Privacy Policy

We at EpitomeTRC and its subsidiaries are committed to protecting and safeguarding your privacy.
This policy outlines how we handle and use the personal information you share with us.

General

Our website is accessible to all without requiring personal details. However, certain services necessitate the collection and storage of personal data. For instance, job seekers registering with us will need to provide information such as their name, contact details, and address. We retain this data to offer services like job alerts, career advice, or to facilitate employment opportunities with us or our clients.
As our customer or a supplier, we utilize the information you have provided (i.e. name, email address, phone number, business address among others) to deliver the services you requested (for example: a case study or a newsletter or marketing information etc) or contacting you for other services or events that maybe of interest to you, and for other legitimate purposes, permitted by law.
Automatic collection of information: We collect some information automatically from you and store it in server log files upon your visit. This collection includes, but is not limited to: O/S being used, browser type and browser version, your device’s IP Address, the date and time of your access, the pages you visit. We collect this non-personal identifying information to diagnose problems and for better website administration. We may also use it to help identify you and to gather broad demographic information.
We utilize Google Analytics cookies to measure our website performance and track visitor behavior. This is to ensure that visitors can efficiently find the necessary information they are looking for. However, no personal identifiable information is collected. You can easily delete these cookies by navigating into the setup options of your browser or you can download and install the Google Analytics Opt-out Add-on to your browser to prevent Google Analytics from collecting statistics about your website visit.
We also have tracking cookies that track open rate, pages visited, links viewed/clicked and time spent on our website upon sending promotion / marketing and regular emails to clients through our CRM (Lead squared). We collect and process this information to provide superior browsing experience by personalizing the website and identify areas of improvement
The data we may collect through our website is stored by our ISP (Amazon) in a highly secure environment in India and / or Singapore (and they do not disclose or sell this data to anyone else.

Retention Period

We retain your personal information for as long as needed or as permitted by law considering the purposes for which it was retained. The following factors drive the retention period.

The duration of our ongoing relationship with you [Generally, up to 2 years after application or unsuccessful application]
A period beyond the time of the ongoing relationship if we have a legitimate business purpose (example: for analysis and record-keeping). [Usually, 7 years, but may vary depending on local laws]
Legal requirement to which we may be subject to the local company laws [Tax records, Contractual Obligations, Dispute Resolution]

Links to external websites

Please note that we are not responsible for the collection, usage, and disclosure policies and data security practices of other organizations, such as LinkedIn, Pinterest, Facebook, Twitter, YouTube, Apple, Google, Microsoft or any application provider, operating system provider, wireless service provider or device manufacturer, including any Personal Information you disclose to other organizations through or in connection with our Social Media Pages.

If you do not want Facebook/ Twitter /LinkedIn, Pinterest, YouTube to associate your visit to our site with the respective accounts, please log out of these accounts before accessing our website

Non-provision of personal information

If you decide against providing the personal information that is mandatory for processing your request, then we may be unable to fulfill your request.

Data Access Requests, Modification and Objection

EpitomeTRC will provide users the option of requesting copies of their personal data we hold, and they have the right to modify/update or ask for their deletion of their personal information we hold, in accordance with the applicable laws. You also have the right to object to certain processing (example: direct marketing purposes) and also withdraw consent in situations where we have asked you for consent to process your personal information. When we process your personal information in scenarios where there is a legitimate interest in doing so, you may have the right to object, however these rights maybe limited, where we can demonstrate, for the establishment, exercise or defense of legal claims.

Personal Identifying Information Usage (GDPR)

The personal information processing activities and the lawful basis for processing:

Activities

Provide recruitment services and information on such services
Provide response to a complaint or a question
Identify you after you register on our website
Updating or enhancing our recruitment and customer database
Customer and/or candidate feedback to our service quality
Information related to any new service options, case studies, pricing changes that maybe of relevance to you, or where you opted in to receive such information
Processing of information for the execution of a contract agreement to which you are the party
Disclosure of information to regulatory investigation agencies or due to court warrant or fraud investigation agencies
For any purposes other than the above

Article 6, Lawful basis

Legitimate interests and Consent
Contract
Legal Obligations
Consent

Disclosure

Generally, we do not share any personal identifying information with third parties except:

In the cases of regulatory or fraud or any legal investigation undertaken by the government authorities, where we are required by law to assist
Permitted transfer of information between Epitome TRC and clients based in European Union.

Data Security

EpitomeTRC has reasonable and relevant security practices and procedures for physical, electronic and administrative access controls to safeguard your personal information. Since our ISP may store information outside of EU, in India and Singapore, we utilize relevant contractual clauses or depend on a service provider’s Privacy Shield certification or its EU Data protection Board approved corporate rules that are in place to protect your Personal Information.

EpitomeTRC employs robust security measures to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. These measures include:

Encryption: We use industry-standard encryption technologies to safeguard data both at rest and in transit.
Access controls: Our systems implement strict access controls, limiting access to personal information to authorized personnel on a need-to-know basis.
Regular security audits and assessments: We conduct regular security assessments and vulnerability scans to identify and address potential weaknesses.
Employee training: Our employees receive ongoing training on data protection best practices and security awareness.
Incident response plan: We have a comprehensive incident response plan in place to address data breaches promptly and effectively.
Data transfer safeguards: For data transfers outside the EU, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs), Privacy Shield certifications (if applicable), or Binding Corporate Rules (BCRs) to ensure adequate protection.

Updates to Privacy Policy
EpitomeTRC may update this Privacy Policy from time to time to reflect changes to our information practices. If we make any changes, we will notify you by email (sent to the email address specified in your account) or by means of a notice on this website prior to the change becoming effective.

Contact Us

For any inquiries regarding our privacy policies, please feel free to contact us at:

Head Office: Indore, Madhya Pradesh
Email: info@epitometrc.com