We believe any organization entrusted with personal information about its clients, agents and employees has a responsibility to protect the privacy of that information. We at Governance Risk Complaince Inc. take our responsibility to protect your privacy very seriously.
Our Privacy Policy has been established with our clients, agents and employees in mind in order to protect their rights to privacy. This policy relates to the collection, use and disclosure of personal information by our company, its agents and employees. Personal information includes any information about an identifiable individual, but does not include the name, title or business address or business telephone number of an individual.
Our Privacy Policy is to adhere to the ten principles of privacy based on the Canadian Standards Association's Privacy Principles.
Principle #1: Accountability
Governance Risk Compliance Inc. is accountable for all personal information in its possession or custody, including any personal information disclosed to third parties for processing or other administrative functions, and for professional standards purposes.
Principle #2: Identifying Purposes
Governance Risk Compliance Inc. shall identify the purposes for which personal information is collected either before or at the time the information is collected.
Principle #3: Consent
The knowledge and consent of the individual are required for the collection, use, or disclosure of personal information, except where inappropriate, or where required or permitted by law.
Principle #4: Limiting collection
Collection of personal information shall be limited to that which is necessary for the purposes identified by Governance Risk Compliance Inc. and information shall be collected only by fair and lawful means.
Principle #5: Limiting use, disclosure and retention
Personal information shall not be used or disclosed for purposes other than those for which it was collected, except with the consent of the individual or as required or permitted by applicable law, rules or regulations. Personal information shall be retained only as long as necessary for the fulfillment of those purposes.
Principle #6: Accuracy
Personal information shall be as accurate, complete, and up-to-date as is necessary to fulfill the purposes for which it is to be used.
Principle #7: Safeguards
Personal information shall be protected by security safeguards appropriate to the sensitivity level of the information.
Principle #8: Openness
Governance Risk Compliance Inc. shall make information available to its clients, agents and employees about the policies and practices that apply to the management of their information.
Principle #9: Individual access
Upon request, an individual shall be informed of the existence, use and disclosure of their information, and shall be given access to it. An individual may verify the accuracy and completeness of their information, and may request that it be amended if appropriate.
Principle #10: Challenging compliance
For any questions or complaints with respect to privacy and the Governance Risk Compliance Inc. Privacy Policy, please submit your inquiries by contacting us.
