Skip content

隐私声明

LRQA非常重视您的个人信息安全,并承诺确保您的个人信息始终得到保护。

What is the purpose of this Global Privacy Notice?

The purpose of this Global Privacy Notice is to provide you with an explanation about how your personal information is processed by us as well as your rights in relation to your data. This notice applies to “you” and “your” as a ‘data subject’ when you are a user of our websites, as a client or as someone making an enquiry or interacting with us (including by phone, email, in-person at events or on social media). There are separate privacy notices for employees, candidates and suppliers.

We are LRQA Group Limited of 1 Trinity Park, Bickenhill Lane, Solihull, B37 7ES, United Kingdom. In this notice, when we refer to "LRQA”, “we”, “us” or “our” we mean LRQA Group Limited and all associated group companies globally. 

We are registered with local Data Protection Authorities in each country where we are required to do so. A list of countries we operate in and contact details for each, along with the relevant Data Protection Authority can be found here, If you are unsure which company or data protection authority applies then please feel free to contact us on dataprotection@lrqa.com 

Our notice is designed to meet or exceed the obligations required by applicable data protection laws in each country we operate in around the world. Where the law differs significantly from this notice within a specific country we have included an addendum specifically for that country. 

Please read this notice carefully. By visiting our site, or by interacting with us, you confirm that you have read and understood this notice. Should you have any queries or concerns please contact dataprotection@lrqa.com 

Our data protection principles:

We will always endeavour to comply with applicable data protection laws wherever in the world we process your personal data. We will always apply the following principles:

  • We will be fair, lawful and transparent about how we use your personal data 
  • We will only use your personal data for the purpose we collected it (or compatible purposes)
  • We will only collect and process the minimum amount of personal data we need for that purpose 
  • We will always ensure your personal data is accurate 
  • We will only keep your personal data for as long as we need it 
  • We will always ensure that we keep your personal data secure 
  • We will uphold your rights to your data
  • We will comply with applicable data protection laws wherever you are in the world 

What personal information may we collect about you and how will we use it?

1. Information you give to us, or we collect about you

We may collect personal information  directly from you, or relating to you, in several ways. This may include:

  • Visiting one of our websites
  • Interacting with us by phone, email, post, in-person or by webchat
  • Via our social media channels 
  • At events
  • Through surveys and reviews
  • Via CCTV footage if you visit one of our offices
  • Registering your interest for our services via webforms

2. Types of Personal Information we collect and why we process it

The following table explains the personal information we may collect and the different ways we may use it:

LRQA needs to know basic personal information about you in order to respond to requests you make to us and to provide you with information relating to our services and to carry out our services for you. 

Source

Type of Data

Lawful Basis

Why we collect it

Emails and Webchat

Name, Email Address/es, Content of email, metadata (open rates, click-throughs, device type, delivery rates for marketing emails)

Legitimate interests. Occasionally for other lawful basis such as fulfilment of a contract with you

To allow you and us to interact and exchange information.

 

To allow us to market our services and products

Phone

Name, phone number

Legitimate interests.

To allow you and us to interact and exchange information.

Social Media

Name, Social media handle, company, photographs, content of posts, metadata

Legitimate interests.

To allow you and us to interact and exchange information.

Website

IP Address, Location, Device type, URL, metadata, browsing details

 

Name, Contact details and content from forms and surveys

Legitimate Interest for Strictly Necessary cookies

 

Consent for performance, Functional, analytical and targeting cookies

 

Please see our Cookie Policy for more details

To enable you to have a good experience on our website.

 

To help us improve our website.

 

To complete forms and allow us to respond to you.

Events

Name, Company, job title, contact details, areas of interest

Consent

Allows us to confirm attendance and provide further information if requested

On our Premises

Name, Company, people you are visiting, arrival and departure times, CCTV images

Legitimate Interest or Contractual

It allows us to keep you and others safe and comply with applicable laws.

Surveys

Name, contact details, responses

Consent or Legitimate Interests

To understand your opinions and improve our services

Other types of Personal Data we collect from you:

Personal Details for Specific Business Activities: When you engage with various services provided through LRQA businesses, you may be required to supply further personal information about you or your staff in line with the requirements of that service, accreditation scheme regulator or other national regulator provisions under which LRQA operates. These activities will have a corresponding privacy notice specific to that activity if deemed necessary.

Client Training Services: we collect personal information about you such as name, email address, contact details (private or work-related), choice of course, attendance, completion level attained and any other information that you yourself provide through our designated course portal or other channels.

Marketing and Client Relationship Purposes: we use our legitimate business interests in processing your personal details in order to maintain and enhance existing and ongoing relationships we have, or would like to have, with you and your organisation. This may include approaching you for real-time feedback on our services, research, and surveys on our current business offering. Our marketing system allows you to configure your preferences and object to or opt-out of receiving marketing materials at any time.

Special Category Personal Data: We will never collect or process sensitive personal data unless required to do so for a specific and valid lawful purpose. In this case we will seek your prior explicit consent and provide you with a detailed explanation of how and why we process your data. Sensitive personal data will be processed in accordance with this policy and all applicable data protection laws including those related to international transfer of sensitive personal data.

3. Personal Data processed by third parties

We may process information from other joint venture partners, third parties, or service providers contracted to carry out work on our behalf. We may be required by law to collect certain information, require it to perform a contract or prior to entering into a contact with you. These include, but are not limited to:

  • Application and System Vendors and sub-contractors who provide services to us to allow us to
  • Conduct our business and services on your behalf
  • Banks for facilitation of payments
  • Credit reference agencies
  • Debt recovery agencies
  • Data providers to ensure our data is validated, accurate, complete and maintained
  • Accreditation bodies
  • Delivery services (document signing, postal services) in the course of business
  • Government and law agencies where required to do so
  • Audit and certification bodies

How do we use your data?

4. What purposes do we use your data for?

LRQA use your data for a number of purposes. Each will have its own lawful basis and be compliant with all applicable data protection laws. These purposes include, but aren’t limited to:

  • Carrying out our business (including marketing)
  • Conducting services on behalf of our clients (including the third parties we may use to achieve this)
  • Complying with legal obligations
  • To interact with, communicate with and respond to you
  • To conduct surveys and research

5. How is your personal information protected?

LRQA will hold your personal information securely using appropriate technical and organisational measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. 

In addition, we do not disclose your personal information to anyone outside our own group, except  (i) when necessary for the purposes stated in this Privacy Notice; and (ii) where we have appropriate safeguards are in place to ensure such information will continue to be held and used in accordance with this notice and all applicable data protection laws.

6. How long does LRQA keep personal information?

Your personal information will be kept by LRQA for no longer required for the purpose it was collected for (unless required differently by law). 

7. International Transfers

LRQA may collect personal data from you in the country in which you work or live. We, and those third parties that process data for us, store and otherwise process that personal data in  various locations around the world including the UK, in the European Economic Area (EEA) and in the other countries in which we operate.

We will make sure that any transfers of your personal data from one country to another comply with all applicable data protection and privacy laws which apply to us and you. We will not transfer personal data outside of a country where there are restrictions on doing so.

We will ensure that we:

  • Include standard data protection contractual clauses or a transfer agreement
  • Contracts and subcontractor contracts to protect the data being transferred or
  • Ensure that the country in which your personal data will be handled has been deemed "adequate" by the relevant countries
  • Ensure a data transfer risk assessment has been conducted
  • Put in technical and operational measures to ensure that, where applicable, data is segregated and protected according to the applicable data protection laws

Your rights

8. What are your legal rights?

You have a number of legal rights relating to your personal data:

Your Right

Description

Examples

Be  informed how we process your personal data

You have the right to be informed about how we process your data. This is explained to you in this privacy notice and in any privacy statement when we collect your data

Our Global Privacy Notice (this notice), privacy statements (when we collect your data), contractual data processing agreements and clauses

Access your personal data

 

 

 

 

You have the right to ask us what personal information we hold about you, how we process it and for a copy of any personal data related to you

A copy of the personal information we hold about you (or related to you) in a searchable system.

 

Please note that some data may be redacted.

Rectify your personal data

You have the right to ask us to correct inaccurate or incomplete personal information that we hold about you.

Changes to your contact details, changes of bank details, change of address.

 

Please note that we may need to verify requested changes with you or other parties.

Erase your personal data

You have the right to request that we permanently erase your personal data

Erase contact details if we are no longer interacting with you.

 

Please note that is some cases we may refuse to erase data where there is a lawful basis to retain the data (e.g. regulatory or other legal reason)

Restrict the processing of your personal data

The right to request that we restrict the inclusion of your personal data within specific processes

That we restrict the use of your personal data for marketing (withdraw consent)

 

Object to your personal data being processed

The right to object, at any time, to the processing of your personal data

That we stop processing your personal data.

 

Please note that is some cases we continue processing where there is a lawful basis to retain the data (e.g. regulatory or other legal reason)

Right to request human intervention

The right to request human intervention If we use any automated decision making or profiling

To review or change a decision where it has been made by a computer or algorithm (e.g. a credit check). A human will review specific details that may have not been taken into consideration.

Portability of your Personal Data

The right to have a copy of your personal data to be transferred securely and in a useable format to another data controller

This right only applies to personal data relating to you.

Right to Complain

You have the right to complain to a supervisory data authority if you feel we have not processed your personal data appropriately.

If you feel we are unlawfully processing your data, if there was a data breach, or if we haven’t adequately informed you.

Control over your Personal Data being sold or disclosed

The right to know whether we sell or disclose your data, and to whom. You also have the right to say no to us doing so.

We do not sell data. We would only disclose data where contractually agreed with you, or for other lawful processes where required.

Not to be discriminated against

The right not to be discriminated against for exercising your privacy rights.

We will not face any retribution or penalty for exercising your privacy rights with us

You can manage your rights and preferences through the following channels:
  • In our Preference Centre
  • An unsubscribe link on marketing communications
  • Directly to our Data Protection Officer ("DPO") and Data Protection Team at dataprotection@lrqa.com
  • Directly to the specific legal entity of LRQA, or your contact there

9. How to contact Data Protection at LRQA?

If you have any questions regarding this Privacy Notice or our use of your personal information, or if you wish to exercise your legal rights regarding your personal data, please contact our Data Protection Officer by:

  • Email: dataprotection@lrqa.com
  • Post: Data Protection Officer, LRQA, 1 Trinity Park, Bickenhill Lane, Solihull, B37 7ES United Kingdom

10. How do you lodge a complaint?

If you have a complaint regarding how your personal information has been handled by LRQA, please contact our Data Protection Officer, using the details provided above.

You also have a legal right to lodge a complaint with the  supervisory authority in the relevant country.

Locate the relevant supervisory authority for your country by clicking below:

Europe

Country

LRQA Office

Data Protection Authority

Austria

LRQA Austria GmbH

Floridsdorfer Hauptstraße 1 Wien 1210

 

Tel: +43 1 587 26 81 0

Österreichische Datenschutzbehörde
Barichgasse 40-42  1030 Vienna
Austria / Europe


Tel: +43 1 52 152-0
Email: dsb@dsb.gv.at

www: dsb.gv.at

 

Belgium

LRQA België BV

Filip Williotstraat 9 2600 Berchem

 

Tel: +32 33 752 970

Autorité de protection des données

Drukpersstraat 35, 1000 Brussels

 

Tel: +32 (0)2 274 48 00

Email: contact(s)apd-gba.be

www: dataprotectionauthority.be

 

Bulgaria

Lloyd's Register Inspection Limited – Bulgaria Branch

81A Bulgaria Blvd Floor 8, Office 9 Sofia 1404

 

Tel: +359 (0)2 818 7800

Personal Data Protection Commission

2 Professor Tsvetan Lazarov, Sofia 1592
Bulgaria

Tel: 02/91-53-519

Email: kzld@cpdp.bg
www: cpdp.bg

 

Czech Republic

LRQA Česká Republika s.r.o.

Taborska 31 Prague 140 00 Prague 4 – Nusle

 

Tel: +420 235 313 063

Office for Personal Data Protection (UOOU)

Pplk. Sochora 27

170 00 Praha 7

 

Tel: +420 234 665 800

Email: posta@uoou.gov.cz

www: uoou.gov.cz

 

Denmark

LRQA Danmark ApS

Automatikvej 1, 3.; 2860 Søborg; Denmark

 

Tel: +45 70 711 741

Datatilsynet
Carl Jacobsens Vej 35
2500 Valby


Tel: +45 33 19 32 00
Email: dt@datatilsynet.dk

www: datatilsynet.dk

 

Finland

LRQA LIMITED, Suomen sivuliike

[No office]

 

Tel: +358 207 918 350

The Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto) 

P.O. Box 800, 00531 Helsinki Finland

Visiting address: Lintulahdenkuja 4, 00530 Helsinki Finland

Tel: +358 29 56 66700

Email:tietosuoja@om.fi

www: tietosuoja.fi

 

France

LRQA France SAS

 

LRQA Inspection France SAS

 

Tour Silex 2 – Espace Wellio 9 rue des Cuirassiers Lyon 69003

 

Tel: +33 (0)451 08 13 00

Commission Nationale de l’Informatique et des Libertés (CNIL)

3 place de Fontenoy
TSA 80175
75334 Paris Cedex 07

 

Tel: 01 53 73 22 22

www: cnil.fr

 

Germany

LRQA Deutschland GmbH

Butzweilerhofallee 3 50829 Köln Germany

 

Tel: +49 221 9888 0900

There is an authority for each of the 16 federal states. To find the right one for you please see:

 

BfDi website - https://www.bfdi.bund.de/EN/Home/home_node.html

 

Federal authorities - https://www.datenschutzkonferenz-online.de/datenschutzaufsichtsbehoerden.html

 

Greece

LRQA Group Limited - Greece Branch

 

LRQA Hellas SA

Feidiou 9 Athens 106 78

 

Tel: +30 21 11 99 6522

Hellenic Data Protection Authority (HDPA)

Kifissias 1-3
115 23 Athens
Greece

 

T: +30-210 647560

Email: contact@dpa.gr

www: dpa.gr

Hungary

LRQA Magyarország Kft.

Magyarországi Fióktelepe Budapest 1139 Budapest, Váci út 95

 

Tel: +36 1 350 6100

Hungarian National Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság)

1055 Budapest

Falk Miksa utca 9-11

 

Tel: +36 (30) 683-5969

Email: ugfelszolgalat@naih.hu

www: naih.hu

 

Ireland

LRQA Certification & Assurance Services Limited

 

The Green; Dublin Airport Central; Dubliin Airport; Co. Dublin; Swords; K67 E2H3; Ireland

Data Protection Commission

Dublin office

21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland

 

Regional office

Canal House
Station Road
Portarlington
R32 AP23 Co. Laois
Ireland

 

Tel: (01) 765 01 00

Webform: forms.dataprotection.ie/contact

www: dataprotection.ie

 

Italy

LRQA Italy s.r.l. 

Viale Monza 265 Milan, Italy 20126

 

Tel: +39 02 30551200

Garante per la Protezione dei Dati Personali

Piazza Venezia 11 - 00187 Roma

Italia

 

Tel: +39 06.696771

Webform: garanteprivacy.it/i-miei-diritti

www: garanteprivacy.it

 

Lithuania

LRQA Lietuva  UAB

2 A Nemuno Street Klaipeda LT-91199

 

Tel: +370 46 421 100

State Data Protection Inspectorate

L. Sapiegos str. 17

LT-10312 Vilnius

 

Tel: +370 5 271 2804

Email: ada@ada.lt

www: vdai.lrv.lt

 

Netherlands

LRQA Nederland B.V.

 

LRQA Verification B.V.

 

George Hintzenweg 77 Rotterdam 3068 AX

 

Tel: +31 10 899 7300

Dutch Data Protection Authority

(Autoriteit Persoonsgegevens) 
Postbus 93374
2509 AJ DEN HAAG

 

Tel:(+31) - (0)70 - 888 85 00

www: autoriteitpersoonsgegevens.nl

Poland

LRQA Polska Sp Zoo

ul. Leśna 1 Sopot 81-876

 

Tel: +48 58 555 75 00

Office of the President for Personal Data Protection

Urzad Ochrony Danych Osobowych
Stawki 2
00-193 Warsaw
Poland

 

Tel: +48 22 531 03 00

Email: kancelaria@uodo.gov.pl

www: uodo.gov.pl

 

Portugal

LRQA Portugal

Unipessoal Lda

Praça Duque de Saldanha 1, Piso 2, Atrium Saldanha Lisbon 1050-094

 

Tel: +351 211244500

Comissão Nacional de Proteção de Dados (‘National Commission for the Protection of Data’. also known as ‘CNPD’).

Av. D. Carlos I, 134 - 1.º

1200-651 Lisboa

 

Tel:  +351 21 392 84 00

Email: geral@cnpd.pt

www: cnpd.pt

 

 Romania

LRQA RO SRL

31 Iancului Street, Et.3, Sec.2 Bucharest 021716

 

Tel: +40 (0) 735 202 736

National Supervisory Authority For Personal Data Processing (Autoritatea Nationala de Supraveghere a Prelucrarii Datelor cu Caracter Personal)

28 30 Magheru Blvd

District 1, Bucharest

 

Tel: +40 318 059 211

www: dataprotection.ro

 

Spain

LRQA España, S. L.

 

LRQA Inspection Iberia SAU

 

Calle Princesa, 29, 1º, Madrid 28008, Spain

 

Tel: +34 91 062 58 50

Agencia Española de Protección de Datos (“AEPD”)

C/Jorge Juan, 6
28001 Madrid
Spain

 

Tel: +34 901 100 099 / +34 91 266 35 17

Webform: edeagpd.gob.es/sede-electronica-web

www: aepd.es

 

Sweden

LRQA Sverige AB

Johan Willins Gata 6 Göteborg, Sweden 416 64

 

Tel: +46 31 26 21 80

Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten)

Fleminggatan 14, 7th Floor

112 26 Stockholm

Sweden

 

Tel: +46 8 657 61 00

Email: imy@imy.se

www: imy.se

United Kingdom

LRQA Group Limited

 

LRQA Limited

 

Acoura Certification and Assurance Services Limited

 

Acoura Consulting Limited

 

Acoura Holdings Limited

 

Acoura Marine Limited

 

Elevate UK Management Limited

 

LRQA Apave Limited

 

LRQA (R&H) Limited

 

LRQA Verification Limited

 

Lloyd's Register Insurance (Technical Services) Inc - UK Branch

 

Nettitude Limited

 

1 Trinity Park, Bickenhill Lane, Birmingham B37 7ES

 

Tel:  0800 783 2179

 

Information Commissioner’s Office (ICO)

Wycliffe House

Water Lane

Wilmslow

Cheshire SK9 5AF

 

Tel: +0303 123 1113

www: ico.org.uk

Americas

Country 

Legal Entity

Regulatory Authority

Argentina

LRQA (Southern America) SRL 

Olga Cossettini 363, 3°Floor; 1107 City of Buenos Aires; Buenos aires ; Argentina

 

Tel: +54 11 4812 4001

Agency for Access to Public Information

(Agencia de Acceso a la Información Pública)

Av. Pte. Gral. Julio A. Roca 710, piso 2 - Ciudad Autónoma de Buenos Aires

C1067ABP

 

Email: info@aaip.gob.ar

www: argentina.gob.ar/aaip

 

Brazil

LRQA Do Brasil Ltda

Elevate Global Consultoria Ltda

BSD Consultoria Ltda

Rua Otavio Carneiro No 100 Rio de Janeiro RJ, CEP: 24230‐191

 

Tel: +55 (11) 4890 2265

National Data Protection Authority (ANPD)

North Commercial Sector - SCN, Block 6, Set "A", Venâncio 3000 Building, Block "A", 9th floor, CEP 70.716-900 - Brasília – DF.

 

Tel: (61) 2025-8101

Webform: gov.br/anpd/pt-br/canais_atendimento/cidadao-titular-de-dados/denuncia-peticao-de-titular

www: gov.br/anpd/pt-br

 

British Virgin Islands

BSD Consulting Inc.

Elevate Management Limited

No authority at present

Canada

LRQA Canada Limited

600 - 1741 Lower Water Street; Queen's Marque; Halifax B3J 0J2; Nova Scotia; Canada

Office of the Privacy Commissioner of Canada (PIPEDA)

30 Victoria Street

Gatineau, Quebec

K1A 1H3

 

Tel: 1-800-282-1376

www: priv.gc.ca/en/

 

Office of the Information and Privacy Commissioner of Alberta (PIPA Alberta)

Office of the Information and Privacy Commissioner (Edmonton)

#410, 9925 - 109 Street NW

Edmonton, AB     T5K 2J8

 

(Alternative address for Calgary:)

Office of the Information and Privacy Commissioner (Calgary)

Suite 2460, 801 6 Avenue SW

Calgary, AB     T2P 3W2

 

Tel: 1-888-878-4044

www: oipc.bc.ca/

 

Office of the Information and Privacy Commissioner for British Columbia (PIPA BC)

PO Box 9038 Stn. Prov. Govt.

Victoria B.C. V8W 9A4

 

Tel: (250) 387-5629

Email: info@oipc.bc.ca

www: oipc.bc.ca/

 

Commission d’accès à l’information du Québec (CAI)

 

Tel: 1-888-528-7741

Email: renseignements@cai.gouv.qc.ca

www: cai.gouv.qc.ca/

 

Chile

LRQA Chile SpA 

Blanco N° 625 - Of.112 - Edificio los Heroes Valparaíso Chile

 

Tel: +56 9 97192380

 

No Authority at present

Columbia

BSD Consulting S.A.S

Autoridade Nacional de Proteção de Dados (ANPD)

Setor Comercial Norte - SCN

Quadra 6, Conjunto "A"

Edifício Venâncio 3000

Bloco "A", 9º andar

CEP 70.716-900 - Brasília – DF

 

Tel: (61) 2025-8101

www: sic.gov.co/tema/proteccion-de-datos-personales

 

Mexico

LRQA Inc. (Mexico Branch)

Batallón de San Patricio 109 Valle Oriente San Pedro Garza García 66260

 

Tel: +52 81 81 52 10 00

National Institute of Transparency for Access to Information and Personal Data Protection (Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales)

Insurgentes Sur No. 3211 Col. Insurgentes Cuicuilco,

Alcaldía Coyoacán

CP 04530

 

Tel: 800 835 4324

 

Peru

LRQA Peru SAC 

 

Av. The Derby No. 055 (Chronos Building, Tower 1, Floor 7) Lima - Lima - Santiago De Surco; Peru

General Directorate of Transparency, Access to Public Information and Protection of Personal Data (NDPA)

Scipion Llona 350

Miraflores, L-18

Lima

Peru

 

www: minjus.gob.pe

 

USA

LRQA Inc

Nettitude Inc

Elevate (US) Limited

810 Seventh Avenue New York 10019

 

Tel: +1 973-885-5191

California Privacy Protection Agency

 

Tel: 916-572-2900

Email: info@cppa.ca.gov

 

In other states, the Attorney Generals have authority to enforce state comprehensive privacy laws.

Asia Pacific

Country

Legal Entity

Regulatory Authority

Australia

LRQA Limited- Australia Branch

 

C/-TMF Corporate Services (Aust) Pty Limited C/-Tmf; Suite 1, Level 11; 66 Goulburn Street; 2000 Sydney; NSW; Australia

 

Office of the Australian Information Commissioner (OAIC)

175 Pitt Street

Sydney NSW 2000

 

Tel: 1300 363 992

www: oaic.gov.au

Azerbaijan

LRQA Group Limited - Azerbaijan Branch

Ministry of Digital Development and Transport

Baku city, 77 Zarifa Aliyeva St.          

AZ1000

 

Tel: +99412 598 58 58 – EXT for cybersecurity: 1654

www: mincom.gov.az

 

Bangladesh

Elevate Global Limited - Bangladesh

Cyber Security Agency

Cambodia

S.E Elevate (Cambodia) Company Limited

No authority at present

China

LRQA Verification (Shanghai) Co. Ltd.

 

LRQA Industrial Technical Service (Shanghai) Company Limited,

 

LRQA (Shanghai) Company Ltd,

 

Elevate (Shenzen) Limited,

 

Elevate (Shenzhen) Limited, Shanghai Branch,

 

Elevate (Shenzhen) Limited

 

288 Nanjing West Road, Huangpu District, Shanghai; China

 

Tel: +86 21 6023 3650

 

LRQA (Shanghai) –Beijing Branch

 

Room 3158, 31st Floor, Building 3, Yard 2, Jianguomenwai Street, Chaoyang District, Beijing; China

 

Tel: +86 21 6023 3650

Cyberspace Administration of China (CAC)

Editorial Department of China Network Information Network

No. 15, Fucheng Road, Haidian District, Beijing

100048

 

Tel: (010) 55636504

www: cac.gov.cn

Hong Kong

LRQA Limited - Hong Kong Branch

 

Elevate Hong Kong Holdings Limited

 

CSR Asia Lmited

Suite 1401 14/F, Dorset House Taikoo Place 979 King’s Road Quarry Bay 999077

 

Tel: +852 37956322

Office of the Privacy Commission for Personal Data (PCPD)

Unit 1303, 13/F, Dah Sing Financial Centre

248 Queen's Road East

Wanchai

Hong Kong

 

Tel: +852 2827 2827

www: pcpd.org.hk

India

LRQA Inspection Services India LLP

 

LRQA Limited - India Branch

 

Elevate India Business Consultants Private Limited

 

Solitaire Corporate Park, Building no 12, 4th Floor, Andheri Kurla Road, Chakala, Andheri East. Mumbai. India 400 093

 

Ministry of Electronics & Information Technology (Government of India), Department of Electronics and Information Technology – Data Protection Board of India

 

Electronics Niketan, 6, CGO Complex, Lodhi Road, New Delhi 110003

 

Tel: +91-11-24365940

Email: gc-rtipgcell@meity.gov.in

www: meity.gov.in/data-protection-framework

Please note the Data Protection Board is yet to be established at time of publication.

 

Indonesia

PT LRQA Business Assurance and Inspection Services Indonesia

 

Elevate Hong Kong Holdings Limited (representative office)

 

Lantai 30, #30-118 & #30-125 Jl. Dr. Ide Anak Agung Gde Agung Kav. E.4.2, Mega Kuningan Jakarta, 12950 – Indonesia Jakarta, Indonesia 12950

 

Tel: +62 21 5096 7548

 

Personal Data Protection Agency (PDP Agency)

 

Please note the PDP Agency is yet to be established at time of publication.

 

Japan

LRQA Limited Japan Branch

 

LRQA Sustainability K.K.

 

西区みなとみらい2-3-1 クイーンズタワーA 10階 神奈川県, 日本 220-6010

+81 45 682 5290

 

Queen's Tower A, 2-3-1 Minatomirai, Nishi-ku; Yokohama-Shi Kanagawa-ken  220-6010; Japan

 

Tel: +81 45 682 5290

Personal Information Protection Commission

Kasumigaseki Common Gate West Tower

32nd Floor

3-2-1 Kasumigaseki

Chiyoda-ku Tokyo 100-0013

Japan

 

Tel: +81-(0)3-6457-9680

www: ppc.go.jp/en/

Republic of Korea

LRQA (Korea) Limited

17th Floor, 67, Yeouinaru-ro, Yeongdeungpo-gu; Seoul; Republic of Korea 07327

 

Tel: +82 2 736 6231

Personal Information Protection Commission (PIPC)

209 Sejong-daero, Jongno-gu, Seoul 03171, Korea

 

www: pipc.go.kr/eng/index.do

 

Malaysia

LRQA Malaysia Sdn Bhd

 

LRQA Inspection Malaysia Sdn Bhd

 

Elevate Business Consultants (Malaysia) Sdn. Bhd.

 

CO-labs Level 25, Naza Tower, Platinum Park, No. 10 Persiaran KLCC, 50088 Kuala Lumpur, Malaysia Kuala Lumpur 50088

 

Tel:+60 3 2700 7009

Personal Data Protection Commissioner

Level 6, Ministry of Communications Complex,

Lot 4G9, Persiaran Perdana, Presint 4 Pusat Pentadbiran Kerajaan Persekutuan

62100 Putrajaya, Malaysia.

 

Tel : 03-8000 8000

Email: webmasterpdp@pdp.gov.my

www: pdp.gov.my/jpdpv2/?lang=en

Pakistan

Elevate Global Pakistan (SMC-Private) Limited

3rd Floor, State Life Building No.11, Abdullah Haroon Road Karachi 74400

+92 21 35683501/ 3852/ 6583

No Authority at present

Singapore

LRQA Limited - (Singapore Branch)

 

Nettitude PTE. Limited

 

CSR Asia (Singapore PTE Limited)

460 Alexandra Road, mTower #15-01 Singapore 119963

 

Tel: +65 69904500

Personal Data Protection Commission

10 Pasir Panjang Road #03-01, Mapletree Business City, Singapore, 117438

 

Tel: +65 6377 3131

Email: info@pdpc.gov.sg

www: pdpc.gov.sg/

 

 

Taiwan

LRQA Group Limited - Taiwan Branch

 

Elevate Global Taiwan Limited

 

英商勞盛股份有限公司台灣分公司

 

CIT, Unit F, No. 1, Yumen St., Zhongshan Dist. Taipei 104027

 

Tel: +886 2 2175 2005

National Development Council (NDC)

No. 3, Baoqing Rd, Zhongzheng District, Taipei City, Taiwan 100

 

Tel: +886 2 2316 5300

www: ndc.gov.tw/en/

 

Thailand

LRQA (Thailand) Limited

 

Elevate Global (Thailand) Co., Limited

22nd Floor, Sirinrat Building 3388/78, Rama IV Road Klongton Klong Toey Bangkok 10110

 

Tel: +66 2 367 5594

Personal Data Protection Committee

Office of the Personal Data Protection Committee

7th Floor, Ratthaprasasanabhakti Building

Government Complex

Chaengwattana Road

Thung Song Hong Sub-District, Lak Si District

Bangkok, Thailand 10210

 

Tel: +662-142-1033 and +662-141-6993

Email: saraban@pdpc.or.th

www: pdpc.or.th

 

Vietnam

LRQA Vietnam Company Limited

 

Elevate Vietnam Company Limited

 

Unit 408, PetroVietnam Towers, Number 8, Hoang Dieu Street, Ward 1; Vung Tau; Ba Ria - Vung Tau; Vietnam

 

Tel:  +84 (0) 933 745 786

 

Department of Cybersecurity and Prevention of Hi-tech Crimes

207 Khuat Duy Tien Street

Nhan Chinh Ward

Thanh Xuan District

Hanoi

Vietnam

www: cand.com.vn

 

Ministry of Information and Communications

18 Nguyen Du Street

Hang Bai Ward

Hoan Kiem District

Hanoi

Vietnam

 

www: mic.gov.vn

 

Vietnam Cybersecurity Emergency Response Teams/Coordination Centre 

5th floor, the Building of the Authority of Radio Frequency Management, 115 Tran

Duy Hung Street, Cau Giay District, Hanoi, Vietnam

 

Tel: +84-24-36404421

Email: international@vncert.vn

www: vncert.vn

Middle East & Africa

Country

Legal Entity

Regulatory Authority

Egypt

LRQA Egypt LLC

Ramw Gardens, El-Nasr Street, 3rd Flr, Suite No 303 Nasr City 11371

 

Tel: +20 2 230 54 631

National Telecommunication Regulatory Authority/Personal Data Protection Centre

Smart Village, Building No. 4, Km 28 Cairo / Alex Road

 

Tel: (+202) 35344000

Email: info@tra.gov.eg

www: tra.gov.eg/ar/

 

Jordan

LRQA Jordan LLC 

Fahad Center Building No. 2666 Prince Turkey Street First floor Al Kurnaish District Al Khobar 34412 Kingdom of Saudi Arabia (Jovia Business Centre

 

Ministry of Digital Economy and Entrepreneurship - Personal Data Protection Council

 

Ministry of Digital Economy and Entrepreneurship 8th Circle Bayader Wadi Al Seer

PO Box 9903

Amman 11191

Jordan

 

Tel: 0096265805700

Email: modee@modee.gov.jo

www: modee.gov.jo

 

Oman

LRQA Inspection Services SPC

Building No.25, Dohat Al Adab Street; 000000 Muscat; Muscat; Oman

 

 

+968 24 704965

Ministry of Transport, Communications and Information Technology

Ministry of Transport, communications and Information Technology (MTCIT)

Muscat P.O. Box 684

Zip Code : 100

 

Tel: (+968) 24685000

Email: info@mtcit.gov.om

www: mtcit.gov.om

 

Qatar

LRQA Quality Assurance and Inspection Middle East LLC

Office M10, Mezzanine Floor, Al Jaber Engineering HQ Bldg# 80 Doha

 

Tel: +974 40409867

National Cyber Governance and Assurance Affairs (NCGAA) of the National Cyber Security Agency

National Cyber Governance and Assurance Affairs, National Cyber Security Agency (NCSA),

P.O. Box 24100,

Wadi Al Sail Street,

Doha, Qatar

 

Tel: (+974) 2362220

Email: privacy@ncsa.gov.qa

www: assurance.ncsa.gov.qa

 

South Africa

LRQA South Africa (Pty) Ltd

 

Elevate Global Business Concnsukting South Africa (PTY) Limited

C4 Centurion Business Park Democracy Way Milnerton 7441

 

Tel: +27 21 552 0940

The Information Regulator

JD House, 27 Stiemens Street, Braamfontein,

Johannesburg, 2001

 

Tel: +27 10 023 5200

Email: enquiries@inforegulator.org.za

www: inforegulator.org.za/training/wp/

Turkey 

LRQA Turkey Belgelendirme Hizmetleri Limited Şirketi

19 Mayıs Mah. Turaboğlu Sk. No: 2/1 Sıtkıbey Bey Plaza Kat:1 D:8 Istanbul 34736 Kadıköy

 

Tel: +90 216 232 40 88

Kisisel Verileri Koruma Kurumu (Personal Data Protection Authority)

Kisisel Verileri Koruma Kurumu

Nasuh Akar Mah. Ziyabey Cad. 1407. Sok. No: 4

06520 Balgat-Çankaya / Ankara

 

Tel: 0312 216 50 00

www: kvkk.gov.tr

 

UAE

LRQA Limited – Dubai Branch

Level 3, The Offices 3, One Central, World Trade Center, Dubai, United Arab Emirates. Dubai, United Arab Emirates 9573

 

Tel: +971 4 526 4930

 

LRQA Certification and Assurance LLC 

LRQA Certification and Assurance LLC, Khalifa Street, The Blue Tower, 401A Abu Dhabi

 

Tel: +971 2 627 2942

UAE Data Office

Abu Dhabi Global Market Authorities Building
ADGM Square
Al Maryah Island
PO Box 111999
Abu Dhabi, UAE

 

Tel: +971 2 333 8888

www: adgm.com/operating-in-adgm/office-of-data-protection/overview

11. Does LRQA update the Privacy Notice?

We may change the content of this Privacy Notice from time to time without notice to you. You should check this Privacy Notice occasionally to ensure that you are aware of the most recent version. This Privacy Notice was last updated August 2024.

12. Previous versions:

August 2024 – including general updates on global data protection obligations, increased information of your rights and relevant Data Protection Authorities
April 2023 – General update

LRQA Speak Up Privacy Notice

LRQA Speak Up is a confidential reporting system operated by People Intouch B.V. (People InTouch) and provided by LRQA Group Limited for reporting suspected breaches of LRQA’s Code of Ethics.
We do not require you to disclose any of your basic personal information. You can decide to share your identity with us or remain anonymous
If you decide to use LRQA Speak Up, People InTouch, on behalf of LRQA, will collect and process the information you choose to provide, which may include personal data.

The information you provide and why we need it

We capture the information you choose to provide. This could include: your name (if you decide not to report anonymously), the name of all individuals you mention in your report and the details of the concern which you raise.

You should not include any sensitive personal data in your report unless it is it integral to the concern you are raising and it is essential for us to properly investigate your concern. Sensitive personal data includes:

  • personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs
  • trade-union membership
  • genetic data, biometric data processed solely to identify a human being
  • health-related data
  • data concerning a person’s sex life or sexual orientation

The information you supply about yourself, your colleagues, or any aspect of the company’s operations may result in decisions that affect others. Therefore, we ask that you only provide information that, to the best of your knowledge, is correct and factual. Knowingly providing false or misleading information will not be tolerated.

In order for your concerns to be fully investigated so that appropriate action can be taken to remedy any harm or to prevent it from happening again, we do require that you provide us with as much relevant information about the concern as possible. We deem this to be a legitimate business interest which forms the legal basis for the processing of any personal data provided.

What we do with your information

The information that you provide will be hosted by People InTouch. utilising Amazon Web Services, with servers located in Frankfurt (primary) and Paris (secondary). People Intouch is based in the Netherlands and is committed to the EU GDPR (General Data Protection Regulation). People Intouch has a Privacy Information Security Management System (PISMS) in place. This risk & control framework is based on ISO27001, ISO27002, ISO27701 and the Dutch IT Auditing Privacy Standards.

LRQA will take appropriate technical, organizational, and legal steps to secure the information you provide. LRQA also requires People InTouch to adequately secure your personal data and not use it for any unauthorized purposes. (see People InTouch’s Privacy Statement).

The information provided will be reviewed and accessed by members of LRQA’s Legal, Risk & Compliance team and will be treated confidentially, unless otherwise required by law. In order for your concerns to be fully investigated, LRQA’s Legal, Risk & Compliance team may share or grant access to the information provided with members of the following teams, on a strictly need to know basis: HR, Finance, management functions or other colleagues within LRQA, external advisers of LRQA or technical staff at People InTouch, globally.

Please note that individuals you identify may be informed about the fact that a report has been made. However, the information you provide will not reveal your name or identity (although your identity may be revealed by the nature or circumstances of report).

How long will we keep your information?

Any information you submit that is not needed will archived, as permitted by local law and in line with our internal procedures. In addition, once we have responded to your concern or completed any investigation, all information you submitted will be anonymised, deleted and/or archived, as appropriate and permitted by local law and our internal procedures.

What are your rights?

LRQA acknowledges that your personal data is important to you and will process any personal data submitted fairly and in accordance with Data Privacy legislation within the regions we operate. To support this we have a Data Privacy regime in place to oversee the effective and secure processing of personal data.

If at any point you believe the information we process on you is incorrect, you can request to see this information and have it corrected or deleted. If you have any concerns or wish to raise a complaint on how we have handled your personal data you can contact us to have the matter investigated at dataprotection@lrqa.com.  

If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law, you can complain to your national data privacy regulator.