This Privacy Notice (the ‘Notice’) explains how we use any personal information we collect about you when you use this website or when you contact us directly. The Notice sets out how we, from time to time, process the personal data of individuals who contact us or who use our website, services, applications, content and related features (collectively, the ‘Website’).
This Notice sets out our views and practices in respect of your personal data and how we will treat it. Please read this carefully. By visiting our Website, you acknowledge the processing described in this Notice.
From time to time we may make changes to this Notice by posting on our Website or otherwise. Your continued use of the Website, our services or your continued dealing with us after notification of such changes will amount to your acknowledgement of the amended Notice.
Please contact us if you have any questions about this Privacy Notice or information we hold about you by writing to us at the following address:
FAO: Data Protection Officer, BPC plc, IOMA House, Hope Street, Douglas, Isle of Man, IM1 1AP. Alternatively, you can email us at firstname.lastname@example.org
‘Personal data’ means any information relating to an identified or identifiable natural person, known as a ‘data subject’, who can be identified directly or indirectly; it may also include name, address, email address, phone number, IP address, location data, cookies and similar information.
We do not collect any special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
We may process the following personal data:
Information provided by you. You may give us information about you by, for example, filling in forms such as the contact form on our Website, subscribing to services such as email updates, making applications in respect of job postings, corresponding with us by email, phone or otherwise. This information may include your name, email address, phone number, information about your query and similar information. We may also receive a copy of your CV or a similar document in respect of a job vacancy or a speculative job enquiry.
Information about others. You may also provide to us personal data relating to third parties, such as people who you work with, or your referees. Information about third parties should only be provided if you have demonstrable permission to do so or if the information is available in the public domain.
We will rely on the information provided by you as being accurate, complete and up-to-date and you agree to ensure that this will be the case.
We will only process personal data, in accordance with applicable law, for the following purposes:
The legal basis for our processing of personal data for the purposes described above will typically include:
There are circumstances where we may wish to disclose or are compelled to disclose your personal data to third parties. These scenarios include disclosure to:
We may transfer your personal data to a third-party in countries outside the country in which it was originally collected for further processing in accordance with the purposes set out above. In particular, your personal data may be transferred outside of the EU/EEA. Where this is the case, we will ensure those appropriate transfer mechanisms as set in the General Data Protection Regulations (‘GDPR’) are in place to ensure an adequate level of data protection.
If we transfer personal data to private organisations outside of the EU/EEA, such as our suppliers and service providers, we will, as required by applicable law, ensure that your privacy rights are adequately protected by appropriate technical, organisation, contractual or other lawful means. Where this is necessary you may contact us for a copy of such safeguards at email@example.com.
We retain personal data for as long as is necessary for the purposes listed above, including for the purposes of satisfying any legal, accounting, or reporting requirements.
We may keep an anonymised form of your personal data, which will no longer refer to you, for statistical purposes without time limits, to the extent that we have a legitimate and lawful interest in doing so.
We will use appropriate technical and organisational information security measures to try to ensure the prevention of any unauthorised access to your personal data; however, the transmission of information via the internet is never completely secure. Whilst we will do our best to keep our own systems secure, we cannot control the entirety of the internet and cannot therefore guarantee the security of your information as it is transmitted to and from our Website.
BPC plc recommends that you install your own security measures, firewalls, software spyware and other appropriate security procedures. We are unable to provide any guarantee that information and data provided to users will be free of viruses or other conditions which may damage or interfere with data, hardware or software with which it might be used. All information sent by Bahamas Petroleum Company plc is done so on the strict condition that the user carries out and relies upon its own procedures for ensuring that its use will not interfere with the recipient’s systems and the recipient assumes all risk of use and absolves BPC plc of all responsibility for any consequences of its use.
Depending on your country’s laws and the legal basis for collection of your data, you may have certain rights in relation to your personal data. Further information about your data privacy rights may be obtained by visiting the website of your local data privacy authority. In summary GDPR provides, as follows: