Last Modified: June 4, 2018
1. PRIVACY STATEMENT
iSSWorld and related systems has created this privacy statement to demonstrate a commitment to privacy. The following information discloses information gathering and dissemination practices for the iSSWorld and related systems-hosted software components .
A. General Data Protection Regulation (GDPR), EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield
iSSWorld and related systems recognizes the importance of protecting and ensuring the integrity of sensitive data, including personal data as defined by the European Union (EU) General Data Protection Regulation (GDPR).
iSSWorld and related systems also participates in compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. iSSWorld and related systems is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, visit the U.S. Department of Commerce’s Privacy Shield List.
iSSWorld and related systems is responsible for the processing of personal data it receives, under GDPR and each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. iSSWorld and related systems complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to GDPR iSSWorld and related systems is subject to the regulatory enforcement powers of the EU in conjunction with the U.S. Federal Trade Commission. For each Privacy Shield Framework, iSSWorld and related systems is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain circumstances, iSSWorld and related systems may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
In compliance with GDPR and the Privacy Shield Principles, iSSWorld and related systems commits to resolve complaints about our collection and use of your personal data.
iSSWorld and related systems commits to cooperate with the panel established by the EU Data Protection Authorities (DPAs) and/or the Swiss Federal Data Protection and Information Commissioner, as applicable and comply with the advice given by the panel and/or Commissioner, as applicable with regard to human resources data transferred from the EU and/or Switzerland, as applicable in the context of the employment relationship.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our General Data Protection Officer at GDPO@isoftstone.com .
Under certain conditions, more fully described here, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
B. Information Collection and Use
This privacy statement applies solely to the role iSSWorld and related systems plays in collecting and storing data via iSSWorld and related systems website itself.
iSSWorld and related systems collects personal identifiable information (PII) (such as, name, work history, home address, IP and phone number) through a number of points throughout iSSWorld and related systems registration and job application process. Candidates or employees may enter PII directly through iSSWorld and related systems and/or indirectly through other systems (i.e., data entered manually or fed electronically from another system into the iSSWorld and related systems).
If you are a candidate or employee user of iSSWorld and related systems and would no longer like to be contacted by iSSWorld and related systems, please contact the GDPO@isoftstone.com.
By submitting your information to iSSWorld and related systems, you acknowledge and agree that the technical processing and transmission of your information, may involve, (a) transmissions over various networks, including the transfer of this information to the United States and/or other countries for storage, processing and use by iSSWorld and related systems, its affiliates, and their agents; and (b) changes to conform and adapt to technical requirements of connecting networks or devices. Accordingly, you agree to permit such parties to make such transmissions and changes.
D. Correction /Updating PII
iSSWorld and related systems acknowledges that you have a right to access your PII. iSSWorld and related systems has no direct relationship with the individuals whose PII it processes. A candidate or employee user who seeks access, or who seeks to correct, amend, or delete inaccurate data may do so by directly logging into iSSWorld and related systems or by contacting into iSSWorld and related systems’s HR staff (the data controller) to update the data within their accounts.
E. Data Retention
iSSWorld and related systems will retain PII we process for as long as needed to provide services to our customers. iSSWorld and related systems will retain this PII as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. iSSWorld and related systems will retain back-up copies of PII for approximately two (2) years.
F. Service Provider, Sub-Processors/Onward Transfer
iSSWorld and related systems may transfer PII to companies that help us provide our service. Transfers to subsequent third parties are covered by the provisions in this policy regarding notice, choice, and the agreements with our vendors and partners.
G. Rights of the Data Subject
If you are a European Union resident, under the General Data Protection Regulations (GDPR) you have certain rights when it comes to the personal data you submit when you apply for a job. These rights include: 1) the right to be informed; 2) the right to access your information; 3) the right to correct any information that is inaccurate; 4) the right to have your information erased; 6) the right to restrict or suppress information; 6) the right to obtain and reuse their personal data for their own purposes across different services; 7) the right to object to the processing of their personal data; 8) the right to object to how your data is used in automated decision making; and 9) lodge a complaint with the applicable supervisory authority.
If you wish to enact your rights please contact GDPO@isoftstone.com directly in accordance with iSSWorld and related systems‘s privacy practices.
If you wish to lodge a complaint with the supervisory authority, please contact that authority directly.
H. Notification of Changes
Changes to the iSSWorld and related systems Security Policy are posted on the iSSWorld and related systems website at https://issworld.isoftstone.com/Home/tabid/56/ctl/Privacy/language/en-US/Default.aspx .
2. AUTOMATED DATA COLLECTION TECHNOLOGY
A. Information Collection and Use
iSSWorld and related systems may collect information about users automatically as they navigate through iSSWorld and related systems.
As is true of most websites, iSSWorld and related systems gathers certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), geometry locations, referring/exit pages, the files viewed on our site (e.g., HTML pages, graphics), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the website.
This information is used by iSSWorld and related systems for a number of purposes, including authentication, preferences, and performance analytics.
The technologies iSSWorld and related systems uses for this automatic data collection may include, without limitation:
· Flash Cookies . Certain features of iSSWorld and related systems may use local stored objects (or Flash cookies) to collect and store information about user preferences and navigation to, from, and on iSSWorld and related systems. Flash cookies are not managed by the same browser settings as are used for browser cookies. Users may manage Flash cookies by clicking here .
· Web Beacons.Pages of iSSWorld and related systems and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs. pixel tags and single-pixel gifs) that permit iSSWorld and related systems, for example, to count users who have visited those pages or opened an e-mail and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity). By disabling browser cookies, unique information associated with web beacons will also be disabled.
3. SECURITY MEASURES
A. Data Security
- Each instance of iSSWorld and related systems is password protected, and is configured to enforce SSL (128-bit encryption) to secure access.
- Passwords are selected using a password strength feature permitting a minimum of six (6) characters; however, the number of required characters may be configured to be greater than six (6) characters.
- Passwords are stored on secure database servers and can only be accessed or updated by parties having sufficient access permissions.
- Passwords are not sent in clear text over the Internet.
iSSWorld and related systems can enable IP locks to restrict access to the platform. iSSWorld and related systems does not provide VPN to VPN, direct database, or any out-of-band access. All data access is restricted to the web-based platform itself, except for data feeds and other integration methodologies supported by iSSWorld and related systems.
4. DISCLOSURE OF INFORMATION FOR LAW ENFORCEMENT
iSSWorld and related systems may disclose PII as required by law, such as to comply with a subpoena, or similar legal or security process when we believe in good faith that disclosure is necessary to protect our rights, protect the safety of our users or others, investigate fraud, or respond to a government request.
5. OWNERSHIP & ADMINISTRATION
To ask questions or comment about this policy and our privacy practices, contact us at: GDPO@isoftstone.com .
Building 16, Dong Qu,
10 Xibeiwang Dong Lu,
Haidian District, Beijing 100193, China
This Policy applies to the information gathering and dissemination practices for iSSWorld and related systems and supersedes all other policies, procedures, practices, and guidelines relating to the matters set forth herein.