Learn how we safeguard your personal information on our website
In using the varied features of this website, you may occasionally provide personal information, such as your name, your contact information, or other information about yourself by which others may identify you ("Personal Information") to the Controller, our service providers, or other businesses which you may contact while visiting our site. The Controller may use this information and other technical information about your use of this website to tailor their presentations to you, to facilitate your movement through this website, or communicate separately with you (subject to any applicable local laws relating to such communications). However, we will never intentionally provide any of your Personal Information to other companies or individuals not listed above (collectively "Third Parties") without notifying you and obtaining your consent (if required) at the time of such data collection or transfer if your Personal Information is to be shared with a Third Party.
The following information describes how we are using the information that you provide to us via this website.
1. What are the purposes and legal grounds of the Personal Information processing on our website?
The Controller collects information in several ways from different parts of our website. Some Personal Information is gathered when you sign up for our newsletter, enter a site feedback form, or complete a client satisfaction survey.
The Controller’s primary goal in collecting Personal Information is to provide you, the user, with a customized experience on our website. This includes personalized services, interactive communications, online transactions and many other types of services, most of which are completely free to you. In order to provide such services free of charge, we display advertisements. By knowing little about you, the Controller is able to deliver more relevant advertisements and content, and hence better service, to you. The Controller may conduct research on our users' demographics, interests, and behaviour based on the information provided to us upon registration, during a promotion, from our server log files or from surveys. We do this in order to better understand and serve our users. This research is compiled and analysed on an aggregated basis.
We process your Personal Information based on our legitimate interest (contact forms, analysis of usage of our website in order to continuously improve content and measure performance and to provide technical support and trouble-shooting, optimalization and tailoring of usage of our website and our communication with you, improvement of our products and services, functional cookies) or your freely given consent (sending direct marketing communications to you via e-mail, non-functional cookies). You may withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
2. What Personal Information does the Controller collect from you?
The Controller may ask for your name, email address, telephone number, postal code, occupation, industry information and professional interests.
When you visit our website, we further process your Personal lnformation such as device type, IP address, device or user identifiers, operating system, internet service provider, the date and time of your website use.
3. What are cookies and how does the Controller use them?
4. Does the Controller share Personal Information with outsiders?
From time to time, you may be offered the opportunity to receive materials or special offers from Third Parties being data controllers. If you grant a consent with processing of your Personal Information in order to receive information from these third parties, the Controller will share your name and email address with them. Furthermore, information about your IP address, browser, device, and operating system are under certain conditions shared with the Internet Service Providers or social networking service companies (e.g. Facebook, Google, LinkedIn, Twitter) based on your consent.
In addition, subject to the applicable legislation, the Controller transmits your Personal Information to Third Parties for the purpose of further processing, which parties process the Personal Information as data processors under a data processing agreement.
In particular, the above-mentioned recipients of the Personal Information include the following categories of recipients:
- companies belonging to the Colliers Group;
- administrators of our website;
- external legal counsel;
- marketing software providers;
- law enforcement authorities, courts, administrative authorities where the Controller is so obliged by the legislation.
5. What are my choices regarding collection, use, and distribution of my information?
The Controller may, from time to time, send you an e-mail regarding our services if you indicated upon registration that you are interested in receiving offers or information from the Controller (i.e. if you grant us your consent with processing of Personal Information), we may occasionally send you direct mail about services which we feel may be of interest to you. Only the Controller (or agents as data processors working on behalf of the Controller under a data processing agreement or another Third Party as the data controller based on your consent) will send you these direct mailings. At any time you can easily edit your Colliers.com account information to no longer receive such offers and mailings by which your consent with processing of Personal Information is revoked.
You also have choices with respect to cookies. As mentioned earlier, by modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is about to be set, or to reject all cookies. If you choose to reject all cookies you will be unable to edit your newsletter profile. So, as mentioned earlier, if you wish to edit your newsletter profile, make sure that you have not configured your browser so as to reject all cookies.
6. How does the Controller protect Personal Information and business-related information?
Keeping your information private is vitally important to us. As with all information, the Controller will never rent or sell your personal and business-related information to Third Parties in the position of data controllers without your express consent.
We process your Personal Information in a manner that sufficiently ensures their integrity and confidentiality, i.e. by appropriate technical or organisational measures and appropriate protection against unauthorised or unlawful processing and against loss, destruction or damage. We take care to ensure that Personal Information that are inaccurate, having regard to the purpose for which we process them, are erased or rectified without delay.
We use computer security such as a firewall and data encryption to operate our websites. We have implemented adequate physical, electronic and procedural safeguards and use reliable IT service providers.
7. What security precautions are in place to protect the loss, misuse, or alteration of Personal Information?
Your Colliers.com profile information are accessed by the cookies on your computer so that only you should have access to this Profile Information. You may edit your Colliers.com Profile Information by logging on to the Colliers.com Website from your computer.
We recommend that you sign out of your Colliers.com account and close your browser window when you have finished your work. This will help ensure that others cannot access your Personal Information and correspondence if you share a computer with someone else or are using a computer in a public place like a library or an Internet cafe.
Whenever the Controller handles Personal Information as described above, regardless of where this occurs, the Controller takes steps, consistent with generally acceptable industry standards, including technical, administrative and physical safeguards to protect the Personal
8. How long does the Controller retain my Personal Information?
9. What else should I know about my privacy?
Please keep in mind that whenever you disclose Personal Information online - for example on message boards, through email, or in chat areas - that information can be collected and used by others. In short, if you post Personal Information online that is accessible to the public, you may receive unsolicited messages from other parties in return.
Given the nature of the internet, we would like to bring to your attention the fact that certain security gaps may exist in the transmission of the Personal Information via the internet (e.g. in communication via e-mail) and that full protection of the Personal Information preventing third party access is impossible.
10. What are the rights of each data subject regarding Personal Information processing?
Individuals have certain data subject rights which may be subject to limitations and/or restrictions.
If processing of your Personal Information is based on the consent, you have the right to revoke your consent to personal data processing at any time by sending an e-mail to firstname.lastname@example.org. Revocation of your consent does not have retroactive effect and the processing of Personal Information based on granted consent prior to its revocation shall remain unaffected; processing of Personal Information which is carried out prior to such revocation is lawful.
If Personal Information is processed based on the Controller’s legitimate interest, you also have the right to raise an objection against having your Personal Information processed on grounds relating to your particular situation and which is described in the relevant objection. When the Controller receives an objection, the Controller will cease to process Personal Information (retaining it only) and it will make an assessment as to whether there are significant legitimate reasons for processing it that outweigh the interests and rights and freedoms of the data subject, or for determining, enforcing or defending legal claims. If the Controller concludes that such grounds exist, the Controller will inform you of such fact and advise you of the possibility of further protection and then continue to process Personal Information. However, if, on the contrary, the Controller concludes that there are insufficient reasons for processing, then you will be informed thereof, processing will be terminated and Personal Information erased.
You also have the right to access Personal Information processed by the Controller, i. e. you can submit subject access requests, which oblige the Controller to provide a copy of any Personal Information the Controller holds concerning you. The Controller has one month to provide you with this information, although there are exceptions for requests that are manifestly unfounded, repetitive or excessive.
Furthermore, you have the right to rectification. If you discover that Personal Information the Controller holds on you is inaccurate or incomplete, you can request that it to be updated. As with the right of access, the Controller has one month to do this, and the same exceptions apply.
You also have the right to erasure ("right to be forgotten") based on which you can request that the Controller erases data in certain circumstances – for example, when the data is no longer necessary, the data was unlawfully processed, or it no longer meets the lawful ground for which it was collected. This includes instances where you revoke your consent.
Based on the right to restrict processing, you can request that the Controller limits the way of usage of Personal Information. It is an alternative to requesting the erasure of data and might be used when you contest the accuracy of the Personal Information. You can also exercise this right when the Controller no longer uses the product or service for which it was originally collected, but the Controller needs it to establish, exercise or defend a legal claim.
You also have the right to data portability based on which you are permitted to obtain and reuse your Personal Information for your own purposes across different services. You have the right to move, copy, or transfer Personal Information from one data controller to another, in a safe and secure way, in a commonly used and machine-readable format.
The GDPR also includes provisions for decisions made with no human involvement, such as profiling, which uses personal data to make calculated assumptions about individuals. You are permitted to challenge and request a human intervention if you believe the rules are not followed.
If you wish to exercise one of the above mentioned rights, please send us your request via email to: email@example.com. We will inform you about the action taken on your request within one month of receipt of your request and no later than within three months of receipt of your request if that period has been extended on reasoned grounds.
You also have the right to lodge a complaint about the processing of your Personal Information with one or more applicable regulatory authorities.
11. Additional Information
For any questions regarding this statement, please contact us at firstname.lastname@example.org.