By accessing, visiting or using http://< https://castleproject.teck.com/>/ (collectively the “Castle Website”), you accept the terms and conditions of this Policy.
This Policy does not extend to websites operated by third parties. Teck is therefore not liable for their privacy policies, procedures and practices.
The purpose of the Castle Website is to allow members of the public and organizations to engage with Teck on the Castle Project through a number of different engagement tools.
1. COLLECTION OF INFORMATION
We collect your personal information in several ways, including when you request information, enter information on our Castle Website, or register to participate in engagement. Depending on the circumstances, personal information may include your email address, demographic information, username and password.
We collect engagement information including responses to surveys and polls, questions you ask, comments in our guestbook, communications you share in forums, and other communication tools.
We also collect personal information relating to your visit to our Castle Website. This information may include your IP address, the date, time and duration of your visits as well as the web pages you consulted.
Examples of Cookies we use:
3. USE AND DISCLOSURE OF INFORMATION
We take steps designed to ensure that only those employees who need access to your personal information to fulfill their employment duties will have access to it. We use and disclose your personal information mainly:
When we disclose your personal information to service providers, we take reasonable measures to ensure that the rules set forth in this Policy are complied with. In the event of a change of ownership, sale, merger, liquidation, reorganization or acquisition of Teck, in whole or in part, your personal information may be transferred as part of the transaction. We may share your personal information with the authorities if justified and required by applicable laws.
4. SECURITY AND RETENTION OF INFORMATION
The Castle Website and your personal information are stored and hosted on servers residing in AWS, Canada (Central), Canada. However, your personal information may be stored and processed in any country where we engage service providers. Consequently, transfer of information may occur to countries outside your country of residence which may have different information protection rules than in your country. While such information is outside of Canada, it is subject to the laws of the country in which it is held, and may be subject to disclosure to the governments, courts or law enforcement or regulatory agencies of such other country, pursuant to the laws of such country. Where applicable, if you are located in the territory of the European Union, in the event that the information are transferred to a country which does not ensure an adequate level of information protection equivalent to that of the European Union, Teck undertakes to take all appropriate guarantees such as standard contractual clauses.
Teck has implemented various physical, administrative and technical safeguards designed to protect the confidentiality and security of personal information under our control. However, no security measures are absolute or wholly guaranteed.
Teck will maintain your personal information for as long as a business need exists, or as required by applicable laws, regulations, or government orders.
5. INDIVIDUALS’ RIGHTS
On written request and subject to proof of identity, you may access the personal information that we hold, and ask that any necessary corrections be made, where applicable, as authorized or required by law.
However, to make sure that the personal information we maintain about you is accurate and up to date, please inform us immediately of any change in your personal information.
Also, whenever we process your personal information based on your consent, you can withdraw that consent at any time by contacting us at firstname.lastname@example.org.
If you are located in the European Union, you may be entitled to additional rights, including: (i) the right to withdraw consent to processing where consent is the basis of processing; (ii) the right to access your personal information and certain other supplementary information, under certain conditions; (iii) the right to object to unlawful information processing, under certain conditions; (iv) the right to erasure of personal information about you, under certain conditions; (v) the right to demand that we restrict processing of your personal information, under certain conditions, if you believe we have exceeded the legitimate basis for processing, processing is no longer necessary, are processing, or believe your personal information is inaccurate; (vi) the right to information portability of personal information concerning you that you provided us in a structured, commonly used, and machine-readable format, under certain conditions; (vii) the right object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you, under certain conditions; (viii) the right to lodge a complaint with information protection authorities. If you want to learn more about your rights under the GDPR, you can visit the European Commission’s page on Data Protection at: https://ec.europa.eu/info/law/law-topic/data-protection/reform/rights-citizens_en.
Please revisit this page periodically to stay aware of any changes to this Policy, which we may update from time to time. If we modify the Policy, we will make it available through the Castle Website, and indicate the date of the latest revision, and will comply with applicable law. Your continued use of the Castle Website after the revised Policy has become effective indicates that you have read, understood and agreed to the current version of the Policy.
If you have any questions or comments about this Policy or your personal information, to make an access or correction request, to make a complaint, or to obtain information about our policies and practices with respect to any service providers outside Canada, our Privacy Officer can be reached by email using the following contact information: email@example.com.