Suite 87, 630 Fifth Avenue, New York, NY 10111
Suite 1430, 1002 Sherbrooke W, H3A 3L6, Montreal, QC
1b Rue Jean Piret, L-2350 Luxembourg
Protection of Personal Information
We have implemented generally accepted standards of technology and operational security in order to protect personal information from loss, misuse, alteration, access, disclosure or destruction. Only authorized persons are provided access to personal information; such individuals have agreed to maintain the confidentiality of this information.
Although we use appropriate security measures once we have received your personal data, the transmission of data over the internet (including by e-mail) is never completely secure. We endeavor to protect personal data, but we cannot guarantee the security of data transmitted to or by us.
Your local law may require us to set out the legal grounds on which we rely in order to process your personal information. In such cases, we rely on one or more of the following processing conditions:
Collection and Use of personal data
ROI collects only the personal data necessary for agreed purposes and we ask to only share personal data with us where it is strictly needed for those purposes.
Where we need to process personal data, including personal data from our own staff, to provide services or to receive services from our suppliers, we ask to provide the necessary information to the data subjects regarding its use. Given the diversity of the services we provide, we process many categories of personal data:
The categories of personal data processed by us in relation to the services we provide are generally:
We use personal data for the following purposes:
We retain the personal data processed by us for as long as necessary for the purpose for which it was collected. Personal data may be held for longer periods where extended retention periods are required by law or regulation and in order to establish, exercise or defend our legal rights.
We might provide users access to applications. Such applications will contain their own privacy statements explaining why and how personal data is collected and processed by those applications. We encourage individuals using our applications to refer to the privacy statements available on those applications.
We may transfer the personal information we collect about you to recipients in countries other than the country in which the information originally was collected.
This includes countries outside the European Economic Area (EEA). Where we collect your personal information within the EEA, transfer outside the EEA will be only:
You may have certain rights under your local law in relation to the personal information we hold about you. In particular, you may have a legal right to
ROI shares Personal Data with its affiliates and subsidiaries. We do not sell or otherwise disclose personal information we collect about you, except as described hereafter. We may disclose personal information in cases including but not limited to:
Third Party Providers
ROI may transfer or disclose the collected personal data to third party contractors, subcontractors, and/or their subsidiaries and affiliates. Third parties support ROI in providing its services and help provide, run and manage IT systems. For example ROI uses providers of identity management, website hosting and management, data analysis, data backup, security and cloud storage services. The servers powering and facilitating our IT infrastructure are located in secure data centres around the world, and personal data may be stored in any one of them.
Our Website may provide links to other websites or apps for your convenience and information. These websites may operate independently from us. Linked sites and apps may have their own privacy notices or policies, which we strongly suggest you review. To the extent any linked websites are not owned or controlled by us, we are not responsible for the websites’ or apps’ content, any use of the websites or apps, or the privacy practices of the websites or apps.
Please submit a request to exercise a legal right in relation to your personal data, or an enquiry if you have a question or complaint about the handling of your personal data.