Supplier and Contractor Privacy Notice
Association of International Certified Professional Accountants Supplier and Contractor Privacy Notice
Effective 25 August 2021
Collection of Personal Data
We collect and process Personal Data from suppliers and contractors through the supplier setup process. We may collect information from you such as, but not limited to, your name, email address, mailing address, phone/fax numbers, date of birth, company/employer information, tax information such as your Taxpayer ID or Tax Registration number, and bank account information ("Personal Data"). You are not required to provide us with all of the Personal Data listed above, but if you do not do so, we may not be able to effectively enter into a contract with you.
See “Use of Information” section below for details regarding the ways that we use and process your Personal Data.
Use of Information
Your Personal Data may be used in the following ways:
To assess and confirm your eligibility for contract opportunities
To communicate with you regarding the status of your supplier registration and applicable contract opportunities
As necessary, to conduct criminal background and credit checks as allowable by applicable law (Note: you will be notified further of this process if applicable)
To respond to your requests and inquiries
To provide access to our global IT and communications systems as necessary
To process payments to you
To monitor the performance of our contract with you
To monitor and ensure compliance with legal and statutory regulations and our internal policies and procedures, including the conduct of investigations or providing information to local tax offices
To comply with applicable law(s) (for example, to comply with a search warrant, subpoena or court order)
Internal purposes, such as internal audits and reviews, analysis and system administration
We will process your Personal Data for the purposes identified above on the following bases:
1. Our legitimate interests, which include processing such Personal Data for the purposes of managing our procurement process, and assessing and confirming a supplier’s suitability for contract opportunities;
2. Where such processing is necessary to perform our contract with you or to take steps before entering into our contract with you; and
3. As necessary to comply with our legal obligations, resolve disputes and enforce our contractual agreements.
Unless a longer retention period is required by applicable law, we will retain your information for as long as our contract with you is active, as well as for a short additional period afterwards to cover any outstanding issues or queries that may arise in relation to your account (for example, outstanding payments). This period of retention is subject to our review and alteration.
Sharing and Disclosure to Third Parties
We may disclose your Personal Data to third parties from time to time under the following circumstances:
1. You request or authorize the disclosure of your personal details to a third party.
2. The information is disclosed as permitted by applicable law(s) and/or in order to comply with applicable law(s) (for example, to comply with a search warrant, subpoena or court order).
3. The information is provided to our agents, vendors or service providers who perform
functions on our behalf. See below for additional details.
Hosting providers for the secure storage and transmission of your data
Consumer reporting agencies for the purpose of performing background and credit checks as necessary and as permitted by applicable laws
Financial institutions who process/distribute payments on our behalf
Technology providers who assist in the development and management of our systems and web properties
Legal and compliance consultants, such as external counsel, external auditors, or tax consultants
Collection of Information Through Cookie Use
The following types of cookies may be used on our websites:
1. Essential Cookies: These cookies are necessary for our websites to work properly. They are usually only set in response to actions you take such as logging in or completing online forms. You can set your browser to block or alert you about these cookies, but some parts of our sites will not function if these cookies are blocked.
2. Functionality Cookies: These cookies enhance the functionality of our websites by storing your preferences (such as your preferred language or the region that you are in) and allow us to provide enhanced features on our sites such as videos. These cookies may be set by us or by third-party content that we have placed within our pages. If you do not allow these
cookies, some of the features on our websites may not function properly and you may not receive a personalized experience when visiting our sites.
3. Performance Cookies: These cookies allow us to count page visits and traffic sources so we can measure and improve the performance of our sites. They help us to understand which pages are visited most frequently and how visitors interact with our sites. Any information collected by performance cookies is aggregated and therefore not identifiable. If you do not allow these cookies we will not receive data related to your visits to our sites.
All major browsers allow you to block or delete cookies from your system. To learn more about your ability to manage your preferences related to cookies, please consult the privacy features within your browser.
Further information about cookies:
Transfer of personal data internationally
By providing us with your Personal Data, you acknowledge and agree that we may from time to time transfer your Personal Data to any of our offices or to the offices of any of our affiliates, agents or appointed representatives located around the world. Where we transfer personal data internationally from one of our global office locations, we ensure the transfer is subject to an appropriate safeguard as recognized by local data protection law (e.g., standard contractual clauses). Please do not submit any Personal Data to us if you do not wish for your data to be transferred internationally.
Security and Other
We use reasonable measures to strive to safeguard and secure the Personal Data we collect. Any transmission of personal information is at your own risk. Technology, such as, but not limited to, Transport Layer Security (TLS) and Secured Socket Layer (SSL), is used to enhance security and reduce risk of loss. Our security practices, processes or technology do not guarantee absolute security of your information and you should take all normal personal precautions such as, but not limited to, not sharing passwords, closing browsers, and not using public networks (e.g., internet cafes, etc.).
Subject Access/User Rights
As a user, you are subject to the following rights:
The right to be informed of the use of your Personal Data
The right to access and/or to require the correction or erasure of your Personal Data
The right to block and/or object to the processing of your Personal Data
The right to not be subject to any decision based solely on automated processing of your Personal Data
In limited circumstances, you may have the right to receive Personal Data in a format which may be transmitted to another entity.
You may seek to exercise any of these rights by updating your information online (where possible) or by sending a written request to our Data Protection Officer using the contact details listed below:
Jonathan Mabe, Data Protection Officer
Association of International Certified Professional Accountants
220 Leigh Farm Rd.
Durham, North Carolina 27707
You are encouraged to report any improvements, suggestions, or any suspected breaches of privacy or security to us by emailing us at SecurityandPrivacyOffice@aicpa-cima.com.