Privacy Policy

Introductory Considerations

On 25 May 2018, the new General Data Protection Regulation (GDPR – General Data Protection Regulation) came into force. The objective of the Regulation is to provide further protection to personal data, defined as “any information concerning an identified or identifiable natural person (so-called Data Subject)”. This Privacy Policy provides users of this site with clear and detailed information on the processing of their data according to the General Data Protection Regulation and the Personal Data Protection Code. In particular, by consulting this document, the reader will have the possibility to confer the set of data collected, the methods of their use, and the rights at his disposal regarding the protection of sensitive data.

A reference to “Berribot,” “we,” or “us” is a reference to Berribot Pvt Limited or Berribot India Pvt Ltd and its relevant affiliates involved in the processing of your Personal Data as required for the provision of the requested Berribot services and/or products.

For any information or notification regarding privacy, please refer to the company email [email protected].  

Data collected through the website

If you as an end-user are using our Website, then you have directly engaged with Berribot. 

• In such cases, we are acting as a data controller, and we as Berribot are collecting and
  processing your personal information. 
• In such cases, we are responsible for data collection, processing and protection in accordance with data protection laws. 

The information that we may collect are as follows ;

1. Email ID 
2. Name 
3. Phone number 
4. Country, state, city 
5. Current employer, your role 
6. Your IP address, and its derived geographic location
7. Your device info – type, device identification numbers, browser used 
8. Your Website usage – Pages accessed, links clicked 
9. Other technical information 
10. To collect some of this information, we may use cookies and similar tracking mechanisms

Data collected through our services

If you as an end-user are using our Services, then one of our customers/partners may have asked for your information. 

• In such cases, we are acting as a data processor, and we are collecting and processing
  your personal information on their behalf and in accordance with their instructions.
• In such cases, our customers/partners are responsible for data collection, processing and protection in accordance with data protection laws. 
• For any information or notification regarding privacy, please refer to our customers/partners contact details.

The information that we may collect from you on behalf of our customers/partners are as follows;

1. Email ID
2. Login ID
3. Name
4. Phone number
5. Date of Birth
6. Profile/display picture
7. Copy of Government-issued ID
8. Country, state, city, postal code, full postal address
9. Educational Details: University/college, grades, degree, branch, dates
10. Professional Details: Previous/current employers, dates, salary
11. Resume/CV
12. Social profiles like LinkedIn, Github, etc.
13. Your recruitment status – as per the customer/partner process 
14. Your assessment performance – submitted answers, test scores, rank 
15. Your video, audio both live & recording and captured live images through the proctored
    assessments and interviews 
16. Your IP address, and its derived geographic location 
17. Your device info – type, device identification numbers, browser used 
18. Your Service usage – Pages accessed, links clicked 
19. Other technical information 
20. To collect some of this information, we may use cookies and similar tracking
    mechanisms

Data Collected by Third Parties

The Site uses the following third-party components that independently collect data about users:

– Google Analytics: This component collects metric and email data about users when they contact us by using the website’s forms. The user can read their Privacy Policy here.

Special note of third-party services 

Our Website and Services may contain links to other websites and services provided by
third-parties, for example our Customers/Partners. 

Any personal information that are collected via third-party websites or services are subject to
that third-party’s privacy policies. We do not hold responsible for data collection, processing and protection.

Purposes and methods of processing 

Berribot will process the Personal Data for the exclusive purpose of carrying out typical business operations. They include

• providing and enhancing our website and services
• improving the user experience of our websites and services
• contact you in response to your request
• contact you for administrative purposes or customer service purposes
• tracking your status, submissions, video, audio, profile information as required for lawful delivery of our Services
• verifying your identity when subsequently logging in and using our services
• preventing you from navigating away from assessment window
• detecting and preventing fraud, suspicious activities, and other illegal activities
• collecting feedback and evaluate the effectiveness of our marketing activities and overall services
• aggregating data; we may anonymize and aggregate data collected through our website and to create statistics that may be used for any purpose, provided that such statistics do not identify any customers or individuals or contain any Personal Information.
• complying with a law or regulation, court order, or other legal process
• protecting our rights and property

 

Berribot will operate according to this agreement, within limits and according to the procedures set out in the Privacy Law.

It, therefore, undertakes to

1. Treat Personal Data lawfully, adopting all organizational measures properly to minimize the processing of only those Personal Data strictly necessary to execute Contracts or legal obligations correctly;
2. Process Personal Data following the information on the methods of processing Personal Data provided to Data Subjects through the information on the processing of Personal Data;
3. Verify that the Personal Data is accurate, relevant, complete, and not exceeding the purposes for which they were processed. It includes reporting in writing to third parties any needs to modify, update, correct or delete Personal Data and undertaking them at their request. Such data will not be communicated or accessible to third parties except in the cases provided for by law. 

Transfer of Personal Information 

• Regarding the transfer of data to third parties, Berribot undertakes to follow and correctly apply the instructions dictated by the legislation, refraining from defining any methods or purposes of processing other than those imposed by the agreements with its customers. In other words, in complete agreement with the current legislation on data protection (EU 2016/679, art.13/14), any potential transfer to third parties will be requested from time to time by the user concerned, who may object and deny your consent except in the following cases:
  • Transfer upon request for legal proceedings, legal acts, judicial and/or police investigations.
  • Transfer documents and information required by the police.
  • Transfer to our partner for the correct provision of the service offered.

User rights in accordance with the privacy regulations

By GENERAL DATA PROTECTION REGULATION (“GDPR”), the end-user has the right, following current legislation, to exercise one or more options from those described below:

• Right to access: The end-user have the right to access (and obtain a copy of, if required) the categories of personal information that we hold about them, including the information’s source, purpose and period of processing, and the persons to whom the information is shared.
• Right to rectification: The end-user have the right to update the information we hold about them or to rectify any inaccuracies. Based on the purpose for which we use the information, the end-user can instruct us to add supplemental information in our database.
• Right to erasure: The end-user have the right to request for deletion of their personal information in certain circumstances, such as when it is no longer necessary for the purpose for which it was originally collected.
• Right to restriction of processing: The end-user may also have the right to request to restrict the use of information in certain circumstances, such as objection to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
• Right to data portability: The end-user have the right to transfer information to a third party in a structured, commonly used and machine-readable format, in circumstances where the information is processed with their consent or by automated means.
• Right to object: The end-user have the right to object to the use of information in certain circumstances, such as for direct marketing.
• Right to complain: The end-user have the right to complain to the appropriate supervisory authority if they have any grievance against the way we collect, use or share of information. This right may not be available if there is no supervisory authority dealing with data protection in your country.

By PERSONAL DATA PROTECTION ACT (PDPA), the end-user from Singapore have following rights:

• Keep your personal data up-to-date.
• Right to access your personal data.
• Right to withdraw consent on your personal data.
• Right to compliant in case of breach of data.

The user may exercise any of the above rights by contacting us at [email protected]

Minor’s data care

We process minor’s data or information with utmost care. We do not collect minor’s information unless or until it is a need to be processed as part of the obligation for our customer. 

In case of a minor using our service, it is sole responsibility of the customer to get consent from the institute, parent or legal guardian. We take reasonable precautions to ensure minor’s data is not misused in any way. 

In the event of discovery of any minor’s information without consent of parents, either we delete
the information or take reasonable measures to seek the parent’s consent. 

It also needs to be noted that these regulations are targeted mainly to the personal information collected while using our website or services.

Data Retention 

We will keep your Personal Data for 30 days in generic terms or based on a special agreement and need based on our customer privacy policy we may store it as long as we have a relationship with you and so far the agreement with your employer is in force. Furthermore, Berribot retains the data for a period after the termination of contracts only and only in relation to regulatory, tax, insurance, and other requirements in the places it operates or as otherwise required under the relevant local laws. Once this information is no longer necessary for the provision of services, we will proceed to delete your information. We do not take legal responsibility for any unwanted access or any hacking activity by third parties.

The data is stored exclusively in electronic and non-paper formats.

Privacy policy compliance

We make every effort, including periodic reviews, to ensure that Personal Information that we collect is used in conformity with this Privacy Policy. 

If you have any concerns about our adherence to this Privacy Policy or the manner in which your personal information is used, kindly write to us [email protected]. 

We will contact you, and if required, coordinate with the appropriate regulatory authorities to effectively address your concerns. 

Notification of changes

We may modify the Privacy Policy at any time, upon notifying you through a service announcement or by sending an email to your primary email address. 

If we make significant changes to the Privacy Policy that affect your rights, you will be provided with at least 30 days’ advance notice of the changes by email to your primary email address. If you think that the updated Privacy Policy affects your rights with respect to your use of our products or services, you may terminate your use by sending us an email within 30 days. 

Your continued use after the effective date of changes to the Privacy Policy will be deemed to be your agreement to the modified Privacy Policy. You will not receive email notification of minor changes to the Privacy Policy. 

If you are concerned about how your personal information is used, you should check back at https://berribot.com/privacy-policy/ periodically.