The Pre-employment Checklist (201) is an internally facing web application developed by Boldrtech. The 201 records all the employee discussion documents that have been generated through the interaction result between a supervisor and an employee to report to him. This is part of Boldrtech’s Personal coaching and performance evaluation process. This will effectively store all the discussion log data (work-related discussions and informal counseling sessions) of all the operations team members.
This web-based application aims:
For the purpose of this agreement, the following terms are as defined by RA. No. 101731 as:
Data subject refers to an individual whose personal information is processed.
Information and Communications System refers to a system for generating, sending, receiving, storing or otherwise processing electronic data messages or electronic documents and includes the computer system or other similar device by or in which data is recorded, transmitted or stored and any procedure related to the recording, transmission or storage of electronic data, electronic message, or electronic document.
Personal information refers to any information whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.
Personal information controller (PIC) refers to a person or organization who controls the collection, holding, processing or use of personal information, including a person or organization who instructs another person or organization to collect, hold, process, use, transfer or disclose personal information on his or her behalf. The term excludes:
Personal information processor (PIP) refers to any natural or juridical person qualified to act as such under this Act to whom a personal information controller may outsource the processing of Personal Information and Sensitive Personal Information pertaining to a data subject.
Processing refers to any operation or set of operations performed upon personal information including, but not limited to, the collection, recording, organization, storage, updating or modification, retrieval, consultation, use, consolidation, blocking, erasure or destruction of data.
Privileged information refers to any and all forms of data which under the Rides of Court and other pertinent laws constitute as privileged communication.
Sensitive personal information refers to personal information:
The Services may include Processing of Personal Information and Sensitive Personal Information(The Process) on Boldrtech’s Amazon Web Services Cloud Computing Platform (AWS Platform). Under the AWS platform, The PIC, PIP and Data Subject are also governed by the AWS Service Terms. Under this scenario, the Processing and Collection activities performed by the PIC and PIP are also governed by Boldrtech’s Non-Disclosure Agreement.
The purpose of this Data Processing Agreement is to regulate Boldrtech’s activities as both the PIP and PIC in processing of Personal Information on submitted using Boldrtechtech’s Services. For this agreement, the Processor will handle the private data collected through the 201.
The purpose of this Data Processing Agreement is to regulate the parties’ responsibilities related to the use of the 201 service performed by Boldrtech’s personnel in relation to the procedures and protocols involved with the Employee Performance Management process.
This Data Processing Agreement governs the Boldrtech’s rights and obligations, in order to ensure that all Processing of Personal Information and Sensitive Personal Information is conducted in compliance with applicable data protection statutes, regulations and laws.
Processing of Personal Information and Sensitive Personal Information(as defined below) is subject to requirements and obligations pursuant to applicable law. Boldrtech is a legal entity established in the Philippines with relevant data protection legislation will include local data protection legislation and the present the Data Privacy Act (Republic Act Republic Act No. 10173).
This agreement is valid from October 1st 2019.
Your access to and use of the Service is conditioned on your acceptance of and compliance with these Terms. These Terms apply to all visitors, users and others who access or use the Service.
By accessing or using the Service, you agree to be bound by these Terms. If you disagree with any part of the terms then you may not access the Service.
201 is an internally facing application designed and developed for Boldr Inc. Its use is strictly regulated within Boldrtech and only legitimate and current employees of Boldr Inc. are provided access to its features.
User accounts and credentials will be generated and assigned by the Technology Support Team. The team will use select private information that has been submitted to Boldrtech as part of one’s mandatory employment requirements.
To ensure that the sensitive data are securely handled and stored 201 is only accessible to supervisors and higher ops positions. This restriction ensures that only authorized users will have access to the dump information submitted in the system. Each user will have a unique account assigned to them.
The Technology Solutions team reserve the right to review and correct this information during testing and development in order to achieve functionally.
You are responsible for safeguarding the password that you use to access the Service and for any activities or actions under your password, whether your password is with our Service or a third-party service.
You agree not to disclose your password to any third party. You must notify the The Technology Solutions Team and Breach Response Team immediately upon becoming aware of any breach of security or unauthorized use of your account.
201 has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party web sites or services. You further acknowledge and agree that 201 shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any such content, goods or services available on or through any such web sites or services.
We strongly advise you to read the terms and conditions and privacy policies of any third-party web sites or services that you visit.
In the event of a breach of this Non-disclosure Agreement, or a breach of obligations according, we may terminate or suspend access to our Service immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms.
Upon the end of your employment, we will terminate access to our Service immediately. For Resignations, the end of your access will coincide with your final day of employment with Boldrtech, as stipulated in your letter of resignation
All provisions of the Terms which by their nature should survive termination shall survive termination, including, without limitation, ownership provisions, warranty disclaimers, indemnity and limitations of liability.
We may terminate or suspend your account immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms.
Upon termination, your right to use the Service will immediately cease. All provisions of the Terms which by their nature should survive termination shall survive termination, including, without limitation, ownership provisions, warranty disclaimers, indemnity and limitations of liability.
These Terms shall be governed and construed in accordance with the laws of the Philippines, without regard to its conflict of law provisions.
Our failure to enforce any right or provision of these Terms will not be considered a waiver of those rights. If any provision of these Terms is held to be invalid or unenforceable by a court, the remaining provisions of these Terms will remain in effect. These Terms constitute the entire agreement between us regarding our Service, and supersede and replace any prior agreements we might have between us regarding the Service.
The PIC acknowledges and accepts that any Personal Information and Sensitive Personal Information that the PIC uploads as part of the Service, such as uploaded Personal Information and Sensitive Personal Information pertaining to the PIC’s own customers, employees, and stakeholders may be transferred to a third party (sub-processor) which will provide for hosting of the Service, including the provisioning of all hardware, infrastructure, data storage and communication lines. The obligations of the third party in regards to Personal Data are set forth in a separate data processing agreement between Processor and the third party within the framework of this Data Processing Agreement. All data in the Service are stored on AWS’s Global Infrastructure in North America, Brazil, South Africa, Europe, Asia and Australia.
The PIC shall comply will all provisions for the protection of Personal Information Personal Information and Sensitive Personal Information set ous in this Data Processing Agreement and in applicable data protection legislation with relevance for processing of Personal Information.
The PIP shall strictly comply with the instructions and routines issued by the PIC in relation to the processing of Personal Information and Sensitive Personal Information.
The PIP shall only Process Personal Information and Sensitive Personal Information on, and in accordance with the instructions from the PIC. The PIP shall not process Personal Information and Sensitive Personal Information without a prior written agreement with the PIP or without written instructions from the PIC beyond what is necessary to fulfil its obligations towards the Controller under the Agreement.
The PIP shall by means of planned, systematic, organizational and technical measures ensure appropriate information security with regard to confidentiality, integrity, and accessibility in connection with the Processing of Personal Information and Sensitive Personal Information in accordance with the information security provisions in applicable data protection laws and legislation.
The measures and documentation regarding internal information control and security shall be made available to the PIC, the Data Subject, and/or all authorize Entities (within reason) upon request.
Any use of the Information Systems and the Personal Information and Sensitive Personal Information not compliant with Boulders established routines, instructions from the PIC or applicable data protection legislation, as well as any security breaches, shall be treated as a Discrepancy.
The PIP shall have in place routines and systematic processes to follow up discrepancies, which shall include re-establishing of the normal state of affairs, eliminating the cause of the discrepancy and preventing its recurrence.
The PIP shall immediately notify the PIC of any breach of this Data Processing Agreement or of accidental, unlawful or unauthorized access to, use or disclosure of Personal Data, or that the Personal Information and Sensitive Personal Information may have been compromised or a breach of the integrity of the Personal Data. The PIP shall provide the PIC with all information necessary to enable the PIC to comply with applicable data protection Laws and statutes (such as the Data Privacy Act) and enabling the PIC to answer any inquiries from the applicable data protection authorities. It is the PIC`s responsibility to notify the applicable Data Protection Authority, including the National Privacy Commission of discrepancies in accordance with Republic Act 10173.
We reserve the right, at our sole discretion, to modify or replace these Terms at any time. If a revision is material we will try to provide at least 30 days notice prior to any new terms taking effect. What constitutes a material change will be determined at our sole discretion.
By continuing to access or use the Service after those revisions become effective, you agree to be bound by the revised terms. If you do not agree to the new terms, please stop using the Service.
If you violate these Terms, BoldrTech may, at its sole discretion, conduct the following or similar practices in order to protect itself, its employees, clients and stakeholders. Boldr reserves the right to take appropriate legal action/s against you, and other individuals and entities, both foreign and domestic, in order to protect it’s image, assets, client base, employees and stakeholders from damages that may arise from violating these terms.
BoldrTech at its own discretion, have the right to stop providing its Services to you. We may also block delivery of a communication (like email, file sharing or instant message) to or from the Services in an effort to enforce these Terms.
When investigating any alleged violations of these Terms, BoldrTech reserves the right to conduct a review of your activity and usage in order to resolve the issue, and you hereby authorize such review. However, whenever Sensitive Personal Information may be involved you may be notified, along with those entities such as clients and stakeholders, who may be directly or indirectly affected by said issue.
The PIC shall keep confidential all Personal Data. The Processor shall ensure that each member of the staff of the Processor, whether employed or hired employee, having access to or being involved with the Processing of Personal Information and Sensitive Personal Data under the undertakes a duty of confidentiality and informed of and complies with the obligations of this Data Processing Agreement. The Individuals involved with the Development, Delivery and Operational Adoption of this application are expected to adhere to the Data Sharing Agreement & Non-disclosure Agreement.
Confidentiality is duly discussed as part of the Confidentiality and Non-disclosure Clause of the Employees Contract.
The duty of confidentiality shall also apply 5 years after termination of this Data Processing Agreement or any correlating Boldr Service Agreements.
As part of our Data Retention Policy, Boldr strictly adheres to maintaining data only as long as it remains a critical component in Boldr’s ability to operate. Boldr will retain all of its collected and processed Data for Five (5) Year. After a year if the data is unused, unnecessary and no longer relevant, it can be marked for complete deletion or archiving. A quarterly Data Retention Check will be conducted at the behest of Boldr’s Data Privacy team. This is to ensure that all employees, officers, and staff of Boldr strictly follow the Data Retention Policy and that unnecessary data will be removed from Boldr’s custody.
Any use of the Information Systems and the Personal Information and Sensitive Personal Information not compliant with Boldr’s established routines, instructions from the PIC or applicable data protection legislation, as well as any security breaches, shall be treated as a Discrepancy.
The PIP shall have in place routines and systematic processes to follow up discrepancies, which shall include re-establishing of the normal state of affairs, eliminating the cause of the discrepancy and preventing its recurrence.
Boldrtech’s policy and procedures to handle Data Breach Incidents are documented within Boldrtech’s Data Breach Response Protocol. Data Breach Incidents can be reported directly to the Boldrtech team at email@example.com.
If you have any questions about these Terms, please contact us.at firstname.lastname@example.org.
Boldrtech’s Data Privacy policies and guidelines are guided by our Data Privacy Team. The Data Privacy Team’s objective is to:
If you are concerned that your personal information is at risk, is being used for an unauthorized purpose, or other concerns about How Boldr uses, treats, stores, and protects your data, you may contact Boldr’s Data Privacy Officers.
Boldr’s Data Privacy Officers are:
By using 201 you hereby expressly acknowledge and agree that there are significant security, privacy and confidentiality risks inherent in accessing or transmitting information through the internet, whether the connection is facilitated through wired or wireless technology, Security issues include, without limitation, interception of transmissions, loss of data, and the introduction or viruses and other programs that can corrupt or damage your computer.
These terms Terms cover the use of the products, tools, technologies and services (“Service”) provided by Boldrtech for both internal and external use. You accept these terms, as well as the terms and conditions stipulated in our Data Processing Agreement, and agree to the conditions upon any of the following scenarios:
Like most website operators, BoldrTech collects non-personally-identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. BoldrTech's purpose in collecting non-personally identifying information is to better understand how BoldrTech's visitors use its website. From time to time, BoldrTech may release non-personally-identifying information in the aggregate, e.g., by publishing a report on trends in the usage of its website. BoldrTech also collects potentially personally-identifying information like Internet Protocol (IP) addresses for logged in users and for users leaving comments on https://www.boldrtech.com blog posts. BoldrTech only discloses logged in user and commenter IP addresses under the same circumstances that it uses and discloses personally-identifying information as described below.
Certain visitors to BoldrTech's websites choose to interact with BoldrTech in ways that require BoldrTech to gather personally-identifying information. The amount and type of information that BoldrTech gathers depends on the nature of the interaction. For example, we ask visitors who sign up for a blog at https://www.boldrtech.com to provide a username and email address.
We collect personal data of our employees, potential employees, clients, suppliers, business contacts, shareholders and website users. If the data we collect are not listed in this privacy statement, we will give individuals (when required by law) appropriate notice of which other data will be collected and how they will be used.
201’s role in assisting Boldr’s Human Resource department with its Onboarding activities involved the collection a varied number of Personal Information. This information is strictly for the Human Resource use only and is not disclosed to third-party individuals.
Except for certain information that is required by law or by Boldr policies, your decision to provide any personal data to us is voluntary. You will therefore not be subject to adverse consequences if you do not wish to provide us with your personal data. However please note that if you do not provide certain information, we may not be able to accomplish some or all of the purposes outlined in this privacy statement, and you may note be able to use certain tools and systems which require the use of such personal data.
If you provide the personal data of another person (for instance, a potential employee/referral), you are responsible for ensuring that such person is made aware of the information contained in this Privacy Statement and that person has given you his/her consent for sharing the information with Boldr.
The above-mentioned categories of personal data have been obtained either directly from you (for example, when you provide information to sign up for a newsletter or register to comment on a forum website) or indirectly from certain third parties (for example, through our website’s technology). Such third parties include our affiliates, public authorities, public websites and social media, suppliers and vendors.
BoldrTech will not own your data. The Web Applications provided by BoldrTech simply collects and colates it. The information you enter belongs to you. If the data was yours to begin with, it remains yours after you input it into the application.
By using the web applications of BoldrTech, you give Boldr permission to do certain things with your data so that we can run our service. For example, you give us permission to back it up, send it over a network, index it for searching, display it on your various devices, etc. Some of these operations may require us to send your data to our normal business partners–such as a network operator–that we have contracted with to provide parts of the BoldrTools’s services. We take careful measures in making sure that our contracts with such 3rd-party partners protect and respect your data ownership rights.
Other than giving us the permission to perform these limited operations so we can run the BoldrTools Service, you retain all the rights to your data.
Everything you put into BoldrTech’s Apps will be kept private by default. BoldTech’s Applications are not “big data” processes and do not try to make money from your content.
In addition, we take many precautions to protect your data from accidental loss and theft. Everything you put into an BoldrTech’s applications are stored in our secure data center with redundant servers, storage devices and off-site backups. Communications between clients and servers (and between our various data centers) are all encrypted. We utilize industry-leading security technologies, to all users, and we’re constantly investing in ways to improve data protection. We take the utmost care in protecting your password and BoldrTech will never ask you for it.
We support industry efforts to promote full transparency about government requests for data and have established a comprehensive legal process for handling such requests.
Boldr is committed to the privacy and security of your data. The objective of this tool is to help you organize, find, and use your data to be efficient and more productive while respecting your privacy.
The security of your Personal Information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
BoldrTech understands the importance of your right to privacy and the protection of your personal data. BoldrTech protects your personal data in accordance with the applicable laws and our own data privacy policies. BoldrTech maintenance the appropriate technical and organizational measures to ensure that your personal data is protected and secure from unauthorised processing and/or against accidental loss, alteration, disclosure or access, or accidental or unwanted destruction of or damage thereto.
BoldrTech has in place multiple security measures to ensure that breaches do not occur.
BoldrTech implements a Paperless Policy for its Operations. All client data and information is stored digital through secure cloud-based service (GSuite & AWS). BoldrTech Employees are not allowed to perform any client-facing task through the use of pen, pencil, paper or print.
BoldrTech implements a No Cell Phone Use Policy for all BoldrTech Employees who enter the designated Operations Floors. BoldrTech Employees are not allowed to take calls, or send SMS messages while on the Floor. BoldrTech Employees are not allowed to charge their phones or plug their devices into workstations.
BoldrTech does not allow its operations to keep, save, store and process documents on local machines. All operations are done using cloud-based tools (G Suite) and are saved on secure servers. BoldrTech’s IT department conducts check ups to see if any files have been saved to a local machine, and ensure that it is uploaded accordingly before deleting it. All Cloud services used by BoldrTech Employees use a secured Single Sign-on tool to for security and monitoring purposes.
BoldrTech uses biometric security to ensure only registered BoldrTech Employees can enter the Operations Floor. BoldrTech’s internal network is also firewall-protected. Virtual Private network use can for operational work is optional and is at the discretion of BoldrTech’s clients. All workstations and local machines are set up with restricted user access rights as well as disabled USB ports.
Boldrtech’s Applications are supported by the Amazon Web Services Platform. AWS has multiple security features designed to protect the users, the resources and the data of AWS hosted applications. AWS provides an Access Protection Layer is provided through AWS security features and the local access Firewall used when accessing the System from within Boldr.
BoldrTech may collect statistics about the behavior of visitors to its website. BoldrTech may display this information publicly or provide it to others. However, BoldrTech does not disclose your personally-identifying information.
This note is not a legal document, it’s meant to be a plain-language description of our fundamental business values and how we think about your data. We’ll update it from time to time to keep up with the times, but the core principles will not change: your data is yours and your data is protected.