Collection of Personal Data
As used in this Policy, Personal Data refers to any information from which the identity of a customer can be reasonably and directly ascertained by any person who has access to the same, whether taken individually or collectively. When a customer submits a project proposal or avails our services, the personal information we collect may include but not less than the following:
Customer’s Name (Inliidual/firm)
Place of work
Country of citizenship
Financial Reports of his company
Customers must provide only those pieces of information which are accurate and not misleading. It is assumed that when a customer provides personal information of a third party or of a firm owned by another, said customer has obtained the required consent from the concerned third party or is fully authorized to do the same by the firm. DARIUS, however, reserves the right to request for supporting documentation to verify any information provided by a customer. When customers browse our website, they generally do so anonymously, without them being required to provide any personal information.
Use, Processing, and Disclosure of Customer Information
The information we collect from our customers will be used, processed, or maybe shared with other DOST Regional Offices and DOST Central Office within the DARIUS Network or third party service providers (as needed), for some or all of the following purposes:
For identification and/or verification;
To be used in the pertinent project monitoring report;
For the notifying the concerned customers of the status of their repayment;
To administer customer account/records with IMPRESSION;
To facilitate customer service and respond to inquiries made by customers;
For data analytics purposes – to facilitate the conduct of researches and analyses to further improve the central website and our service delivery;
To respond to lawful orders from courts and other authorities or comply with the requirements of existing laws and regulations; and/or
For such any other purpose as may be allowed or required by any law. In which case, the customer shall be notified of such other purpose at the time of obtaining the latter’s consent, unless processing and/or disclosing the customer’s information without his consent is permitted by law.
DARIUS strictly implements measures to protect personal data in its possession against accidental loss or destruction, fraudulent use, and unlawful access, destruction, alteration, and disclosure. Internal data protection policy is also being strictly implemented. Contractual safeguards are also in place whereby OneLab and third party providers agree to keep customer information secure from unauthorized and malicious access, collection, use, processing, and disclosure. Customer information are retained and stored in our system only within the period required by law or for as long as they are needed to accomplish any or all of the abovementioned purposes. DARIUS is not, and will never be, engaged in the business of selling customer information to third parties. DARIUS uses 2048-bit SSL (secure socket layer) encryption technology when processing customer information.
If customers wish to exercise their rights to update, erase, destroy copies of, or correct their personal data, withdraw their consent to the use or disclosure of the same, obtain a copy of their information, or if they believe that their privacy has been breached, they may send email to [email protected].