorised persons are provided access to personal information collected via the Events. These individuals have agreed to maintain the confidentiality of this information. We have a framework of policies and procedures in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.
Although we use appropriate security measures once we have received your personal data, the transmission of data over the internet (including by email) is never completely secure. We endeavor to protect personal data, but we cannot guarantee the security of data transmitted electronically over the Internet.
Where a personal information security incident arises, we shall respond to the incident, assess the likely impact of the incident, and take necessary actions to bring the incident under control. Where necessary, we will report to the appropriate authority and notify you of the incident as may be required under applicable laws and regulations.
PwC is a global network with member firms and third party service providers located around the world. If we process your personal information, your personal information may be transmitted and stored outside the country or region where you are located. PwC member firms, our service providers and sub-processors they engage may use servers and other resources in various countries and territories to process your information. This includes countries outside the European Economic Area (EEA) and countries that do not have laws that provide specific protection for personal information.
For personal information collected within Mainland China, such transfer will be done under agreements that provide sufficiently similar protection to your personal information as it would have under applicable laws in Mainland China.
Where we collect your personal information within the European Economic Area, transfer outside the European Economic Area will be only:
The US member firm of PwC, PricewaterhouseCoopers LLP and its affiliated US subsidiaries (together, “PwC US”), adheres to the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal information that is transferred from the European Union and its Member States, and the EEA and Switzerland to the United States. PwC US has certified that it adheres to the Privacy Shield Principles within the scope of PwC US’s Privacy Shield certification. To learn more, see https://www.pwc.com/us/en/site/privacy-shield.html.
Your personal data as set out above may be transferred to, processed by and stored with, the following classes of transferees/categories of recipients for the purposes as described in this privacy statement:
(a) Recipients of personal data: other PwC member firms
We may share personal data with other PwC member firms where necessary in connection with the purposes described in this privacy statement. For example, in connection with organising the Events we may share personal information with PwC member firms in different territories that are involved in the Events.
(b) Recipients of personal data: third party providers
We may transfer or disclose the personal data we collect to third party contractors, subcontractors, and/or their subsidiaries and affiliates. Third parties support the PwC network in providing its services and/or organising events, help provide, run and manage IT systems. Examples of third party contractors we use include providers of identity management, website hosting and management, data analysis, data backup, security and cloud storage services. The servers powering and facilitating our IT infrastructure may be located in secure data centres around the world, and personal data may be stored in any one of them.
The third party providers may use their own third party subcontractors that have access to personal data (sub-processors). It is our policy to use only third party providers that are bound to maintain appropriate levels of security and confidentiality, to process personal information only as instructed by PwC, and to flow those same obligations down to their sub-processors.
(c) Other recipients of personal data
We may also disclose personal information under the following circumstances to the extent permitted under applicable law:
It is our policy not to retain personal data longer than is necessary for the fulfilment of the purposes for which the data are or are to be used.
You may have certain rights in relation to personal data we hold about you including:
If you wish to submit a request to exercise your rights, under applicable privacy law, or have questions about how your information is handled at any time, or to make complaints, please send your request to our Privacy Team https://www.pwccn.com/en/privacy-team-contact-form.html or https://www.pwchk.com/en/privacy-team-contact-form.html. When requested, and provided that it is practical and commercially feasible to comply with the request, we will respond to your request within the time required under applicable law.
We may need to update this privacy statement from time to time to comply with applicable law and regulations or other legitimate purposes. We will not make any changes that will affect your rights under this privacy statement without first obtaining your consent as may be required by applicable law. If we make any material changes, we will notify you of the change and amend the revision date of this privacy statement. The new modified privacy statement will apply from that revision date. Therefore, we encourage you to review this privacy statement periodically to be informed about how we are protecting your information.