Last Revision Date: September 2017
At KrolLDiscovery, our business is built upon being entrusted with personal data and confidential information. We are committed to protecting personal data, whether required by law, agreement or simply civility. We encourage you to review the statements below explaining how we collect and use personal data you share with us.
Information We Receive From Clients
As an eDiscovery company, much of the personal data we collect and store is provided by clients rather than directly from individuals. This is likely to include names, address, email address, email content, fileshares and other data. Any personal data received on behalf of clients is used strictly for the business purposes defined in the agreement between the client and KrolLDiscovery. It is not shared with third parties unless otherwise agreed and in such a case, strictly to provide the services to the client.
An individual who seeks access or who seeks to correct, amend, or delete inaccurate personal data provided to KrolLDiscovery by a client should direct their query to that client in the first instance. Similarly, an individual wishing to limit the use or sharing of their personal data should direct their query to that client.
Information About Visitors To Our Website
We gather general information about the use of our websites, such as which areas users visit most frequently and which services users access the most. We use only aggregated data which cannot identify an individual visitor to our site. This information helps us determine what is most beneficial for our users and how we can continually create a better overall online experience. We may use this general information and also share it with our business partners so that they too may understand how this site is used.
How We Use Your Personal Information
You can browse our website without disclosing personal information about yourself. By “personal information” we mean any information that may be used to identify you, including, but not limited to, your first and last name, physical address, email address or other contact information.
If you choose to submit your resume/CV, we will collect personal information about you, such as your name, location and email address. If you supply a resume/CV, then you may also choose to provide us with details of your career history and other personal information such as address, telephone number, gender and nationality.
Disclosing & Retaining Information
We may share personal information with our affiliated or related entities in connection with delivering services to you and our clients and to companies who provide services to us including, but not limited to, order fulfillment and e-commerce providers. Such disclosure is strictly limited to provide our services.
We will not disclose the personal data that you provide, or details of your individual visits to this website, to any outside third parties except as may be necessary for job applications or other services that you have requested, with your consent, or when we believe the law requires it. However, as described above, we may record general information about the use of our website and share it with our business partners. If this practice should change in the future we will update this policy and provide individuals with opt-out choice prior to sharing their personal data with non-agent third parties.
KrolLDiscovery may also be required to disclose an individual’s personal data or confidential information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
Personal data provided to KrolLDiscovery will be retained only so long as is required for the purpose for which it was given, such as to provide services to you and our clients.
In cases of onward transfer to third parties of personal data of individuals residing in the EU which was received by KrolLDiscovery and is subject to the EU-US Privacy Shield or individuals residing in Switzerland and which was received by KrolLDiscovery and is subject to the Swiss – EU Privacy Shield, KrolLDiscovery is primarily liable for the acts and omissions of such third parties. KrolLDiscovery shall ensure that such third parties maintain security and data handling measures to standards prescribed by KrolLDiscovery prior to transferring such personal data.
We are committed to protecting the security of all personal data we receive, yours included. We use a variety of measures to ensure that your personal data is protected from:
- Unauthorized access
- Improper use or disclosure
- Unauthorized modification or alteration
- Unlawful destruction or accidental loss
All our employees and agents who have access to or are involved in the processing of personal data respect the confidentiality of such personal data.
The Internet, nevertheless, is an open system. While we use industry-standard efforts and security practices to safeguard your personal data, we cannot warrant the security of any personal data you elect to provide to us.
You should also be aware that our website may include links to external websites operated by other organizations. They may, like us, collect personal data from visitors to their site. We cannot guarantee the content or privacy practices of any external websites and do not accept responsibility for those websites.
If we decide to change our privacy commitment, we will post those changes here so that you will always know what personal data we collect, how we might use that personal data and whether we will disclose it to anyone.
You have the following rights:
- A right to see the personal data we hold about you; and
- A right to have any mistakes corrected or (in certain circumstances) to have your personal data deleted.
An individual wishing to exercise the above rights and/or limit the use or sharing of their personal data should contact KrolLDiscovery using the means defined in the Contact section below.
Adherence to EU-US and Swiss – US Privacy Shield Frameworks
KrolLDiscovery is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with regard to the Privacy Shield Principles.
KrolLDiscovery has further committed to refer unresolved privacy complaints under the EU-US and Swiss – US Privacy Shield Principles to BBB EU PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.
Please note that if your complaint is not resolved through these channels, under limited circumstances, a binding arbitration option may be available before a Privacy Shield Panel.
If you have any questions about how your personal data is used, or if you want to access, correct or remove your personal data, please contact Jason Davison at firstname.lastname@example.org. You may write to us at: KrolLDiscovery, Attn: Jason Davison, 8201 Greensboro Drive, Suite 717, McLean, VA 22102