Collection of personal information
PwC Indonesia collects personal information from clients, customers, employees, contractors and other individuals. We collect this information when it is necessary for business purposes.
The main types of personal information PwC Indonesia collects relate to the contact details and organisational roles of our clients, suppliers and other business contacts. Typically, this information includes names, addresses, telephone numbers, e-mail addresses and job titles. In the course of providing professional services to our clients, we may collect more detailed personal information (for instance financial details if we are engaged to perform financial services).
We collect most information directly from individuals when we deal with them. The personal information we collect may be provided in forms filled out by individuals, face-to-face meetings, email messages, telephone conversations or by third parties. If you contact us, we may keep a record of that contact.
Use of personal information
The main purposes in collecting personal information about individuals are:
We may use personal information about individuals to market our services, including by email. However, individuals always have the opportunity to elect not to receive further marketing information from us by writing to email@example.com. Please allow 28 days for your request to be processed.
Alternatively, if we have contacted you by email, you may use the unsubscribe function in that email to notify us that you do not want to receive further marketing information from us by email.
This policy may not apply to the handling of information about employees by PwC Indonesia. For information about our practices relating to employee information, please contact us directly.
Disclosure of personal information
PwC Indonesia does not routinely disclose personal information to other organisations unless:
you give your consent.
We may also share non-personal, de-identified and aggregated information for research or promotional purposes. Except as set out in this policy, we do not sell personal information to third parties, or allow such third parties to use that personal information.
PwC uses a range of service providers to help us maximise the quality and efficiency of our services and our business operations (including internal business requirements, such as recruitment and human capital requirements). This means that individuals and organisations outside of PwC will sometimes have access to personal information held by PwC and may collect it from or use it on behalf of PwC. This may include, but is not limited to, independent contractors and consultants, travel service providers, mail houses, off-site security storage providers, website hosts, electronic database managers, or event managers, credit managers and debt collecting agencies. We require our service providers to adhere to our privacy guidelines and not to keep this information or use it for any unauthorised purposes.
If PwC's staff obtain products or services offered by a third party pursuant to an agreement or arrangement between that third party and PwC, we may provide your personal information to that third party, including information that relates to your use of such services.
Transfer of information outside Indonesia
As part of a global network of PwC firms, PwC Indonesia exchanges information, including personal information, between the firms within the network. As a result, we may transfer personal information outside Indonesia to countries whose privacy laws provide different level of protection. PwC Indonesia may also use overseas facilities to process or back-up its information. As a result, we may transfer your personal information to our overseas facilities for these purposes.
However, any such transfer of information does not change any of our commitments to safeguard your privacy and the information remains subject to existing confidentiality obligations.
Privacy on Our Web Sites
This policy also applies to any personal information we collect via our websites, including pwc.com. In addition to personal information you provide to us directly (such as where you make a request or complete a registration form), PwC may also collect personal information from you via its websites.
If you are concerned about cookies, most browsers now recognise when a cookie is offered and permit you to opt out of receiving it. If you are not sure whether your browser has this capability, you should check with the software manufacturer or your internet service provider. In most cases, you can refuse a cookie and still fully navigate a PwC website.
In order to properly manage our websites, we may log certain statistics about the users of the sites, for example the users’ domains and browser types. None of this information specifically identifies an individual and it is used solely to ensure that our websites present the best possible navigational experience for visitors.
Whenever a registered member (such as a PwC alumnus) logs in to our websites, they will be identified by their user name and password. The information we collect about members’ use of our websites is used purely for measuring site performance and in assisting to resolve any technical difficulties.
Security of Personal Information
Depending on the purpose for which we have collected personal information (for example, registration for a PwC event or a request for particular information or material), we may store some of the information electronically in PwC’s customer relationship management system. Some or all of this personal information may be available to partners and authorised staff of PwC for use in accordance with this policy.
PwC will endeavour to take all reasonable steps to keep secure any information which we hold about you, whether electronically or in hard-copy, and to keep this information accurate and up to date. We also require our employees and data processors to respect the confidentiality of any personal information held by PwC.
PwC aims to achieve industry best practice in the security of the personal information which it holds. It is our policy to destroy personal information once there is no longer a legal or business need for us to retain it.
Access to Information
We will provide access to personal information upon request by an individual, except in the limited circumstances in which it is permitted for us to withhold this information (for instance, where granting access would infringe another person's privacy).
When you make a request to access personal information, we require that you provide some form of identification (such as a driver’s licence or passport) so we can verify that you are the person to whom the information relates. In some cases we may also request an administrative fee to cover the cost of access.
If at any time you want to know what personal information we hold about you, you may contact us by writing to firstname.lastname@example.org.
Corrections and Concerns
If you believe that information we hold about you is incorrect or out of date, or if you have concerns about how we are handling your personal information, please contact us and we will try to resolve those concerns.
If you wish to have your personal information deleted, please let us know and we will take reasonable steps to delete it (unless we need to keep it for legal, auditing or internal risk management reasons).
Effect of Policy
The amended policy will apply between us whether or not we have given you specific notice of any change.
This policy was last updated in January 2009.
For information about this policy please contact the PwC privacy officer: email@example.com.